- IGA Tool Selection & Planning:
We conducted workshops with stakeholders (IT, Security, Audit, and Business Process Owners) to evaluate multiple Identity Governance & Administration (IGA) platforms. SailPoint emerged as the ideal fit due to its SoD automation, cloud readiness, and extensibility. - Role & Policy Design:
- Performed a detailed role mining exercise to classify 1,500+ existing roles.
- Redesigned role hierarchies to eliminate redundancy—reducing total roles by 40%.
- Created SoD policy sets mapping critical conflicts (e.g., “Create Payment” vs. “Approve Payment”) for SAP ECC and Oracle Financials.
- SailPoint Implementation:
- Integrated SailPoint with SAP, Oracle, and custom web apps—enabling automated user provisioning, de-provisioning, and access request workflows.
- Configured certifications to run quarterly campaigns—ensuring managers reviewed and attested to user access.
- Built custom connectors for legacy systems via JDBC and REST APIs—consolidating all identity data into SailPoint’s unified dashboard.
- Automated SoD Analytics & Remediation:
- Created a continuous SoD monitoring process—automatically scanning user roles and transactions daily.
- Generated conflict remediation tickets in ServiceNow—assigning to appropriate role owners.
- Established a regular feedback loop—where exceptions were reviewed by a cross-functional SoD committee
.- Training & Change Management:
- Delivered role-based training sessions to 500+ supervisors, IT admins, and audit personnel.
- Produced quick reference guides and video tutorials demonstrating how to request access, perform recertifications, and remediate conflicts.
- Conducted C-Suite executive briefings on new SoD dashboards—fostering transparency and sponsorship.
