Global Data & Analytics Company Modernizes Identity Security for the AI Era

Turning to Saviynt’s Cloud-Native Platform to Enable Secure Innovation

Tasked with stewarding massive amounts of sensitive financial information from consumers and businesses around the world, this industry-leading analytics firm had already invested heavily in modernizing its security infrastructure. To enable further innovation and accelerate AI adoption, the organization set out upon a large-scale cloud transformation journey. However, identity security team members soon realized that their legacy on-premises identity management tools weren’t ready for the business’s tech-forward future. They turned to Saviynt’s unified platform to drive efficiencies, eliminate standing privileges, and prepare to secure AI agents and applications.

Moving Beyond Legacy IGA

When the company embarked upon a sweeping cloud transformation project to spur business growth, enable innovation, and reduce operating costs, it quickly became clear its existing identity security ecosystem wasn’t ready for that future. The legacy tool stack was complex and fragmented, incorporating multiple vendors’ solutions, including an on-premises implementation of SailPoint IdentityIQ (IIQ) for identity governance and administration (IGA).

The organization had already implemented Saviynt’s IGA and Privileged Access Management (PAM) solutions for the portion of its cloud infrastructure that housed data belonging to federal agencies. When that project began, SailPoint’s cloud products were not FedRAMP-authorized, so the company had needed a new identity security partner to support its expansion into the federal sector. It also needed a solution that could govern identities across Google Cloud Platform (GCP) applications and infrastructure, since GCP was—and remains—the company’s primary cloud provider. Saviynt was chosen.

Three years later, with the cloud migration in progress, the security team decided to build upon the strength of its existing relationship with Saviynt by expanding the IGA implementation into the rest of the company’s commercial environment. As they began shutting down legacy mainframes and decommissioning data centers, they could see that they needed a cloud-native solution capable of enforcing just-in-time (JIT) access policies so that standing privileges could be eliminated. Saviynt offered these capabilities, while SailPoint IIQ did not.

By adopting a converged platform solution, the identity security team was able to eliminate the cost and effort associated with managing multiple IGA tools side by side. A major enterprise needs an entire team of specialists to support each additional solution that’s introduced, so eliminating tools yields significant savings in cases like this one.

The identity and security team took a phased approach to implementation, first onboarding core applications such as Workday and Active Directory into Saviynt, then migrating applications with custom connectors, and finally moving databases into Saviynt before retiring SailPoint IIQ. Along the way, they undertook a large-scale cleanup project, identifying applications and databases that were no longer in use and decommissioning them. In total, they were able to eliminate between 500 and 600 orphaned applications, reducing cyber risk as well as costs.

An Intelligent Platform that Can Secure All Identities in the AI Era

With Saviynt’s cloud-native, AI-powered platform solution, this leading financial services firm has been able to simplify its identity security infrastructure. By eliminating on-premises servers, the company has reduced operational overhead and improved reliability and uptime. Adding automation further streamlined administration. After the move from SailPoint IIQ to Saviynt, the number of labor-hours needed for identity security program management decreased by 35 to 50%.

Even though identity governance is now more efficient, the security team now enjoys greater visibility and control. With Saviynt, they’ve been able to eliminate standing privileges across their cloud environment and have fully implemented JIT access.

Reporting is also greatly improved. “The daily health check reports that Saviynt offers are much better than what SailPoint had,” he says. “With the intelligence features in Saviynt, it’s very easy to create queries that tell us exactly what we need to know about our identity security environment.

The identity security team is using Saviynt’s built-in intelligence to help them manage certifications and approvals. AI can now handle routine approvals, whereas before, teams needed to manually review thousands of requests.

Leveraging AI wherever possible is a key business priority for the organization. Their identity security team plans to work with Saviynt to build access controls that protect model context protocol (MCP) servers and generative AI systems. They’re also looking to secure sensitive data with governance for AI agents as their AI maturity continues to grow.

Partnering with Saviynt to Achieve Industry-Leading Identity Security

Corporate leadership believes that the road to business growth runs through the cloud. The firm plans to leverage its investments in a cloud-native data fabric and AI to drive faster product innovation and expand its analytics offerings. Its business is built on handling sensitive corporate and consumer credit data, so maintaining an industry-leading identity security program is vital for earning trust. The partnership with Saviynt will remain critical for achieving these objectives.

Already, the organization is securing more than 1,000 applications and 23,000 human identities with Saviynt’s unified platform, but the company will continue to build on this foundation. The identity security team is investigating additional use cases for AI, such as automatically granting emailed approvals, and intelligent identity security posture management (ISPM). As AI’s capabilities grow, they’re hoping that they’ll be able to further automate JIT provisioning, as well.