Accesa logo white
Enabling Enterprise-Wide eGRC Reporting for a Global Insurance Leader

Tailored B2B Customer Identity and Access Management in Financial Services

ratiodata-logo

Ratiodata is a leading provider in the IT market in Germany with a proven track record with large enterprises and financial institutions.

Industry

  • Finance

Service

  • Cybersecurity

Company Size

1.500+ employees

Duration

2021 - Ongoing

Client testimonial

Ratiodata

quote-icon

Working with Accesa on this very dynamic project was constructive and very cooperative - we had the right partner at our side.

ratiodata-logo

Frank Holtgrefe | Organisation Senior Process & Project Manager

Accesa arrow icon

Challenge

As each of our client's services required a separate implementation for authentication and authorisation, maintenance costs were high, and administrators faced increased complexity, inconsistent protocols, and a lack of delegation capabilities for their customers.

Accesa plane icon

Solution

Accesa partnered with metafinanz to co-create, and continuously evolve a custom eGRC web application that enables faster and more accurate analysis, and decision-making. Through a deep understanding of metafinanz’s business objectives and close collaboration, our teams ensured seamless integration with both existing and modern backend systems, improved data visualisation, and reliable access to critical risk, our teams ensured a seamless integration with both existing and modern backend systems, improved data visualisation, and ensured reliable access to critical risks and compliance data.

Accesa speaking icon

Impact

The solution delivered improved risk visibility, faster, more informed and proactive decision-making. For on-time reporting across global operating entities the solution supports stronger governance, better resource allocation, and increased confidence in business risk management.

Project Overview

Given the insights gained through an assessment of partner's IAM needs, as well as the existing pain points in their current processes, we designed a feature-rich Customer Identity and Access Management system that aligns with their business goals:

  • Single Sign-On (SSO) & Session Management: Integrates with OpenID Connect (OIDC) to support both external and internal CIAM accounts, providing seamless access across all integrated applications.

  • Robust Authentication: Implements Time-based One-Time Passwords (TOTP) for Multi-Factor Authentication (MFA), ensuring a high level of security.

  • Comprehensive Authorisation: Utilising OAuth 2.0 for precise authorisation enforcement, maintaining strict access controls.

  • Delegated Administration Portal: Features a dedicated portal for both service owners and customer administrators, enabling decentralised management, which reduces operational costs and enhances administrative efficiency and visibility.

  • Flexible Identity Administration: Offers extensive customisation in the configuration of authorisation data and its encapsulation in tokens, catering to the specific needs of integrated SaaS environments.

  • Diverse Integration Options: Supports a wide array of client applications, including web, mobile, desktop, APIs, and other devices.

  • Centralised API Access Control: Provides centrally managed, fine-grained authorisation configurations, enhancing security and control.

  • User Query Endpoints: Allows integrated client applications to query user information through a SCIM-like protocol, facilitating efficient user management.

  • Comprehensive Identity Repository: Maintains a unified repository for employee and customer user identities, including identity synchronisation services compatible with multiple data sources.

  • Self-Service User Portal: Enables end-users to independently manage their profiles and request access to SaaS applications, enhancing user autonomy.

  • Audit Trail: Ensures full auditability for compliance purposes, maintaining a detailed history of all identity and access transactions.

Results

Based on the challenges our client faced due to the separate authentication and authorisation implementations for their service portfolio, our tailored and comprehensive Customer Identity and Access Management system decreases complexity and meets the needs of both our client and their customers:

  • An interconnected identity management solution, eliminating the need for separate credentials and permission settings for each application;

  • Enhanced security by minimising vulnerabilities;

  • Optimised administrative protocols and strict adherence to the rigid frameworks of the financial industry's Identity Providers (IdPs);

  • Streamlined user experience with uniform login processes and single sign-on (SSO) capabilities across multiple applications;

  • A centralised, secure access management system that eliminates the need to manage separate credentials and permissions across applications;

  • Simplified Software as a Service (SaaS) development by offloading the critical aspect of identity management.

GET IN TOUCH

0

WHAT HAPPENS NEXT?

1

After you submit a contact form on accesa.eu, one of our representatives will review the information and get back to you in 1-2 business days.

2

We will then assign a Technical Presales expert to have a deep dive and assess your requirements and objectives.

3

The Presales expert will work with a bid team and a Software Architect to prepare a high level project estimation and the Sales expert will provide you with a commercial offer.

We will get back to you within 1 to 2 business days. We will also provide a proposed project allocation and start date after a minimum of 15 days from the deep dive session.

Address: Constanta 12, Cluj-Napoca, Romania 

Phone number: +4989215485115