Success Story

Introduction of a New IAM Solution at Investitionsbank Berlin

Ever since introducing the Garancy® Suite, IBB’s new workflow no longer depends on various people across the company replying to a request. Instead, the software autonomously collects required data from the connected systems and automatically prompts managers in freely definable intervals to recertify access rights.

The provider had competent answers to all our questions regarding IAM that also convinced the auditors.

Percy Frahm
Department Head Technical Infrastructure, Investitionsbank Berlin

Initial Situation

The staff of the ‘monitoring office’ of Investitionsbank Berlin (IBB) used to have a very tough job. It is their responsibility to regularly check the IT authorizations of the financial service provider’s 850 employees. This means that they also play a key role in ensuring that the bank meets all compliance provisions. However, given the steadily increasing number of regulations for the finance industry, manual verification is a time-consuming and error-prone task. What further complicated matters was that numerous IT systems of IBB were not connected to a central identity access management (IAM) system.

Challenge

Many managers did not understand the details or implications of individual access rights. This made proper and regular recertification, as is demanded by MaRisk (minimum risk management requirements), difficult to fulfill. In order to remedy this situation with a new IAM system, the bank thus issued an invitation to tender. Another reason that prompted the customer’s decision to get a new solution was that the auditing firm insisted on receiving an overview of all access rights updated daily.

The bank was also looking into introducing a consistent recertification solution as part of this system change.

Implementation

Surprisingly fast: Beta Systems was awarded the project, “because they have long-standing expertise in the banking sector,” says Percy Frahm, Department Head Technical Infrastructure at Investitionsbank Berlin. “The provider had competent answers to all our questions regarding IAM that also convinced the auditors.” The recertification portal that comes with the suite (and which requires no programming on the customer’s side) as well as the predefined role profiles provided further incentives to choose the Beta Systems solution. Also, it took only a little longer than half a year to implement the solution, which is very quick for this kind of project.

We now have an out-of-the-box identity access management solution simply not offered by other software providers.

Eike Schmaida
Chief Digital Officer & Head of IT Department, Investitionsbank Berlin

Outcome

The ‘Garancy® Identity Manager’ provisioning module enables IBB to centrally administrate and control all user-related authorization information (identities, groups, roles) across all IT systems. Access rights are recertified via the web interface of the Garancy® Recertification Center. Here the rights and roles assigned to employees are checked by the defined person in charge and automatically revoked if the manager decides not to extend an authorization. “We now have an out-of-the-box identity access management solution simply not offered by other software providers,” says Eike Thore Schmaida, providing a further reason why the bank opted for Beta Systems.

The bank’s authorization management and certification workflows now serve as a ‘best practice model for the promotional banking sector’. Automated and streamlined IAM processes enable the IT department and management to dedicate more time to customer-facing activities.

Customer

Year of foundation
1924
Number of employees
620
Head office
Berlin
Sector
Financial service provider
Investitionsbank Berlin IBB
Bundesallee 210
10719 Berlin
Germany

Contact us

Beta Systems Software AG
Alt-Moabit 90d
10559 Berlin
Germany

Share

Further Resources

Insight

IT Security in Logistics: Why IAM Is Important for Logistics Companies

In a world where global supply chains form the backbone of our economy, the logistics industry is facing enormous opportunities, but also challenges. Efficient and timely delivery of goods is now more important than ever, but increasing digitalization also comes with greater risks and requirements. While digital innovations boost efficiency, they also make the industry more vulnerable to cyber threats and associated data loss. In this context, Identity and Access Management (IAM) is becoming an indispensable tool to protect logistics companies and maximize their efficiency. This article explains why IAM is so essential for the logistics industry and how it can help overcome the many challenges it faces.
Whitepaper

IAM Implementation Methodology

In our whitepaper, “Methodology of an IAM Introduction,” you will discover how to successfully implement Identity & Access Management (IAM) to enhance the efficiency and security of your IT infrastructure. Given the complexity and challenges of IAM projects, thorough planning and a systematic approach are essential. Our free whitepaper offers a comprehensive guide to navigating these intricacies and achieving successful IAM implementation.
Whitepaper

Segregation of Duties: Proper Implementation of Critical Compliance Requirements

Explore the essential drivers and requirements for segregation of functions in our detailed whitepaper, drafted in collaboration with KPMG AG Wirtschaftsprüfungsgesellschaft. This comprehensive guide not only covers legal mandates and administrative directives but also highlights the internal interests that support a clean segregation of functions within a company.