{"id":54422,"date":"2022-03-10T10:50:36","date_gmt":"2022-03-10T09:50:36","guid":{"rendered":"https:\/\/www.oncomed.cz\/?post_type=studies&#038;p=54422"},"modified":"2022-03-10T12:31:19","modified_gmt":"2022-03-10T11:31:19","slug":"implementation-of-idm-in-oncomed","status":"publish","type":"studies","link":"https:\/\/www.oncomed.cz\/en\/blog\/implementation-of-idm-in-oncomed\/","title":{"rendered":"Implementation of IDM in oncomed"},"content":{"rendered":"<div class=\"text-small py-4\">\n  <div><\/div>\n<\/div>\n\n\n\n<div class=\"text-small py-4\">\n  <div><h2>IDM \u2013 what is it?<\/h2>\n<p>IDM or Identity Management is a key IT system that deals with central control and management of identities and role assignment \u2013 i.e. access to individual IT systems and relevant roles. This system ensures that individual employees (or external collaborators) of a company have relevant access to the\u00a0systems and applications they need to perform their job duties. IDM helps to correctly identify, authenticate, and authorize people, groups of people, or software applications through attributes \u2013 including user access rights (roles) and restrictions based on their identity.<\/p>\n<h3>Why is IDM so important?<\/h3>\n<p>According to a study conducted by (ISC)<sup>2<\/sup>, 80 % of security breaches are caused by identity access issues, usually by weak or poorly managed credentials or non-compliance with IDM-related procedures and processes.<\/p>\n<p>Individual employee access management enables organizations to eliminate identity theft, data breaches, and illegal access to confidential company information. The entire system also significantly reduces the workload of IT departments, as all the access rights within the company are assigned automatically without further necessary interventions.<\/p>\n<p>The tool eliminates errors that could be caused by manually entering the access rights or that could occur due to insufficient or missing communication between individual departments, typically HR and IT. Last but not least, IDM significantly facilitates compliance with legislation and contractual obligations regarding the security and protection of customer data.<\/p>\n<\/div>\n<\/div>\n\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"576\" src=\"https:\/\/www.oncomed.cz\/wp-content\/uploads\/idm-system-1024x576.png\" alt=\"\" class=\"wp-image-54423\" srcset=\"https:\/\/www.oncomed.cz\/wp-content\/uploads\/idm-system-1024x576.png 1024w, https:\/\/www.oncomed.cz\/wp-content\/uploads\/idm-system-300x169.png 300w, https:\/\/www.oncomed.cz\/wp-content\/uploads\/idm-system-768x432.png 768w, https:\/\/www.oncomed.cz\/wp-content\/uploads\/idm-system-1536x864.png 1536w, https:\/\/www.oncomed.cz\/wp-content\/uploads\/idm-system.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure><\/div>\n\n\n<div class=\"text-small py-4\">\n  <div><h3>IDM in oncomed<\/h3>\n<p>The implementation of IDM in oncomed started in the autumn of 2019. We launched the system in full at the end of January 2020. In recent years, the Company has grown very quickly and it was necessary to think about the solution of individual integrated IT systems, their application roles and the\u00a0integration method. The introduction of the IDM system significantly supported the intention to have a single central identity for (almost) all applications, to manage them and, according to user profiles, to manage the access to the applications, resources and groups.<\/p>\n<p>A key part of the IDM solution is the integration into a personnel system \u2013 VEMA HR. This is the\u00a0primary source (i.e. the management system) of personnel information and employee contractual relationships with the\u00a0employer. IDM interprets this data and uses them to automatically manage the\u00a0start or termination, i.e. any changes in the employee job functions. This feature significantly enables the\u00a0automation of routine identity management processes.<\/p>\n<p>IDM is an essential element of internal integration \u2013 first the office domain was transformed and then integrated as a central user database \u2013 all individual AD groups were loaded into the IDM, their structure changed and the individual roles were transparently inserted into the system. The domain for laboratories was next. In the summer of 2022 we plan to migrate the production domain. As a\u00a0pharmaceutical company, validation of the IDM system in accordance with GAMP requirements was an essential part.<\/p>\n<h3>What were the challenges we faced?<\/h3>\n<p>The most complicated step was the entire restructuring of the accesses\/roles in oncomed \u2013 first, it was necessary to compile the individual profiles into new logical units to support automated processing and to allow the connection of other applications and access rights. The original system was more or less manual, it was therefore necessary to add the so-called process dimensions. This was possible with the IDM only.<\/p>\n<p>However, it is an ongoing process \u2013 other IT systems are added gradually. Our ambition is to transform the administration of users and roles which can only be handled manually to fully automated. Thanks to this, however, the Company is one step ahead in terms of automation and overall innovation.<\/p>\n<\/div>\n<\/div>\n\n","protected":false},"author":3,"featured_media":0,"template":"","meta":{"_acf_changed":false,"advgb_blocks_editor_width":"","advgb_blocks_columns_visual_guide":"","footnotes":""},"categories_studies":[9],"class_list":["post-54422","studies","type-studies","status-publish","hentry"],"acf":[],"aioseo_notices":[],"featured_img":false,"coauthors":[],"author_meta":{"author_link":"https:\/\/www.oncomed.cz\/en\/author\/jorova\/","display_name":"Zuzana Jorov\u00e1"},"relative_dates":{"created":"Posted 4 years ago","modified":"Updated 4 years ago"},"absolute_dates":{"created":"Posted on 10. 3. 2022","modified":"Updated on 10. 3. 2022"},"absolute_dates_time":{"created":"Posted on 10. 3. 2022 10:50","modified":"Updated on 10. 3. 2022 12:31"},"featured_img_caption":"","tax_additional":{"categories_studies":{"linked":["<a href=\"https:\/\/www.oncomed.cz\/en\/?categories_studies=articles\" class=\"advgb-post-tax-term\">Articles<\/a>"],"unlinked":["<span class=\"advgb-post-tax-term\">Articles<\/span>"],"slug":"categories_studies","name":"Kategorie blogu"},"translation_priority":{"linked":[],"unlinked":[],"slug":"translation_priority","name":"Translation Priorities"}},"series_order":"","_links":{"self":[{"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/studies\/54422","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/studies"}],"about":[{"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/types\/studies"}],"version-history":[{"count":5,"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/studies\/54422\/revisions"}],"predecessor-version":[{"id":54460,"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/studies\/54422\/revisions\/54460"}],"wp:attachment":[{"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/media?parent=54422"}],"wp:term":[{"taxonomy":"categories_studies","embeddable":true,"href":"https:\/\/www.oncomed.cz\/en\/wp-json\/wp\/v2\/categories_studies?post=54422"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}