Académique Documents
Professionnel Documents
Culture Documents
[CAS3721]
Oracle OpenWorld 22.08.2016
Tuomas Lahdelma, HUS IT
Tommi Vainio, Leading Security Architect, CGI
CGI Group Inc. CONFIDENTIAL
#oow16
#OracleIDM
Session content
Hospital district Helsinki and Uusimaa (Finland), employing more than 22,000
professionals, chose Oracle Identity Manager and Oracle Access Manager.
In this session learn how the organization ensured deep process and technical integration
for multiple Oracle Fusion Applications modules.
Hear how extended HCM master data was used for very high-level automation of finegrained provisioning and authorizations across Oracle Fusion Applications and the most
critical patient systems.
11/9/16
22 364
Lnsi-Uusimaa Hospital
23 HOSPITALS
11/9/16
Aurora Hospital
Children's Castle
Children's Hospital
Department of Oncology
Eye and Ear Hospital
Herttoniemi Hospital
Ktilopisto Maternity Hospital
Meilahti Tower Hospital
Meilahti Triangle Hospital
Psychiatrycenter
Skin and Allergy Hospital
Surgical Hospital
Tl Hospital
Western
Eye Hospital
8
Women's Hospital
11/9/16
HUS IT Environment
Simultaneous
users in Patient
Information
Systems
User
Accounts
Printers
Phones
Mobilephones
Workstations
tablets &
Smartphones
11/9/16
10
Servers
10
Project Compass
Replacement of old Oracle eBS ERP system in use ~10 years with Fusion Applications
modules (Financials, Logistics, HR) by enhancing internal processes and moving into
Fusion
Migration of old OIM and OAM to 11gR2 PS3 level
Enabling Taleo cloud services securely for HCM onboarding, recruitment and eLearning
processes
Providing convenient and secure interface for end-users with single-sign-on capabilities to
all connected applications
Use a high-performance identity and access management system for staff user and access
rights to numerous internal data and patient data systems automaticallyimproving
efficiency and security and to meet regulatory requirements
HUS IT Headquarters
14
78000
Work contracts and
commissions in a year
1
and only save of person and
assignment data
67000
Job applications /year
28000
Different people working during a
year (daily 23000).
72000
480000
30
Minutes from entering the
information to reach all systems
managed by IdM, including
cloud services.
Why CGI?
Hospital District of Helsinki and Uusimaa (HUS) chose CGI because of good and
long experience of building successful HCM integrations + Identity and
Access Management solutions with very high automation level into
production use.
CGI supports over 2,000 government organizations around the world in reducing
costs and improving the efficiency, quality and accountability of public services,
all while increasing citizen engagement. For more than 40 years, we have
helped clients manage complex security needs.
Detection / Clean Up
24x7 Monitoring
Network Intrusion Detection
Intrusion Analysis
Forensics Real-Time
Recovery
Protect
the
Security test
and
evaluation
business
Advanced Analytics
Vulnerability Assessments
Insider Trends
Threat Trends
18
Project Compass
Solution key figures
AD
Email
1-time save
0,5 million
changes/year
Welcome
to Work!
IDM
Patient
systems
Compass
Fusion Apps
Taleo Cloud
Provisioning automation
architecture end-to-end
Fusion
HCM
eIDM
AD /
Email
Patient
Systems
Fusion
OID
Taleo
Cloud
Other
systems
Fusion
IDM
Onboarding
Learn
Fusion
SCM
Fusion
FINA
Fusion
HCM
Recruitment
department/helpdesk
Even major organizational changes are very quick to implement without
headache
Common rules and methods across multiple target systems
Extendable
Very high automation level achievable with small effort
Customer top management has approved automation rules in their policy
Fusion
HCM
Taleo
Onboarding
eIDM
Taleo User data +
Taleo Access rights
automatically > 99%
and additional rights
by request
Taleo
Learn
Project Compass
Benefits delivered
Fully automated and HCM process controlled Identity management across multiple connected target
applications, including three Taleo cloud applications and critical patient systems
100% of user IDs provisioned automatically, 99% of user rights provisioned automatically
Day 1 all end-users have user accounts and correct business roles in all systems
Only exceptional user rights need to be request-based, audited and re-certifiable
Single-Sign-On to end-users for all connected target applications on Compass Workspace
Reduced IT help desk workdays
Cut annual HR and IT management costs through better productivity
Efficient BI reports provided both to IT and Fusion module persons in charge
Fusion Apps:
Oracle Fusion HCM module
Oracle Fusion Financials module
Oracle Fusion SCM module
Oracle Fusion Access Manager
Oracle Fusion Identity Manager
Identity and Access:
Oracle Identity Manager+connectors
Oracle Access Manager+webgates
Oracle Identity Federation
Oracle Internet Directory
Other:
Oracle Weblogic
Oracle Exadata
Oracle Exalogic
Oracle Business Intelligence
Oracle Enterprise Manager/Cloud Control