Children's National Medical Center Automates User Access Rights Compliance with SCC's Access Auditor

Author
SySAdmin
Posted
March 2, 2010
Views
2828

Page All:

Page 1
Children's National Medical Center Automates User Access Rights Compliance with SCC's Access Auditor

One of the nation's top-ranked children's hospitals deploys Access Auditor at no cost as part of Security Compliance Corp's charity outreach program for children's hospitals

SAN FRANCISCO, March 2 -- Security Compliance Corporation (SCC) announced today that Children's National Medical Center has deployed Access Auditor to streamline and automate the discovery, reporting, and certification of user access rights for over 6,000 Children's National employees. After a rapid 3-day deployment, Access Auditor provided Children's National with a consolidated view into user access rights and the ability to quickly discover orphaned user accounts and inappropriate access rights across the organization. The hospital also deployed Access Auditor's Fuzzy ID module to synchronize disparate user accounts from various applications with the HR system of record.

"Like many organizations, we have a variety of systems and legacy applications with no common user identity key. SCC's Identity Mapper with the Fuzzy ID module has allowed us to map user accounts from a wide variety of systems back to the same physical person, giving us a true consolidated view into user access rights," states Matthew Hicks, Director of Information Security. "Access Auditor has automated our process of discovering and removing orphaned user accounts, and will help us streamline our periodic review and certification of user access rights."

Securing sensitive data is a top priority in every organization and a key component of a strong governance program. With Access Auditor, organizations can automate several labor-intensive tasks related to user privileges. In addition to the periodic review and approval of user access rights, Access Auditor detects and reports on changes to sensitive privileges and users with excessive access rights, while enforcing strong separation of duties controls. "Access Auditor allowed us to move away from a labor-intensive manual process to an automated process that has saved us many labor hours," notes Michael Lavorel, Executive Director of Information Resources Technology.

Security Compliance Corporation licenses Access Auditor at no charge to children's hospitals who share its desire to help children in need. SCC applauds those hospitals, like Children's National and others in the Children's Miracle Network, who will not turn away a child in need due to limited financial resources. For more information, see http://www.securitycompliancecorp.com/freeaa.html.

About Children's National Medical Center

Children's National Medical Center is the only exclusive provider of pediatric care in the metropolitan Washington area and is the only freestanding children's hospital between Philadelphia, Pittsburgh, Norfolk, and Atlanta. Children's is the largest non-governmental provider of pediatric care in the District of Columbia, providing more than $50 million in uncompensated care. Children's National is proudly ranked consistently among the best pediatric hospitals in America by US News & World Report and the Leapfrog Group.

About Security Compliance Corporation

Security Compliance Corporation's (SCC) Access AuditorĀ® automates the periodic review and certification of user access rights and entitlements. SCC's workflow engine provides the ultimate flexibility in defining and managing the periodic attestation of user access rights. The enhanced Identity Mapper(TM) utilizes a proprietary algorithm to link user accounts from disparate systems back to the correct person, even when common identifiers or login IDs do not exist. Access Auditor's consolidated view of user access rights enables customers to identify orphaned accounts left behind from terminated users, thus reducing the risk of fraud and audit findings. By automating labor-intensive tasks related to user access rights and separation of duties, SCC's customers improve security while minimizing the costs of compliance. Founded in February 2005, Security Compliance Corporation is based in Orinda, CA. For more information, see http://www.securitycompliancecorp.com/.

Source: Security Compliance Corporation
   

CONTACT:  Diane Slater of Security Compliance Corporation,
1-866-657-4550, info@securitycompliancecorp.com

Web Site:  http://www.securitycompliancecorp.com/

Title

Medium Image View Large