 |
WhiteOPS™ - Protect what you value most. |
 |
WhiteOPS™ delivers a broad solution across all of the organization's mission critical business applications.
WhiteOPS™ is a complete suite supporting a wide variety of business applications including
ERP & CRM by SAP, Oracle, Microsoft, QAD, Netsuite, Salesforce
The WhiteOPS™ suite provides for the first time, true visibility into business application.
WhiteOPS™ analyzes users' permissions taking into account their actual usage.
It introduces a unified business-security policy that allows linking business and applications and completes the identity and access life-cycle management.
It addresses the key identity intelligence questions:
- Who did what?
- When and where did access occur?
- Who has access to what?
- Who should have access to what?.
|
WhiteOPS™ Identity Access Intelligence |
|
Product Features:
WhiteOPS™ includes a rich feature set based on the following five core capabilities:
Identity Monitoring
Tracks user activities across your mission-critical applications.
Activity Monitoring
Collects meaningful activities and activity-related data from WhiteOPS™ Business Asset Monitors (BAMs).
Role Analytics
Cross examination of the defined roles with the actual roles being used. It analyzes the results with the roles assigned to the peer users in different levels (organization, job etc.). This allows determining which roles a user should posses.
Policy Compliance
WhiteOPS™ includes three must-have compliance mechanisms. Access policies allowing both black list and white list rules, Segregation of Duties and Business Asset Compliance management.
These three capabilities are required to achieve compliance.
Impact Analysis
WhiteOPS™ utilizes all of its components to to produce the risks it identifies. It allows understanding who/what is risking the business and how.
|
|
WhiteOPS™ Access management by Whitebox |
|
WhiteOPs Benefits:
Identity Monitoring
|
Gaining Visibility
Determining the correct security policies, detecting anomalies or any other security analysis without knowing what happened is based on assumptions. For that reason, identity monitoring is one of the two cornerstones of our identity intelligence suite, it is our knowledge supplier.
Quality Monitoring
WhiteOPS™ identity monitoring is based upon its wide selection of Business Asset Monitors (BAMs) which are purpose built to suit the specific application they monitor. By being so well connected to the "application language" and its world, WhiteOPS™ BAMs are able to produce events with unprecedented intelligence which create a solid ground for the rest of WhiteOPS™ solutions to rely on.
Provide Context
To enhance the activities events even more, WhiteOPS™ enriches them with IT and security data. This information, which exists in the organization, is being leveraged and for the first time truly reflects on business activities. By doing so, WhiteOPS™ ties together the two separate worlds of business applications and IT infrastructure.
Advanced Usability
WhiteOPS™ consists of several possible methods to investigate identity activities. In some cases, watching identities over a timeline is required (calendar view) and sometime a specific aggregated view of an identity is required. In-addition to the conservative methods WhiteOPS™ supports a question based mechanism which resembles a natural language search engine query. |
|
Activity Monitoring
|
| Making the business fully visible
Turning the picture of identity monitoring around reveals an interesting aspect by itself: activity focused monitoring. It happens quite often that security personnel or a manager recognizes a specific business activity as sensitive. This might require a different way, other than identity monitoring, to allow its investigation.
WhiteOPS™ allows investigating the data from the business activity perspective. This capability, recognized by Whitebox Security as required to complete the scope for visibility, is one of the three capabilities that differentiate WhiteOPS™ identity intelligence platform.
Quality, context and usability
In a very similar way to WhiteOPS™ identity monitoring, WhiteOPS™ activity monitoring is based upon its wide selection of Business Asset Monitors (BAMs) which are purpose built to suit the specific application they monitor. Much like identity monitoring activities events, WhiteOPS™ enriches the events with IT and security data and ties them together the two separate worlds of business applications and IT infrastructure.
Last but not least, WhiteOPS™ consists of several possible methods to investigate business activities similar to those which are covered under identity monitoring. |
|
|
Role Analytics
|
Effective Permissions
Security context authorization atoms are roles. Sometimes they are referred to as security groups and profiles, identity management roles or application roles.
Roles effectively determine the identity permissions in the business applications. Analyzing identity roles across all the enterprise has to take under consideration three factors:
- Defined roles
- Used roles
- Organizational context
Searching through roles
WhiteOPS™ advanced filtering mechanism allows creating queries on roles and permissions in a wide context. e.g. who are the users who have permission to perform "release invoice" and in Active Directory has "Domain Admin". Simple query yet not possible without making a few quries and creating the output manually. WhiteOPS™ is able to do so because of the visibilty layet collecting valuable data from many diverse sources.
A New Way of Thinking
WhiteOPS™ cross examines the defined roles with the actual roles being used. This allows WhiteOPS™ to determine which roles a user should posses. Naturally by knowing what the users are actually using, WhiteOPS™ can suggest removing excess roles which are not used by the user.
The diagram reflects a normal situation. Users are assigned to roles when they join an organization. As time goes by, they start "collecting" roles. In theory, some roles should be revoked from their user.
When a user carries out his daily duties he uses a subset of his original set of roles.
Intersecting the "Defined" and "Used" will most probably sum up with fewer roles than he currently has assigned. WhiteOPS™ adds used roles using the visibility capability.
It is crucial to understand the list of unused roles which creates a security breach.
|
 |
|
|
|
|
 |
 |
WhiteOPS™ by Whitebox |
|
|
 |
