Сase studies

Controlling User Access

AXA is in the protection business. As one of Europe’s largest enterprises, the company protects property, people and assets through their insurance and investment management services.

AXA chose Pathlock to enhance financial reporting controls and manage sensitive access risks across core business systems. Pathlock’s solutions enabled the company to centralize, standardize and streamline risk management processes, including Segregation of Duties (SOD) reviews and reporting.

AXA Group

Paris, France
www.axa.com

Industry

Insurance

Products and Services

Global insurance, investment management

Employees

126,000

Revenue

104B EUR (2019)

Systems

SAP ECC, SAP BW/BO,
SAP Ariba

Controlling User Access
AXA has 4,000 users accessing SAP systems. Before implementing Pathlock, user access was managed manually. Testing for access controls and data security was resource intensive, time consuming, and costly.
Before: Challenges and Opportunities
  • Manual management of critical data and systems access
  • Time-consuming and error prone processes for adding users and roles
  • Unable to detect access risks across systems or measure the impact of transactions that violate access policies
  • Manual risk remediation and reporting
  • Limited access review processes in place
Why Pathlock
  • Manage access to critical data across all business systems
  • Streamline access governance processes and reporting end-to-end
  • Automate compliance with financial control requirements to pass internal and external audits
After: Value Driven Results
  • Reduced the cost of executing access risk management processes by 50%
  • Established a culture of proactive risk analysis and remediation
  • Automated reporting on financial impact of transactions that violate access policies
  • Gave risk managers and global security team complete visibility into cross-system risks
How Pathlock Helps
50%

Savings on costs to execute risk management processes

Cross-system

Risks managed and reported on across critical business systems

Automated

Full automation for risk management, access governance, and reporting

Pathlock’s data protection capabilities have helped us enhance security without disrupting work. Users need to have the right access to do their jobs, and Pathlock tackles that while protecting sensitive information.

Director
Governance Risk and Compliance

Pathlock allows us to find out on a real time basis where access violations are happening, identify exactly what caused them, and review whether action needs to be taken. We’re monitoring millions of activities daily which enables us to focus only on the items that represent true SOD conflicts or risks.

Senior Director
Finance

Pathlock retrieves activity data from users so we can understand where access conflicts are. The risk matrix implemented in Pathlock allows us to measure potential impact in Euros for each risk and see the actual user activities that violate access policy. And of course, it’s all automated.

Senior Project Manager
Finance and Audit

At Citrix, we look at access risks and conflicts across systems, not app by app. Pathlock allowed us to standardize and automate access management and SOD analysis across our key systems. We’re more efficient because our teams don’t need to learn new processes for different systems, and we’re more secure because we have cross-system visibility.

Director
Finance and Global Accounting Systems