Generali Belgium, a company specialised in life and non-life insurance, engaged the company Paradigmo to help increase its computer security. Generali has 450 employees, including 70 in the IT department, underlining the company’s maturity in this area. Generali Belgium’s IT system comprises a variety of IT-applications linked to its insurance line of business, which means they are ‘business critical’. These applications include Documentum, various applications on the mainframe and shared directories, which are linked to specific projects, and for which the access rights are managed by a number of different people in the company.
Until now, each of these components was subject to decentralized management or kept in ‘silos’ for managing identities and access to the IT system. During audits or controls, this resulted in major operational and financial costs. It became clear that there was a need to set up a more efficient identity governance and access, to improve the knowledge of and control over access rights and thus to respond more effectively to monitoring and control needs.
Generali therefore engaged Paradigmo to implement a solution based on the Identity GRC platform, developed by the company Brainwave. “As an insurer, especially one that’s listed on the stock exchange, Generali has a particular obligation to carry out various audits for the control bodies,” said Bruno Guillaume, IT Risk & Security Officer at Generali Belgium. “That means having an efficient and unique solution on the market, such as Brainwave Identity GRC. We now have a 360° view of everyone who has access to anything in the different IT components. Besides simplifying and speeding up the compliance controls, this improves the quality and efficiency of the process for revising access rights.”
Paradigmo’s solution meets the stringent requirements for security. “Having installed Brainwave Identity GRC, we can limit the risk of internal fraud and data leakage, and we can improve the overall security level of Generali Belgium’s information system.” Generali is also planning to make further use of the Brainwave Identity GRC platform on the extranet, for controlling and revising access rights.
The extranet includes a network of 1,000 brokerage offices, representing around 3,000 people. Solutions like Brainwave are sure to be used increasingly in all large companies, given the risks arising from companies being ever more open to interactions with the outer world.