SIGS Special Interest Group
4th IAM Forum

Save the DateClick on the .ics file to save the date

Target Audience Professionals which are interested in the topic Identity & Access Management

From Consultancies and Resellers/ Integrators are only technical peoples (which are involved in this topic in their daily job) allowed to take part – max. one participant per company. Vendors and people with a Sales/Marketing role are not authorized as participants.

Rules This platform is held under Chatham House Rules!
CPE Credits Earn 4 CPE (Continuing Professional Education) for attending this SIGS forum. Please request a confirmation.
Location Hilton Zurich Airport Hotel
Hohenbuehlstrasse 10
8152 Opfikon-Glattbrugg

There are a lot of free park places available.
Train: railway station Zurich Airport – take the hotel shuttle

Date of Event (searching for a new date)
Further planned date for 2020: 22nd October 2020
Language English
Participation Costs Fr. 55.— per participants
Organization, presentations, beverages and apéro riche included

 
Agenda

 

1:30 – 2:00 Registration & Coffee
2:00 – 2:45 Alan Moran, Digital Portfolio & Innovation at educa.ch

Edulog: The New Identity Federation for Swiss Schools – The Journey was always going to be the Goal
At a meeting of the General Assembly of the Federal Education Departments (EDK, CDIP) on 24.10.2019 a momentous motion was passed to authorise the launch of the Federation of Identity Providers of the Swiss Education System under the name of “Edulog”. This event constituted a significant milestone for the Swiss Education System thereby laying a foundation stone for the digitalization of formal education atop of which future developments may take place.

This talk elaborates the journey taken to this decision outlining the challenges encountered along the way. It offers salient insights into the realities of large scale public sector projects and illustrates how a positive spirit of cooperation can indeed lead to transformative change within the public sector.

2:45 – 3:15 (This part needs to be replaced) Giampaolo M. Trenta, Head IAM Competence Center at Bank Julius Bär & Co. AG

IAM and toxic access rights
Risk inherent to the execution of critical business transactions can be mitigated by requiring the active involvement of many individuals (i.e. the 4-eyes principle) for their execution. There are however at least two implementation approaches. One is focusing on single transactions and the other at the business process as a whole (i.e. segregation of duties).

This presentation will explain how an IAM solution can sustainably help in addressing the challenge of controlling the assignment of toxic access rights combinations and thus enforcing segregation of duties. It will also explain possible options with their architectural and operational consequences.

3:15 – 4:00 Coffee Break
4:00 – 4:45 Roundtable Discussions
3 different tables to discuss different topics. You can chose the one you like to attend and we will change the tables two times

–> Roundtable 1
(This part needs to be replaced) moderated by Giampaolo M. Trenta, Head IAM Competence Center at Bank Julius Bär & Co. AG

Follow up “IAM and toxic access rights”
_______________________________________________________________________

–> Roundtable 2
moderated by Archana Panchal, Associate at Coutts/RBS

RBAC is dead, so why do we keep flogging a dead horse?
As the title of the roundtable suggests, RBAC is out and ABAC seems to be the new buzzword in I&AM. But as with all buzzwords, it almost always means vastly different things to different people.

In this session, we want to hear from you – what does „ABAC“ mean to you? What differences, if any, do you see between RBAC and ABAC? Have you used ABA in the wild, and if so, how did it work out? What challenges do you see to the adoption of ABAC?
An often overlooked aspect of policy management is the Policy Information Providers (PIPs), from where the information about subjects is sourced. Especially in ABAC, this becomes key to avoid certain pitfalls of RBAC. What are the challenges to maintaining diverse PIP’s across a complex organization, with varying nomenclature and formats and structures?

And for management of an ID over its lifecycle – what challenges do you anticipate? In assignment, policy usage and recertification?

We look forward to hearing from you on these questions critical to understanding and adoption of ABAC as the new model for Access Control.

_______________________________________________________________________

–> Roundtable 3
moderated by Alan Moran, Digital Portfolio & Innovation at educa.ch

Follow up at “Edulog: The New Identity Federation for Swiss Schools – The Journey was always going to be the Goal”

4:45 – 5:30 2nd turn – change to another table

5:30 – 6:15 3rd turn – change to another table

 

The Sponsor of this event is:

Main Sponsor Co-Sponsor

Registration

This is a ‘must attend’ event for all security professionals! We are confident that the relationships you develop here will prove to be crucial to your continuing success.

Register here!

With the registration for this event you accept, that SIGS may use the data entered for its own purposes and may share for use it with its event partners and event sponsors of this platform. In addition, we share the contacts as well with the community itself.

Earn CPE Credits for
attending SIGS Events
 

Registration here!

X
X