Adam,
I am the Directory Services Architect for Ameriprise Financial.
I am assisting them in their separation from American Express. In this
effort we are answering many challenges such as scope of the teams, identity
management, how ISO17799/27001 standards apply, how to integrate the various
directories (LDAP/Active Directory). The challenge also exists in how to
interface with systems of record and consumer applications. If multiple
systems feed profile data which is the authoritative source.etc. I have
some great lessons learned and also a ton of "templates" I created during
the process.
Kim Sassaman, CISSP
Senior Consultant
Information Protection & Assurance
HotSkills, Inc.
2438 East King Ave.
Saint Paul, MN 55119
Ph: (602)791 4271
Fax: (651) 730-0474
Confidentiality Warning: This message and any attachments are intended only
for the use of the intended recipient(s), are confidential, and may be
privileged. If you are not the intended recipient, you are hereby notified
that any review, retransmission, or conversion to hard copy, copying,
circulation or other use of this message and any attachments is strictly
prohibited. If you are not the intended recipient, please notify the sender
immediately by return email, and delete this message and any attachments
from your system. Thank you.
_____
From: Adam Gardner [mailto:AGardner@chkenergy.com]
Sent: Thursday, March 16, 2006 11:18 AM
To: security-management@securityfocus.com
Subject: Directory Services Teams
I am in the process of assembling a directory services team in order to
define standards around directory services for identity management purposes.
Some of our goals will be to identify authoritative sources for user
information, define a standard repository for user information, establish
standard transfer methods for getting data into the repository, and
establish standards for pulling data from the repository into other
applications.
If there is anyone that has experience in forming or leading a directory
services team, I would greatly appreciate any lessons learned and knowledge
of the process. Additionally, if anyone could provide me with templates for
the following documents related to directory services, it would help
tremendously.
- Team charters
- Meeting agendas
- Standards documentation
- Technology evaluations and RFPs
Thank you,
Adam Gardner
Chesapeake Energy Corporation
_____
This email (and attachments if any) is intended only for the use of the
individual or entity to which it is addressed, and may contain information
that is privileged, confidential and exempt from disclosure under applicable
law. If the reader of this email is not the intended recipient, or the
employee or agent responsible for delivering this message to the intended
recipient, you are hereby notified that any dissemination, distribution or
copying of this communication is strictly prohibited. If you have received
this communication in error, please notify the sender immediately by return
email and destroy all copies of the email (and attachments if any).
