HACKENSACK MERIDIAN HEALTH SECURES PEOPLESOFT

With Appsian’s Application Security Platform

Hackensack Meridian Health (HMH) made a strategic decision to standardize and implement PeopleSoft HCM for all 33,000 team members across their network of 16 hospitals and 450+ medical centers. HMH set out to provide secure remote access as they enabled Fluid UI for Benefits/Open Enrollment, Employee and Leader Self-Service.

INDUSTRY

  • Healthcare

EMPLOYEES

  • 33,000+

PROFILE

Hackensack Meridian Health is a leading non-profit health care organization and the largest health care network in New Jersey, offering a range of medical services, innovative research, and life-enhancing care.

  • SAML SSO
  • PeopleSoft Self-Service Security
  • Mobile 2FA
  • Contextual Access Controls

HIGHLIGHTS

  • Secured PeopleSoft Self-Service Remote Access
  • Implemented SAML-based Single Sign-On
  • Deployed 2-Factor Authentication
  • Restricted Remote Access to Self-Service Only
  • Limited Access of Local & High Privilege Accounts

CHALLENGE

Hackensack’s IT leadership realized early on that delivering secure remote access to thousands of employees would bring new security challenges. As HMH set out to deploy Duo Security’s Single Sign-On and 2-Factor Authentication solutions, the company faced difficulties with PeopleSoft’s lack of support for SAML-based identity providers. Additionally, HMH sought a way to further minimize the risks associated with opening PeopleSoft access to the public internet.

SOLUTION

HMH leveraged Appsian’s Application Security Platform (ASP) to secure their PeopleSoft environment on multiple fronts. Using ASP, Hackensack was able to integrate Duo Security’s SAML-based authentication natively with PeopleSoft – requiring no additional hardware or custom development. With Duo connected to PeopleSoft, HMH improved their identity management capabilities with the addition of SSO and MFA functionality for PeopleSoft HCM users, in turn, securing remote access from external threats.

To enhance PeopleSoft’s access control capabilities, Hackensack deployed ASP’s location-based security to restrict remote access for both regular and high privileged users. To reduce the potential exposure of sensitive information, user accounts were restricted to only self-service functionality when accessed remotely. For high privileged users, as well as local accounts such as admins, access was entirely restricted to the organization’s secure network only.

RESULTS

Using ASP, Hackensack enhanced the security of PeopleSoft and was able to confidently deploy Fluid UI Self-Service to thousands of employees anywhere, on any device. Equipped with native SAML compatibility in PeopleSoft, HMH was able to quickly integrate Duo’s SSO and 2FA solutions to simplify user authentication and secure remote access. While protecting their users’ most sensitive data, HMH leveraged the flexibility of ASP to implement a system that did not compromise on PeopleSoft’s usability.

Want to see what Appsian can do for your ERP systems?

Request a Demo
Appsian

© 2019 Appsian. All rights reserved. | Privacy Policy