Aerospace & Defense Industry
Multi-Business Unit Defense & Aerospace Compliance
A global multinational aerospace corporation managing 583,129 identities across defense, helicopters, and commercial aircraft divisions.
A Worldwide Leader in Aerospace
A global multinational aerospace corporation and a household name—a worldwide leader in their field. Operating across defense, helicopters, and commercial aircraft divisions with highly complex compliance requirements unique to each business unit.
The Challenge
- 583,129 internal and external identities across complex business units
- Defense, helicopters, commercial aircraft—each with different compliance requirements
- 3.35 million accounts across a highly regulated environment
- Multi-stakeholder complexity: 217K employees, 180K customers, 185K suppliers
- Each identity solution hosted on different platforms—all outdated
- Complex integration architecture hindering cloud/SaaS strategy adoption
Enterprise Identity Strategy
They had developed a new enterprise identity strategy to serve as a centralized identity repository housing the attributes and relationships between Core, Professional, and Output identity objects. This strategy stipulated four principal requirements:
- Data aggregation: Aggregate inputs from all disparate authoritative identity sources
- Lifecycle provisioning: Provision and maintain lifecycle of digital identities
- Lifecycle role management: Enterprise role management architecture and governance
- Comprehensive audit: Track all identity processes throughout their lifecycle
EmpowerID Solution
Centralized Multi-Business Unit Governance
On-Premise Deployment
EmpowerID implemented centralized management of Core Identity Object, Professional Identity Object, and Output for all identities across their 3 major business units.
- Active Directory mastery
- Defense/aerospace governance
- Business unit-specific compliance
Hybrid RBAC/ABAC Security Model
Extensive security model configured to manage their complex ecosystem including Employee, Vendor, Supplier, Partner, Company, and Customer identities.
- Role and Location security model
- Multi-stakeholder support
- Unified identity view
Identity Warehouse Integration
Core identities created as master person identities within the Identity Warehouse with all professional and output identities linked to provide a unified view.
- Near real-time synchronization
- Multiple authoritative sources
- Affiliated object relationships
Business Process Segregation
Security configuration performed through standard processes without coding. Provisioning and access policies targeted to specific perimeter scopes.
- Internal management perimeters
- Visibility and authorization segregation
- Organizational boundary controls
Measurable Results
Award-Winning Enterprise IAM
KuppingerCole European Identity Conference 2022 Award Winner for "Enterprise IAM"
