Development of a Secure Internal Identity and Access Management System for Engineering Enterprises

Manufacturing

Automotive

Medical technology

Rail technology

Challenges in Internal Permission Management for Engineering Systems

The client faces operational inefficiencies in managing permissions and secure access across their internal systems, with complexities in edge case handling, dependency management in their Python-based components, and lengthy permission review processes, impacting overall productivity and system stability.

About the Client

A large engineering and technology firm with a global presence, specializing in complex systems across multiple industries, seeking to optimize internal permission management and security workflows.

Goals for Enhancing Identity and Access Management Efficiency

Reduce permission review cycle time from 7 months to approximately 3 months through full resolution of complex permission edge cases.
Improve code quality and system stability by restructuring and optimizing the existing codebase.
Enhance dependency management to minimize conflicts and risks during system updates.
Implement comprehensive testing frameworks to ensure reliability and continuous quality assurance.
Streamline permission review workflows to support scalable and maintainable operations.

Core Functional Specifications for the IDAM System

Modular and organized code structure for ease of maintenance and scalability
Ability to add and manage new system functionalities as operational needs evolve
Integration of a reliable testing framework with automated test case creation to ensure continuous quality
Enhanced dependency management mechanisms for Python components to reduce conflicts and update risks
Mechanisms for identifying, resolving, and streamlining complex permission edge cases
Secure access controls with audit logging to ensure permissions are managed securely

Preferred Technologies and Architectural Approaches

Python programming language

Flask framework for web application development

Relational database systems such as PostgreSQL

Pytest for unit and integration testing

Necessary External System Integrations

Existing internal permission databases
Authentication/Authorization systems (e.g., LDAP, Active Directory)
Monitoring and logging tools for audit trails
Continuous Integration/Continuous Deployment (CI/CD) pipelines

Critical Non-Functional System Requirements

High performance: rapid permission reviews reducing cycle from months to months
Scalability to accommodate growing user base and permissions
Robust security features to safeguard sensitive access data
Reliability with automated testing and fault tolerance
Maintainability through clear, structured, and well-documented code

Expected Business Benefits from the IAM System Upgrade

The project aims to significantly improve operational efficiency by reducing permission review times from 7 months to approximately 3 months, enhance system stability and code quality through structural improvements and dependency management, and establish a sustainable, scalable permission management framework. These enhancements will provide the client with a more secure and agile internal access management process, supporting ongoing digital transformation and long-term productivity gains.