Sessions By Type
End-User Case Studies
Gartner invites a number of end users to personally present leading-edge case studies and answer questions.
Sessions
Case Study: Lessons from Molson Coors Brewing Company: Choosing and Implementing Identity and Access Management in the Cloud
14 November, 2011 (01:45 PM - 02:45 PM)
Molson Coors Brewing Company (MCBC) strategy and direction has changed the needs of the technology needed to support these efforts. In recent years Molson Coors has increased joint ventures, partnerships, cross brewing relationships and has entered into greater collaboration with third parties. The company has also started heavily using SaaS applications, business processing outsourcing models and has placed greater reliance on a large contingent workforce. With these changes, MCBC needed to change its identity and access management strategy as the current system had inconsistencies across IT, inflexible with the rate of change within the and was becoming progressively more expensive to change with a staff under qualified to complete the complex IAM tasks. Come hear how MCBC researched and implemented IAM software without the complexity and cost of implementing the software on-premise.
Case Study:Identity at GE
14 November, 2011 (04:15 PM - 05:15 PM)
Attestation of users, devices and even data is increasingly critical to managing and securing highly transactional and virtualized environments. With the externalization and consumerization trends such as Any Device, Cloud, Collaboration and Workforce Mobility, we must look beyond legacy identity challenges of the enterprise, resist simply externalizing internal identity processes and develop a direction where identity becomes the true network perimeter. In this case study we will review: • The history of IAM at GE • Tipping point of IAM in the enterprise • Extending IAM inside and outside the enterprise
Case Study: What Happened at RSA? Lessons Learned From an Advanced Persistent Threat Attack
15 November, 2011 (01:45 PM - 02:45 PM)
The perimeter has fallen; there’s someone inside your network. They are well equipped, well practiced, and leave ghost-like traces. You’re lucky to have detected the attack; the odds are less than 10%. Welcome to the Advanced Persistent Threats Club, which over the last two years grew from a handful of military and government targets to over a hundred major corporations in virtually every private sector industry. What’s new about APTs? Why are they successful? Why are they so difficult to detect, let alone prevent? Is a new defense doctrine needed? And what should it look like? RSA top cyber security researcher will provide insights and lessons learned.
Case Study: Securing the Network Infrastructure and Enhancing Security Audits at the FERC
15 November, 2011 (03:45 PM - 04:45 PM)
The potential of a cyber-attack against our nation’s utilities and critical infrastructure has gained the widespread attention of the federal government. This session will look inside the Federal Energy Regulatory Commission and its mission to protect its own network infrastructure against unauthorized access as well as the key tools used in helping FERC comply with Federal Information Security Management Act (FISMA) regulations presented. To achieve FISMA compliance, FERC deployed Network Access Control (NAC) across its entire network environment, initially in its headquarters and then to remote sites as well as to wireless devices. This was critical as FERC sites are the subject of frequent visits from non-governmental personnel, including individuals and groups from foreign nations. This session will be presented in a case study/war story format that will take attendees through FERC’s network challenges that previously made compliance with FISMA difficult.
Case Study: The New Security Prism: Solving the Puzzle from All Sides
16 November, 2011 (08:00 AM - 09:00 AM)
With the proliferation of new technologies and delivery models, IAM professionals must reconcile business performance goals with regulatory requirements, consumer privacy issues, and vendor system integration. This challenge is particularly significant in the financial services sector where sensitive information is routinely targeted by cybercriminals. Keith Gordon, Senior Vice President, Fraud and Enrollments Executive for Bank of America will discuss best practices and emerging innovation in securing online and mobile banking transactions as well as the intersection of IAM strategy and overarching business, risk and technology objectives. Key topics include: authentication and authorization for online banking, privacy and security education for customers, and identity management.
