Transcript
power of SailPoint's Atlas platform to innovate and deliver exceptional identity solutions for our customers. Today I'm joined by Hardik Modi, Senior Director, Identity Management at IDM Works. I am also excited to share that IDM Works is one of our top delivery admiral partners in America and around the world. One of the biggest challenges enterprises face today is onboarding third party identities, contractors, vendors, field workers, even contingent labor who are not part of an organization's HR system. To address this scenario, SailPoint has created the Non-Employee Risk Management Platform, sometimes referred to as NIRM, to grant critical third party access. But in a world of increasing digital fraud, how can we reliably verify a third party identity before granting access to sensitive applications? Identity verification isn't just a technical problem, it's a business critical trust issue. That's where our SailPoint delivery admiral partner, IDM Works, comes in. I'm thrilled to have Hardik from IDM Works with us today. So Hardik, let's go ahead and jump in. Thanks so much for joining us. I know you're in the trenches with clients every day and your time is precious, so I really appreciate it. Do you mind kicking us off by sharing more about the IDM Works Verify solution that you guys have developed to secure the end-to-end third party onboarding process? Thanks Neil for having me. So a big challenge we consistently hear from our customers is, how do I verify my non-employee populations? Whether you are contractors, partners, or vendors. Through our partnership with both SailPoint and ID Data Web, IDM Works has built a plug and play identity proofing solution, we call it IDM Works Verify, on top of the SailPoint at last platform that we deploy as a managed service offering. With this offering, customer gain is secure, scalable, and frictionless way to verify non-employees before granting an access, which is a very, very key thing. Our proofing solution takes the approach of validation of those third party user who they claim to be, once they are onboarded within the SailPoint's NUM platform. And once a user is onboarded, SailPoint sends them an account claiming invitations. And during this process, we are leveraging ID Data Web to perform those real time identity verifications, document checks that identifies and triggers the fraud signals when appropriate. We embed this entire verification flowing to the SailPoint's at last platform. So customers get a seamless identity life cycle experience from onboarding to proofing to governance, and then eventually deprovisioning that access. This approach enforces a verify first, grant access second strategy, making those entire identity proofing a governance control rather than an afterthought. All right, Hardik. So let's dive into that last phrase. I like that one. Verify first, grant access second. So it sounds simple, but can you tell me a little bit more about the implementation design on that one? Absolutely. So we developed IDM Works Verify solution as a seamless, fully managed services built onto the SailPoint at last platform. This solution combines the three key components. Number one, we leverage ID Data Web's data sources for that identity proofing to verify identities prior to that activation. Second, ID Works delivers those implementation as well as configuration of those ID Data Web integrated within the NUM workflows, ensuring that identity proofing is seamless, inserted into the life cycle processes, delegated administrator flows, and all the other high risk identity life cycle events. And then the last one would be our MSP team, our managed services team, that provides the continuous monitoring as well as tuning of those proofing process, adjust those risk thresholds to balance the security posture with end user experience to ensure that solution continues to run smoothly. And this offering also includes the compliance audit, I guess that's a key one for any type of high risk third party users. For our customers, it means they get trust and speed at the same time. It's a very fast, frictionless, and automated experience for the end user. But at the same time, it's backed by a robust enterprise grade verification process. So Hardik, I want to step back for a second. So we see this use case out in the field a lot. We hear about it, but we don't hear about that many clients coming back to us saying, this is what we need to do right now. This is the first thing, right? So where did you guys get the idea to build this? Did you partner with one of our clients? What did that look like? Just to kind of step out of kind of where we were heading, I just want to go back to the beginning for a second and kind of how you actually created the idea. Absolutely. So we started this one with one of our healthcare customers. Because again, when we look into this healthcare, they are having a number of those non-employee populations, right? Maybe the visiting physicians or maybe researchers, medical providers, the nurses, right, who are going from one facility to another facility. Those user-based needs access to those sensitive patient information on day one. They needed to have that absolute certainty that every person who has been granted those access is a legitimate user. So this is pretty much that idea of verification that came up and there is a compliance need. So we started with them, essentially we implemented our IDM Works Verify solution in conjunction with the SailPoint Atlas platform and every incoming provider's identity is pretty much automatically verified against that identity ID database, trusted data sources. During that NUM onboarding, as well as that entire process, proofed using the BioGov ID and mobile match templates. This pretty much entire approach provided the three outcomes. First by using IDM Works Verify offering, the customer got a lot more confidence in the access decisions that are being made. Those decisions were happening into the real time based on the verified results. And the nice part was that team did not need a lot of training to start using it effectively because that is one of the challenges that we see. That okay, what does that organizational change management looks like, how I can train, but the solution is essentially more like a plug and play. Second would be this entire approach made it possible to automatically onboard Active Directory, Epic and any other healthcare applications, which pretty much helped create that, I would say that very smooth day one experience for those end users. And again, with our experience, that is always a very big deal into these healthcare environments because they are essentially working for life and death situations. And any type of these access delays can quickly become that operational issues. And then the last one we had would be this solution helped our customer meet that HIPAA requirements by putting in place a process that was reputable, governed and audit ready. So if I look at from that 360 degree view, I guess this was not only about the automation, but it was also about giving them a leaner comfort structure they could stand behind. And all of those pretty much resulted into the customer confidence to operate securely at the scale. Man, Hardiff, that's a pretty powerful outcome, especially in such a critical industry. So really highlights the value behind the solution that you and the team have built. Obviously building a truly seamless solution like this often means overcoming implementation hurdles. So what specific features of the SailPoint Atlas platform were key to making this technology possible? Yep. So that entire Atlas platform, I guess that was a fundamental in allowing us to build a SailPoint native solution instead of going into this some external capability. And the extensibility that Atlas platform allows us, I guess that essentially force us to innovate. We used workflows within the platform to orchestrate that entire processes. When a new identity request access within the ISC platform, the workflow gets triggered and that workflow makes a real time call to the ID data web APIs to perform that identity check. And then based upon whether it's a pass or fail, the workflow decides what should be that next step, either proceeding with the creating the account and granting the birthright access or maybe flagging the identity for the review if it's failed. So without the flexibility of workflows and our ability to call third party APIs, building this kind of integrated frictionless or even event driven solution would have been far more difficult, if not impossible. Our offering takes an advantage of several Atlas native capabilities, ISC APIs, as well as those event triggers for those real time status updates from ID data web, custom UI tiles that we have built directly within that Atlas platform. Identity data web's API is integrated as our identity verification engine to verify against the BioGov ID mobile match. And then of course, the NumData model extension to store those verification attributes as well as that overall risk scoring. And then of course, we have used access request as well as lifecycle workflows or events. Those are pretty much tied to the proofing results. I got to tell you, Hardik, I love that. It's truly a fantastic example of using the Atlas platform to extend identity security to solve unique business challenges. And specifically for this case, obviously in the healthcare space, but as we know, there's so many other use cases, so many other industries where this is important. All right. It sounds like kind of the combination of IDM works expertise in the SailPoint Atlas framework is where that magic actually happens. So what's next for identity proofing? I would tell you that myself and my entire team is very excited about our IDM works verify offering. And I think it provides that easy button for both any of our new customers who is just starting their SailPoint journey or any of our existing customer who is pretty much having that NUM inbuilt within their ecosystem. We are continuously looking for ways to enhance the solution with more data sources or even more additional risk signals and see this one as in a foundational component of a true zero trust model. This offering is pretty much available today as in a managed services from IDM works. So we are very excited. Hardik, I got to tell you, this has been incredibly insightful. It's a perfect showcase of how our partners are building on top of SailPoint's Atlas framework and Atlas platform to deliver real business value. Thank you so much for sharing this offering with us today and all of your amazing insights into ID proofing. If you want to learn more about ID proofing from IDM works, please go visit their website, reach out to Hardik on LinkedIn. They are truly one of our greatest partners. They are in the trenches with all things identity around the globe. So no matter what your identity challenges are, they're a great resource to reach out to if you're looking for some additional assistance. With that said, have a great day, everybody.
