Case Study: HUK-COBURG achieves audit-proof access rights recertification with Computacenter

HUK-COBURG meets BaFin requirements regarding group-wide re-certification thanks to Computacenter

HUK-COBURG, one of Germany’s largest insurance groups, needed to meet BaFin’s requirements for a group-wide, audit-proof recertification of employee access rights by 1 July 2021. To do this, it had to regularly review and, where necessary, approve or revoke IT access rights across a very large user base, while also preparing for more structured role-based access management in the future. Computacenter supported the insurer with its identity management work, including analysis of the existing environment and the design of the recertification approach.

Computacenter recommended and implemented an Identity Management solution based on SailPoint IdentityIQ, connected it to multiple source systems, and helped clean up and classify authorisations so recertification could run effectively. The result was that HUK-COBURG met the BaFin deadline on time and gained a user-friendly, scalable process with mirrored access rights, reporting, reminders, and escalation handling. Computacenter also set the foundation for further automation and a future role concept, reducing manual effort and improving security, governance, and compliance.

HUK-COBURG

Uwe R. Dietz

Head of Identity and Access Management