FEEDBACK

Scoping mission
Pichet Group

start of mission

2019

employees

practice

IGA

integrated solution

SAILPOINT

Scoping mission

Context

In January 2019, the
Pichet Group
had several business tools whose digital identities were poorly centralized. They were entered manually into various Group information systems, which could lead to data entry errors and difficulties in assigning or withdrawing authorizations, i.e. access rights to applications and the use of licenses.

Managing on- and off-boarding (employee arrivals and departures) was therefore a long, tedious and time-consuming process for several people.

In addition, extracts and HR data were sent by e-mail. The group therefore decided to discontinue this mode of operation.

Introducing Julien Ohayon and the Pichet Group

Groupe Pichet is a family-owned group that has established itself over the past 30 years as one of France’s leading developers. It is structured around 5 synergistic business lines:

– Real estate development,
– Management and syndic,
– Hotel operations,
– The property company,
– Les Carmes Haut-Brion vineyard in the Pessac-Léognan appellation.

Every day, the Group’s 1,500 employees mobilize their expertise to design tomorrow’s housing and enable everyone to live well in their own city, sustainably.

Julien OHAYON has been RSSI (Information Systems Security Manager) at Groupe Pichet since January 2019. Responsible for a broad scope, including safety governance and operational safety.

Today, the Pichet Group ‘s Information Systems Security team is made up of four full-time staff:

– A person in charge of security governance issues,
– A project manager for digital identity management,
– Two people in charge of technical IS security projects.

The Project

The aim was to consolidate, secure and rationalize identity management within the Pichet Group. More specifically, we wanted to make certain HR data more reliable, in order to simplify and automate On and Off boarding processes in support functions. This required the creation of an identity data warehouse and repository that could be reused by all information systems. Our security objectives were threefold: to identify and deactivate orphan accounts or accounts used for off-boarding; to carry out authorization recertification campaigns; and, in practical terms, to answer the question of who has access to what, in order to put an end to duplicate profiles.

The scoping mission began in November 2019 and continued until September 2020. The overall aim of this mission was to prepare all the prerequisites for starting up an IGA project in the best possible conditions. The main challenge was to acculturate all stakeholders, i.e. support functions, IT, HR and general services, in order to create a dynamic around this cross-functional need.

The mission revolved around scoping the requirement, defining a target, drawing up an associated project plan and issuing a call for tenders. We defined several stages in the scoping mission.

The first step was to gather the requirements, adapted and proportionate to Groupe Pichet ‘s needs. We also assessed the maturity of digital identity management and drew up the main inbound and outbound processes.

We then identified a first version of the IGA data model, as well as a first version of the functional architecture in the Pichet Group ecosystem, with a strong dependency on the HRIS.

All this was then transcribed into an editors’ specification.

Finally, Synetis supported us in the purchasing process, from the construction of the evaluation grid, the elaboration and animation of the POCS scenarios to the selection and acquisition of the technical solution.

Why Synetis?

We put out a call for tenders to three French companies specializing in digital identity management. We chose Synetis for its clear, detailed approach and its expertise in identity management.

The budgetary aspect was also an important factor in the decision, with a cost that was competitive with the competition and consistent with the number of deliverables and workshops to be carried out.

Results

One Project
IGA
project is a cross-functional project, difficult to explain and to value in terms of ROI.
The scoping mission enabled us to create momentum, raise awareness of the importance of this project among stakeholders and senior management, and share a common vocabulary. But the most important thing, in my opinion, was to gather together all the prerequisites needed to get the project off to a good start.

The scoping mission was completed in September 2020. In December 2020, Synetis was selected as integrator of the technical solution. The integration project started in January 2021 and will end in December 2021.

Since April 2021, we have also launched a complementary SSO project, which will be completed in November 2021.

Share

VIDEO

Read the full interview.