develops mobile-centric payment and rewards solutions for businesses, which they can use to improve customers鈥 commerce experiences.
Todd Wade, head of information security and compliance, helped PayWith search for and introduce its first directory three years ago, as well as transition to remote work when the COVID-19 pandemic forced businesses worldwide to reassess their operations.
- Organization: PayWith
- Size: ~25 employees
- Location: Vancouver, British Columbia
- Problem: Needed a directory and wanted to achieve SOC 2 compliance
- Goal: Implement centralized identity and access management (IAM)
Background: Access Control & Compliance Goals
Three years ago, PayWith operated without a directory 鈥 the company鈥檚 developers took a 鈥済o-your-own-way鈥 approach. The need for centralized IT management became clearer as the company grew, and the team wanted to achieve SOC 2 compliance, which also required formalized access control.
Head of Information Security & Compliance, PayWith
Todd previously spent more than a decade running IT operations for a credit union, which had a much more traditional and entrenched on-premises system. At PayWith, he knew he needed to find a directory solution that better suited its cloud-forward approach.
鈥淚 figured it would be too long of a conversation to try to introduce a traditional setup like Active Directory庐,鈥 he said. 鈥淭hat鈥檚 when I started looking around to try to find something that would fit in with how they want to do things.鈥
Challenges: Introduce a Directory without Adding Hardware
Todd began searching for a cloud directory service that he could use to introduce centralized IAM. PayWith works heavily in AWS庐 and GCP庐, and it has since its founding. He wanted the directory he selected to reflect that.
鈥淚n the beginning, using cloud service providers was a cost-saving measure because there wasn鈥檛 a huge outlay of cost to get a platform up and running,鈥 Todd said. 鈥淥nce that happened, then it became a question of: Why have anything on-site?鈥
He also wanted to implement security controls to lock down the company鈥檚 systems 鈥 macOS庐, Windows庐, and Linux庐 machines 鈥 but in a way that was lightweight enough to satisfy the developers.
鈥淭he main thing I wanted to accomplish was to check all the boxes that SOC 2 required,鈥 he said. 鈥淭he other thing was 鈥 coming from an IT management perspective 鈥 I wanted to slip in a bunch of controls that I needed to be able to manage the system.鈥
The Solution: 黑料海角91入口
Todd ultimately selected 黑料海角91入口庐 because its Directory-as-a-Service庐 satisfied all his requirements and allowed him to execute IT management from a single platform, rather than cobbling together and managing separate vendors for each individual need.
鈥淜nowing that I needed access management, knowing that I needed to support Windows, Mac, and Linux, and knowing that it was only me doing IT management, I wasn鈥檛 looking seriously at solutions that couldn鈥檛 support everything,鈥 he said.
PayWith achieved SOC 2 compliance with 黑料海角91入口, and the team is now preparing for a PCI audit as well. When he rolled out 黑料海角91入口, Todd also took the opportunity to roll out other security policies to PayWith鈥檚 users. He implemented password controls and security configurations, such as a policy to lock screens after a certain period of inactivity and .
鈥満诹虾=91入口 was easy to put in place and get done what I needed to get done without anybody complaining about it,鈥 he said.
Todd recently rolled out 黑料海角91入口鈥檚 premium System InsightsTM, which returns key telemetry about machine fleets. He鈥檚 already used the feature to get the serial numbers on machines, which he wasn鈥檛 always able to access previously. He鈥檚 also used it to monitor network information and see where individual machines are located. He plans to incorporate other data points to monitor patch status, Chrome extensions and Firefox add-ons, and user SSH keys.
鈥淩olling out System Insights was as easy as it possibly could be. All of a sudden, I had a whole bunch of extra information coming into the system. It was great.鈥
Three years in, Todd continues to find and implement new features. They鈥檙e easy to use and have enabled his use of 黑料海角91入口 to grow with PayWith.
鈥淭hrough regular conversations with our 黑料海角91入口 account rep, I鈥檒l find out there are all these new services that are really easy to roll out, and it鈥檚 just a matter of clicking them,鈥 he said.
Transition to Remote Work
In March 2020, Todd needed to transition the company to a work-from-home model, and the process was seamless. He went remote several days before the rest of the company, and he spent about half an hour getting everybody settled in the day the office officially went remote. He didn鈥檛 have to do much other than help people get familiarized with new conditions.
鈥淚 wish there was something more to talk about in terms of how easy it was for everyone to go remote,鈥 he said. 鈥淚 didn鈥檛 have to worry about how they were going to connect to the directory server or how the firewalls needed to be set up so people were able to access everything. It was really just a matter of, 鈥極K, well, just pick up your laptop and go home.鈥欌
The Result: 鈥楪oing to the Cloud鈥
黑料海角91入口 has helped PayWith maintain a lean but secure IT operation, and it鈥檚 been able to run in the background so Todd has more time for other tasks. With a directory that he鈥檚 able to 鈥渟et and forget,鈥 he can now focus on essential tasks like working with AWS and GCP.
鈥淚T is all going to the cloud, at least for a lot of businesses,鈥 he said. 鈥淚t doesn鈥檛 make sense to spend 90% of your time in those areas but then have to come back and deal with on-prem systems. It wouldn鈥檛 fit with how we run things.鈥
Learn More
Learn more about how innovative payment and rewards programs.
Whether you鈥檙e looking for an IAM tool to help you achieve regulatory compliance or transition to remote work, 黑料海角91入口 is here to help. Click here to learn more about securely connecting user identities to systems, apps, files, and networks from the cloud.