IP Australia

– Identity and Access Management (IAM) Solution

 

Summary

IP Australia (IPA) is an agency of the Department of Industry, Innovation and Science. It administers intellectual property rights and legislation relating to patents, trademarks, registered designs and plant breeder’s rights in Australia. IP Australia delivers a world leading IP system. The agency is a digital office with innovation at the core of its services.

The challenge

In 2018, as part of its extensive Cyber Security program of work, IPA initiated an ICT project to consolidate and modernise Identity and Access Management (IAM) systems. The work is a key enabler for IP Australia’s cloud-based workloads and transformation of existing digital services to API based technologies.

Towards the end of 2019, the agency decided to approach the market for specialist assistance in the provision and implementation of new cloud-based business initiatives for its IAM solution, and to integrate the service into Office365.

During the progression of these initiatives, the need for a modern IAM solution to support these use cases was identified. The IAM project was initiated to deliver these capabilities and as such, IPA was looking to partner with a supplier to provide senior system engineer capacity and architectural expertise as they design and build their new IAM capabilities and migrate existing workloads to the new IAM solution.

The difference

IPA was seeking to engage a provider with proven capability to assist in design and implementation of single sign-on, federated identity management, and web service security utilizing Microsoft Azure, Amazon Web Services and on premise products.  Being at the leading edge in several fields in ICT, IPA was looking for a provider that could continue to drive their innovation and help align other technology areas. Their partner had to be considered experts in their field.

Avec proposed to blend its IT project delivery expertise with its Cyber Security IAM specialist consultants to deliver expert assistance for:

    Microsoft IAM design and implementation

    • Active Directory
    • Azure Active Directory
    • Windows administration
    • Azure service offerings

    IAM integration with bespoke java apps

    • SAML
    • Web Service Security – Oauth

    AWS Access Management

    • IAM policies
    • AWS Service offerings

    The solution

    Avec provided a team of 4 consultants and 1 delivery/project manager to work in close consultation with the IPA technical, architectural, security and cloud project team.

    The initial engagement included:

    • The provision of advice on general architectural, deployment, security on AzureAD implementation
    • Consultation and assistance with the design, development and documentation of a number of the technical document 
    • Consultation and assistance with the architecture, design, configuration, implementation, testing, and acceptance of a number of the technical deliverables

    The result

    Avec’s engagement is continuing through a ‘phase one’ program of work through to 30 June 2020. Phase one is predominantly focussed on the review of the current state and the prioritisation of future state requirements including capability assessment and planning around organisational outcomes. High level architectural design is being developed and finalised prior to the commencement of phase two.

    Phase two and any other future phases of work are being identified during phase one with an ongoing program of architectural, engineering and design work for a team of up to approximately four consultants slated to continue for at least a further 12 months in 2020-2021. The continued program of works to migrate existing workloads and enable integration into other systems could continue for up to two an additional years.

    Sound familiar?

    If this sounds like a solution that would enhance your business then please don’t hesitate to get in touch below. Alternatively you can send a direct email to info@avecglobal