Banking on Efficiency

Banking on Efficiency

Maintaining financial services compliance requirements

Operating in more than 4,000 buildings, one of the largest U.S. banks could not keep up with the onboarding and off-boarding of 300,000-plus employees, contractors, vendors and visitors.

Thousands of people were involved in approving building access, all working in different departments at different locations, each with their own manual processes and compliance requirements. The sheer number of identities to manage was overwhelming and consisted of cumbersome, manual processes using multiple emails and phone calls across the organization.

It often took days to get a new employee an access card. Scarier yet were delays in removing an identity from the system, giving ex-employees and non-employees access after their termination dates. All of the manual processes above bogged down the Security Operations department in volleying emails, running reports and doing endless data entry. Rather than hire more people to resolve these issues, the bank looked at technology to streamline its operations, increase efficiencies and manage identities.

Identity Compliance

Maintaining financial services compliance requirements by manually auditing individual access privileges was nearly impossible. The Security Operations audit process consisted of Excel sheets that were shared and reviewed securely by various teams but took months to complete. The bank was falling out of compliance and wasting money.

Implementing AMAG Technology’s Symmetry CONNECT web-based identity management platform with Symmetry Access Control automated all of these manual processes. Automated notifications sent via CONNECT workflow automated re-certifications and access requests, allowing the bank to enforce compliance requirements.

The bank faced many challenges, but one of the most significant were the manual onboarding and off-boarding process for the more than 300,000 employees, vendors and contractors. The email- and paper-based access request process involved thousands of local approvers, lacked a cost effective way to review, audit or complete access privileges, and created an inefficient security department based on a centralized security architecture.

Other challenges made it impossible to enforce corporate audit and security policies and implementation of a homegrown system that produced a 31 percent completion rate of quarterly access audits.

Streamlined Access

Using this solution allowed the banking system to use a policy-based identity management platform to automate all manual processes, improve efficiencies, reduce risk and help bank meet audit and compliance requirements, register more than 3,000 access area owners, and provide notifications and escalations to be automatically sent to access owners and managers during audits to enforce compliance.

Banking staff have been able to complete quarterly audits per corporate policy, streamline the access request process and eliminate all manual work efforts, as well as implement distributed security architecture to more efficiently manage identities.

With this solution, the bank achieved automated on and off boarding, the distributed model, increased efficiencies meant faster turnaround with lower labor cost and automated workflow provided simple method for access area owners to action access requests. The bank estimated that it will save more than $1 million in annually and be able to create audit reports instantly to meet compliance requirements. This update also will reduce access confirmation audits from more than 1 million to 500,000 and provide 100 percent completion of every quarterly audit since implementation.

Using the identity management software, the bank restructured its operations to a distributed model, allowing access owners to action access requests, audit their secure areas and manage identities with the click of a button. This eliminated the security team bottleneck, saved the bank millions of dollars in labor and created a safer environment. Detailed audit reports allowed the bank to prove that compliance requirements were met and maintained over time.

This article originally appeared in the February 2018 issue of Security Today.

About the Author

Kim Rahfaldt is Director of Media Relations at AMAG Technology, Inc., based in Torrance, Calif.

Featured

  • Report: Cyber Attackers Continue to Turn to AI-Based Tools to Avoid Detection

    Comcast Business recently released its 2025 Cybersecurity Threat Report, a comprehensive analysis of 34.6 billion cybersecurity events detected between June 1,2024 and May 31, 2025. Now in its third year, the report offers business leaders a unique perspective into the evolving threat landscape and provides actionable insights to help organizations strengthen their defenses and align cybersecurity with business risk. Read Now

  • Axis Communications Creates AI-powered Video Surveillance Orchestra

    What if cameras could not only see the world, but interpret it—and respond like orchestra musicians reading sheet music: instantly, precisely, and in perfect harmony? That’s what global network technology leader Axis Communications set to find out. Read Now

  • Just as Expected

    GSX produced a wonderful tradeshow earlier this week. Monday was surprisingly strong in the morning, and the afternoon wasn’t bad at all. That’s Monday’s results and asking attendees to travel on Sunday. Just a quick hint, no one wants to give up their weekend to travel and set up an exhibit booth. I’m just saying. Read Now

    • Industry Events
    • GSX
  • NOLA: The Crescent City

    Twenty years later we finds ourselves in New Orleans. Twenty years ago the aftermath of Hurricane Katrina forced exhibitors and attendees to look elsewhere for tradeshow floor space. Read Now

    • Industry Events
    • GSX
  • Nothing Artificial About this Intelligence

    I have been looking forward to this year’s GSX show in New Orleans, the Cresent City, or if you prefer The Big Easy. It seems like quite a while since we’ve been here. Twenty years ago, ASIS, as it was known then was literally washed out of the city by someone known as Katrina. It is a good thing to come back to NOLA. Read Now

New Products

  • Luma x20

    Luma x20

    Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.”

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.