AES rapidly scales and transforms lifecycle management
The AES Corporation (NYSE: AES) is a global energy company accelerating the transition to greener, smarter energy solutions. Their diverse workforce is committed to continuous innovation and operational excellence, while partnering with customers on their strategic energy transitions and continuing to meet their energy needs today.
Challenge
AES previously faced siloed processes across different countries for user provisioning and deprovisioning. This siloed approach, while accommodating regional needs, presented key challenges for AES, including access risks, operational inefficiencies and the need for process improvements.
Solution
By centralizing their identity platform for access and identity controls across all users, AES leveraged SailPoint Identity Security Cloud as a strategic catalyst for business transformation, innovation, and security resilience.
Industry
Energy & Utilities
Company size
10,000 employees
Products
Identity Security CloudPartner
UberEther
SailPoint Identity Security Cloud has transformed our identity life cycle management with an ever-growing set of Out-of-the-Box connectors, APIs and event triggers."
Vidya Ganesh, Director of IAM, AES
4 hours
to onboard users, down from several days100%
contractors validated globally40
critical applications integratedRedefining cyber foundational excellence
In today’s digital age, four out of five data breaches can be traced back to digital identity. Despite this alarming statistic, 30% of organizations have still not started their identity security journeys. Many organizations grapple with a fragmented identity experience across their workforce. These companies often rely on manual and decentralized processes to manage access and governance to different user groups within their organization. AES, however, has pioneered an innovative approach to identity security. Its extensive program has shed light on how frequently cyber-attackers target companies, prompting the team to focus on foundational identity security as a line of defense.
By centralizing its identity platform for access and identity controls across all users, AES leveraged SailPoint Identity Security Cloud (ISC) as a strategic catalyst for business transformation, innovation, and security resilience. AES provides its business partners with appropriate access to enabling technology and collaboration tools, while ensuring enterprise security controls are in place. AES' ability to manage digital lifecycles end-to-end and integrate with enabling technologies underscores its maturity and excellence in identity security.
A unique and integrated approach
AES’ unique approach is rooted in its commitment to providing a holistic, standardized identity security solution that caters to all user types within its organization. By integrating ServiceNow and SailPoint, its team has streamlined provisioning and deprovisioning processes globally. This has improved the timeliness and efficiency of providing necessary access rights to all users, including employees, contingent workers, and contractors.
Before the automation of account creation and management, verifying and creating user accounts required manual approvals. This process was handled by Regional Digital Technical teams, each following regional methods for onboarding and offboarding users, which could take several days. With SailPoint, AES has reduced this total time to under 4 hours on average globally, accelerating the onboarding and management of resources efficiently and without manual intervention.
AES offers end-to-end digital lifecycle management for employees, contingent workers, and contractors. This facilitates a simplified, secure, and compliant Day 1 onboarding process, as well as automated provisioning and deprovisioning processes through seamless integration of ServiceNow and SailPoint.
Key features of AES’ integrated identity security solution
Simplified Onboarding: AES’ integrated solution automates the creation of user accounts, provisioning of resources and assignment of permissions, facilitating a smooth and expedited onboarding process for all user categories. This not only accelerates time-to-productivity for employees but also expedites access for contingent workers and contractors to the tools and systems they need to contribute effectively. When a new employee, contingent worker, or service contractor joins the organization or requires access to specific resources, SailPoint provisioning workflows integrate with Workday and ServiceNow to grant the necessary access rights and permissions. Similarly, when a user leaves the organization or no longer requires access, SailPoint triggers deprovisioning workflows to revoke access and remove user accounts automatically.
Secure Access Management: Of course, security is paramount to AES’ strategy. Leveraging the combined capabilities of ServiceNow and SailPoint, AES enforces least privilege access principles and dynamically adjusts access rights based on changes in user roles or employment status.
Compliance and Audit Readiness: AES’ integrated solution enables comprehensive compliance and audit readiness by capturing detailed audit trails and reports of provisioning and deprovisioning events. This helps the organization’s identity security practices align with regulatory requirements and internal policies, providing support during audits and assessments.
Challenges and future directions
AES recognizes that there are still challenges to overcome, including managing the ever-evolving landscape of cyber threats, ensuring compliance with a growing body of regulations, and maintaining user satisfaction while enforcing strict security controls. Looking ahead, AES plans to further enhance their identity security strategy by incorporating advanced analytics for real-time risk detection, exploring the use of artificial intelligence for predictive threat modeling and expanding its identity and access management framework to encompass emerging technologies and platforms. Through these efforts, AES aims to stay one step ahead of cyber threats and continue to safeguard its digital identities.
AES wins CSO Award for transformative identity security
AES has been named a CSO Award winner for 2024! This prestigious award recognizes the work its team has done in identity security - rapidly scaling and transforming its end-to-end digital lifecycle management processes through an integrated approach with SailPoint. Congratulations to Ryan Boulais, Chief Information Security Officer, Vidya Ganesh, Director of Identity Access Management, and the entire AES Cybersecurity and Digital teams on this well-deserved recognition.