Skip to content

ENGIE IT Consolidates IAM Platforms and Automates Legacy Processes

Multinational utility achieves immediate cost savings and simplified identity security for 40,000 users.



Identities secured


Access requests automated


Campaigns completed

ENGIE SA is a French multinational utility company, headquartered in La Défense, Courbevoie, operating in the fields of energy transition, electricity generation and distribution, natural gas, nuclear, renewable energy, and petroleum. Supplying electricity in 27 countries in Europe and 48 countries worldwide, the utility employs 100,000 people worldwide with EBIT in 2022 of €9.0 billion.

ENGIE IT is a business support subsidiary of ENGIE GBS in charge of IT, employing 600 people. Its mission is to operate for the ENGIE Group in 5 main services areas:

  • Network and Cybersecurity connects all the Group’s entities worldwide, providing ENGIE’s digital foundations and meeting the challenges of cybersecurity.
  • Cloud Infrastructure manages the Group’s IT production resources in a cloud hybridization approach
  • Digital Workplace deploys the Group’s digital assets to end users.
  • Digital and IT Consulting secures the success of the Group’s major projects.
  • Agile business solutions deploy and support the Group’s business strategies.

To simplify their infrastructure, boost security, and gain the flexibility to respond to new security challenges, ENGIE IT chose to move to the cloud. After considering several solutions, they selected Saviynt because it provided the visibility they needed and allowed them to connect to their diverse endpoints with a single solution.

In Search of a Single, Cloud-First Solution

NGIE IT’s initiative was to simplify their infrastructure with a single, cloud-first tool — and to have every new service live in the cloud. To do this, they had to migrate away from multiple legacy IAM tools to a unified, cloud-native tool that could better manage their diverse endpoints and target systems.

ENGIE IT’s existing identity infrastructure depended on two main legacy systems that were over 10 years old. The passage of time and the complex nature of the business required the systems to become highly customized, making processes complicated and evolution impossible. 

It also became more and more difficult to update and upgrade the versions of both tools. Huge efforts were required to respond to new security needs or to obtain the proper security patches because their legacy systems were no longer supported.

For example, access to SAP required inspection of logs in multiple accounts in the different tools to understand who was making the request, who approved or validated it, and when or where it was made. This could take up to half a day using an asynchronous process.

Simplifying Identity Security With a Modern IGA Solution

ENGIE IT needed a solution that would ensure that identity became the single source of all authorizations in SAP and that would eliminate any security gaps. Their initiative was designed to:

  • Reduce the cost associated with managing multiple IAM tools
  • Eliminate parallel processes in SAP
  • Provide more effective traceability to the audit teams (provide the proof expected from the controls)
  • Align with ENGIE’s group-level, cloud-first strategy of moving more services to the cloud

Improving Visibility and Control of Access Authorizations

With Saviynt IGA, ENGIE IT completed the migration from legacy systems and now operates fully in the cloud. The utility achieved better visibility and control, improved SAP lifecycle management, and the ability to secure 40,000 employees at the group level. 

Optimizations include:


Improved control of access authorizations to SAP. 

Today, B2C apps are fully managed by Saviynt (including certify and grant authorizations), and all accounts are created through Saviynt.


Cost reduction from day one. 

The implementation of lean processes at a group level made considerable cost savings possible—including an immediate $500K reduction directly tied to IGA transformation.


Seamless integrations. 

Saviynt’s solution connected to SAP, AD systems, ServiceNow, and application API provisioning. For SAP priority business apps, ten key endpoints / target systems in both production and non-production environments, including support, were all integrated.


Improved visibility. 

A unified view of SAP with centralized data simplified the management and detection of existing and orphaned accounts.


10-minute access authorizations. 

Once a request is received, access to SAP can now be managed and granted with just a few clicks.


Easier compliance. 

Internal auditors spend much less time checking and looking for the information required during the audit process.

By optimizing internal processes, Saviynt helped ENGIE IT make users more autonomous while maintaining the traceability required for the audit team. Saviynt also enhanced security by providing greater visibility of orphaned accounts and enabling current authorizations of any employee to be properly reviewed. Reports can be automatically sent to high-level SAP management teams to confirm or deny authorizations. 

ENGIE IT’s future plans include more fully utilizing the functionalities available on Saviynt’s converged identity platform, Enterprise Identity Cloud.

“We chose Saviynt because it was a full cloud solution,” said Martial Rozec, Service Delivery Manager at ENGIE IT. “There was no hybrid infrastructure. It was also less technical than other solutions we considered, so there was no need for custom coding by professional services. The platform was configuration-centric.”

"We chose Saviynt because it was a full cloud solution. There was no hybrid infrastructure. It was less technical than other solutions we considered, so there was no need for custom coding by professional services. The platform was configuration-centric."

Marital Rozec

Service Delivery Manager, ENGIE IT

More customer success stories

Ready to see for yourself?

Request a personalized demo with a Saviynt identity expert