Identity and Access Management

Improved security architecture thanks to access control and identity management

Due to the increased IT threat situation in recent years, a Hessian insurance company was faced with the challenge of increasing the security of its infrastructure while at the same time improving scalability, transparency and maintenance costs. After a detailed analysis of the existing security architecture by BEUL, heterogeneous access control and the visibility of users, end devices and access were identified as the greatest potential for IT security optimization.

A completely revised IAM concept was developed in workshops with the customer, which included centralized NAC (Network Access Control) on a certificate basis for the internal wired, wireless and external network (VPN and cloud access). In addition, services such as Profiling (automatic recognition of the type and affiliation of connected end devices by the network) and a Quarantine Zone (temporary network area for clients that, for example, do not meet the current software version) were included. The core of the solution is the Cisco Identity Services Engine (ISE).

BEUL guided the customer through the conception and workshops, supported the definition of a global set of rules and guidelines and implemented the solution in all of the customer's main locations as well as numerous branches and offices. Comprehensive monitoring and change management in the system environment is permanently ensured by a BEUL managed service.