Company Requirements for a New System and Potential Objections
The capacity to run in the cloud was imperative to the organization in order to increase flexibility of access and meet the company’s scalability needs. They also wanted to reduce server costs by hosting data on a remote server.
An access control solution that does not require coding and supports natural language so entitlements can be easily managed, was one of the first things that attracted them to PlainID.
They wanted a system that is efficient and simple to use, with the capability to provide a clear overview of policies. The solution needed to cover complete visibility into who can do what, under which conditions, on what, and from where, at all times. They also required policies to be effortlessly updated to keep up with the increasingly complex regulatory requirements.
Furthermore, they wanted access decisions to be able to be determined dynamically and in real-time. This required moving from a developer driven solution to a more business focused solution that enabled the organization’s business leaders to design their own business driven policies. They required a solution that put management firmly in control and be able to make changes, manage and implement policies themselves.
Of central importance, was the need to meet security and regulatory compliance issues. The company operates as part of the highly regulated financial industry, and needs to comply with both internal and external compliance frameworks including federal and state laws. They must also conduct due diligence in terms of identity theft and fraud risk to comply with anti-money laundering laws.