1 / 16

National Australia Group (UK) With Hindsight!

National Australia Group (UK) With Hindsight!. Rules of Engagement. If you have a question… raise your hand. If you are shy… speak to me later or drop me an email at: Stephen.Swann@eu.nabgroup.com. About the National.

Download Presentation

National Australia Group (UK) With Hindsight!

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. National Australia Group (UK)With Hindsight!

  2. Rules of Engagement • If you have a question… raise your hand. • If you are shy… speak to me later or drop me an email at: • Stephen.Swann@eu.nabgroup.com

  3. About the National • The Group is an international financial services organisation that provides a comprehensive and integrated range of financial products and services. • Our Purpose • Growth through excellent relationships. • Our Vision • We will be a leading international financial services company which is trusted by you and renowned for getting it right. • STRATEGIC OVERVIEW • Deliver solutions that help meet customer’s complete financial needs • Build and sustain ahigh level performance culture • Build trusted relationships with all stakeholders • Build and manage our portfolio of businesses for strong and sustainable total shareholder return • Create and leverage strategic assets and capabilities for competitive advantage

  4. So You’re Australian, right? • National Australia Group’s UK interests include: • Clydesdale Bank • Yorkshire Bank. • National Australia Bank (London) • The UK division has its own Technology team based in development centres in • Glasgow (Scotland) • Leeds (England) • Belfast (Northern Ireland) • More information can be found at www.nabgroup.com

  5. NAG’s Applications • Retail Internet Banking (J2EE) • Branch Teller System (WSBTT) • Maintenance/Enquiries System (J2EE) • Sales & Illustration System (Siebel) • eMail System (iNotes) • Provisioning System (ITIM) • Adobe Print Servers/Archivers • I.M.M.P.s

  6. NAG’s Applications • 3270 Access to mainframe • Client/Server Applications • Visual Basic • C/C++ • Access • Java

  7. NAG Project Methodology & Success Criteria We are here

  8. The Final Picture

  9. Phase 1 Administrator • Phase 1 - 2003 • 500 Users • 3 Protected Applications • “Manual” Scripted Provisioning End Users (500) Directory WebSEAL Application

  10. Phase 2 Auditor • Phase 4 - 2006 • 260,000 Users • Many Protected Applications • Internet Banking Protected • Automated Provisioning End Users (260,000) Directory WebSEAL ITIM Applications

  11. NAG’s User Base & Tivoli Products • Web based access control for staff based applications • 10,000 staff across hundreds of retail outlets and Head Office locations. • Web based access control for customer based applications • 250,000 Internet Banking customers ( -> 700,000 by Dec. 06) • Applications Protected • 14 Web based applications (including Internet Banking) • The Tivoli Products in use are: Tivoli Access Manager v5.1 Tivoli Identity Manager v4.5.1 Tivoli Directory Server v5.2 Tivoli Directory Integrator v6.0

  12. Real World v Utopia Project Managers Project Managers Tech Risk/Auditor Policies/Principles CEO Mandate IM TEAM IM TEAM Tech Risk/Auditor Service Delivery • Utopia Policies & Principles in place; CEO/CIO sponsorhip in placeAll Project Managers embrace Identity ManagementTechnology Risk & Auditors involved in design processService Delivery integrated into the process • Real World Many Project Managers By-Pass Identity ManagementMajor programmes forced to use Identity Management (& pick up cost)Technology Risk & Auditors have limited involvementService Delivery not involved

  13. If We Had It All To Do Again… • Identity Management Programme • Create an Identity Management programme rather than relying on projects to fund the infrastructure • Create strategy for future utilisation of infrastructure (rather than deployment by stealth • Create the architectural policies, principles and guidelines up-front • Deploy a provisioning solution up-front • Enterprise Support • Get Leadership Team sponsorship – both Business Sponsorship (CEO?) and Technology (CIO?) • Engage Audit and Technology Risk teams earlier in the design phase • Management Tools • Spend additional time working on Configuration Management; Log File Management; Auditing Capabilities and infrastructure monitoring(!)

  14. If We Had It All To Do Again… • Pay our full-time employees a lot more money!

  15. Will We Achieve Our Aims? • Tivoli Access Manager for eBusiness • YES • TAMeb is well integrated into our infrastructure • Performance is good & Reliability is good – “despite what they say” • Enhances productivity – Java developers no longer need worry about security • Tivoli Identity Manager • YES • Work is required to fully understand the organisational structure • Provisioning new target platforms required to fully embed the product in the infrastructure • Would greatly enhance productivity; reduce costs and free up resources – benefits, however, still to be realised • Other Tivoli Security Products • Tivoli Federated Identity Manager is a good fit for us but we are waiting on other 3rd parties to catch up with the technology!

  16. THANK YOU National Australia Group’s Hindsight

More Related