I.INTRODUCTION
Vietnam Joint Stock Commercial Bank for Industry and Trade, also known as Vietinbank, was established in 1988 after separating from the State Bank of Vietnam. It is one of the largest joint stock commercial banks and plays a crucial role as a pillar of the Vietnamese banking industry. Vietinbank has an extensive operational network nationwide as well as representative offices abroad. It was the first bank in Vietnam to be granted the ISO 9001:2000 certification and has been a pioneer in applying modern technologies and electronic commerce in Vietnam to meet management and business requirements. With the mission to become the leading bank in the Vietnamese banking system, Vietinbank aims to provide modern, convenient, and internationally standardized financial and banking services. It envisions becoming a versatile, modern financial and banking conglomerate by 2018, in line with international standards.
II.CHALLENGESWith the development and benefits that information and communication technology (ICT) brings to modern businesses and organizations, the application of ICT systems and applications in key and important business activities is essential. However, ICT systems in enterprises have long been using isolated and group-based approaches when providing accounts to users and establishing independent processes, overlooking security risks originating from current management methods. Specifically, the provision of user accounts (identities) not only identifies who the users are but also grants them access rights to the organization's/network's systems, which is a fundamental function but also carries security risks in today's business information systems.
- Managing identities and access for 20,000 employees when connecting to multiple different applications.
- The process of granting access rights to new employees is currently done manually through multiple procedural steps.
- Support for issues arising from the use of internal resources for users is completely manual.
- The current ICT environment has multiple identity authentication sources, leading to difficulties in management.
- Password management has several vulnerabilities
- Security policies are incomplete, and the current system has orphaned accounts and expired access rights.
- Security policy management and subjective assessment of security implementation through outdated procedures are not suitable for current operations
III. SOLUTIONS
To address the new needs and challenges in Vietinbank's business operations, HPT - a leading system integration company in Vietnam and a strategic partner of many major technology companies worldwide - has provided consultation and proposed the Oracle Identity and Access Management solution. This solution aims to comprehensively address the difficulties that Vietinbank is currently facing in identity and access management.
Oracle's Identity and Access Management (IAM) solution provides an integrated and unified security platform designed to manage user identities, administer resource provisioning, secure access to system resources, and support compliance with security principles in the banking system
The solution ensures the integrity of the bank's network of major applications by introducing a comprehensive level of security to safeguard enterprise resources and manage the operations of those resources. It offers the bank a higher level of integration, consolidation, and automation while increasing effectiveness in securing centralized applications, risk management, compliance management, identity analytics, and database integration.
Oracle's identity management solution focuses on automating and securing user identity management throughout the entire lifecycle between applications and users. There are five key factors that play a role as catalysts in applying identity management solutions for VietinBank to achieve the following benefits:
Reducing Security RisksPublicized negative incidents regarding security breaches can diminish customer trust and investor confidence in a company. Many recent events in the news concerning unauthorized access to applications or data are often caused by external parties, former employees, or employees with unauthorized access. Identity management helps mitigate these risks by controlling user access and providing strong management of user identities and privileged accounts, such as immediately terminating access to applications when an employee leaves the company.
Compliance with RegulationsEnterprises need to ensure strict protection of confidential information and adhere to industry-specific regulations and government requirements. Meeting these demands poses a challenge to the company's governance and security practices both internally and externally. Identity management technology provides a unified framework for policy enforcement and supports compliance with security policy assessments. For example, an identity management solution can facilitate easy reporting on the access history of user accounts to assist in evaluating internal security policies, even for accounts of former employees
Cost PreventionFinally, IT companies everywhere are being asked to "do more with less," whether it's supporting the deployment of new applications with new user populations (such as customers and partners) or interacting with new business models. Identity management helps companies effectively manage their enterprise (business) environments through technologies such as centralized user management, delegated administration, directory services, and provisioning. With identity management, day-to-day tasks related to user account creation and access management can be automated and delegated to appropriate entities with precision.
IV. BENEFITS PROVIDEDThrough the deployment of the Identity and Access Management (IAM) solution, the team at HPT, in collaboration with partners, successfully integrated it with Vietinbank's internal systems and brought efficiency to user identity management, reducing current processes and procedures within the bank. Additionally, the solution focuses on user experience by providing features that allow users to leverage the existing infrastructure and improve employee productivity. The key benefits include:
- Providing self-service features for users, reducing administrative costs and enhancing employee productivity. With self-service capabilities, users can perform processes such as requesting access rights and support from administrators automatically.
- Reducing the time required to provision access rights from several days to a few hours
- Offering single sign-on functionality, enabling users to log in once for multiple applications.
- Enhancing efficiency and ensuring security through automated tasks, preventing errors and mistakes that may occur during manual operations
- Preventing the creation of fake or orphan accounts during the management process.
- Assigning user roles with accurate access rights to resources.
V. CUSTOMER EVALUATIONAs one of the key solutions invested in and implemented by Vietinbank, with HPT playing the role of the main contractor, HPT has been highly regarded by Vietinbank for successfully integrating the solution with the bank's current critical applications and providing a new method for identity and access management on its system. Given the significance of the project and HPT's current capabilities, Vietinbank has placed absolute trust in HPT, allowing them to address security risks and ensure the safety of the bank's business information system, thereby improving operational efficiency. Through this project, HPT continues to demonstrate its expertise in system integration, not only with Vietinbank but also with other financial institutions operating in Vietnam's banking sector