Akamai Technologies Ltd

Akamai Identity and Access Management Cloud

The Akamai Identity and Access Management (IAM) Cloud (Janrain) provides management, security and activation solutions that enable seamless and safe customer experiences across their digitally connected world, while providing enterprise organizations with deep customer insights. Founded in 2002, Janrain pioneered Customer Identity and Access Management (CIAM).

Features

  • Identity and access management, CIAM (Consumer), IAM (B2E)
  • Registration, Authentication, Single Sign on (SSO), Private Groups, Social Login
  • Access Management (RBAC, ABAC, Scoped Access)
  • Customer Care Portal for customer service and user level access
  • Externalised Access Management (inc PDP, PAP), policy, governance
  • Customer Profile Management In Region
  • Fraud detection, risk analysis, strong auth and threat response
  • Customer Journey Analytics and Customer Experience Optimization
  • Anonymous to Known Analytics to optimize customer journey/conversion
  • Data Integration Platform to ease interoperability and activation

Benefits

  • Enable organizations to understand, engage and activate customer relationships
  • Prevent Fraud, Avoid Risk and protect identities of your consumers
  • Ensure compliance with GDPR and the evolution of privacy regulation
  • Future Proof Cloud Scalability
  • Future Proof Interoperability with other vendors
  • Protect customers while optimising the customer journey
  • Activate customer data to optimize business and consumer value
  • Manage CapEx more effectively with scalable pricing
  • Consent and preference management, supporting down stream systems
  • Cloud directory which is compatible with existing directories

Pricing

£100000 per licence per year

  • Education pricing available

Service documents

G-Cloud 11

218413731266043

Akamai Technologies Ltd

Mike Havelock

07711 424216

mhaveloc@akamai.com

Service scope

Service scope
Service constraints No
System requirements
  • Organizations must have a web or mobile user experience
  • Janrain is platform agnostic

User support

User support
Email or online ticketing support Email or online ticketing
Support response times 24/7 coverage is provided based on tiered support packages.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support No
Onsite support Yes, at extra cost
Support levels All Technical Support is 24/7 and comes in different variations depending on customer requirement. Each variation has a different response SLA.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Organisations have options when it comes to implementing Akamai Identity Cloud.

We provide technical resources that range from basic assistance to turnkey, white glove services.

Every Akamai Identity Cloud customer receives training, project management and personalized guidance based on a jointly agreed project plan
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction Bulk export services via our API's, SFTP data transer or even bulk upload via CSV.
End-of-contract process Customer access to the service via the portal is stopped and the service ceases to perform. There are no costs associated with contract ending, unless the customer chooses to renew.

Using the service

Using the service
Web browser interface Yes
Using the web interface Every aspect of our service is configurable via the web interface.
Web interface accessibility standard None or don’t know
How the web interface is accessible NA
Web interface accessibility testing NA
API Yes
What users can and can't do using the API Akamai's Customer Identity and Access Management Platform is a comprehensive solution consisting of several components to meet a range of needs, from simplified registration and user engagement to collecting rich demographic data over multiple web properties. All capabilities can be managed, customized and configured via our API's.

In the Akamai Developer Portal outlines more detailed information on the technical capabilities of the platform, step-by-step instructions on how to implement and customize each product, and documentation on the JavaScript and RESTful APIs that are available for configuring your solution

As an API first organization, all features are accessable by API
API automation tools
  • Ansible
  • Chef
  • OpenStack
  • SaltStack
  • Terraform
API documentation Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • ODF
  • PDF
  • Other
Command line interface Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface Most aspects of our service can be managed using the command line interface. There are a few functions which cannot be managed using the command line interface and must instead by managed via our web interface.

Scaling

Scaling
Scaling available Yes
Scaling type Automatic
Independence of resources Akamai Identity Cloud operates across more than 40 data centers and has been tested by the worlds largest businesses to be performant under the most extreme load testing.

Built on Amazon Cloud and deployed globally with multiple failover mechanisms and multi-tenant architecture, our customers trust Akamai to provide business continuity in the most extreme circumstances.
Usage notifications Yes
Usage reporting Email

Analytics

Analytics
Infrastructure or application metrics Yes
Metrics types Other
Other metrics
  • Thousands of data points available based on usage
  • Examples: identity provider, device, customer demographics plus many more
  • All configured and managed through the customer insights dashboard
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
  • Other locations
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least every 6 months
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
Backup and recovery No

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability 99.95% or better uptime
Rectified based on Support Package
Service Credits
Approach to resilience Available on request
Outage reporting Email alerts and public dashboards

Identity and authentication

Identity and authentication
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Limited access network (for example PSN)
  • Username or password
  • Other
Other user authentication Biometrics
Access restrictions in management interfaces and support channels Documentation available on request
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Devices users manage the service through Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 Available on request
ISO/IEC 27001 accreditation date Available on request
What the ISO/IEC 27001 doesn’t cover Available on request
ISO 28000:2007 certification No
CSA STAR certification Yes
CSA STAR accreditation date Available on request
CSA STAR certification level Level 2: CSA STAR Attestation
What the CSA STAR doesn’t cover Available on request
PCI certification No
Other security certifications Yes
Any other security certifications
  • HIPAA/HITECH compliance
  • Privacy Shield certification
  • OIDC RP certification
  • SOC 2 Type 2 (Security, Availability Confidentiality) compliance
  • TRUSTe certification

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
Information security policies and processes ISO, SOC with details available on request

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Documentation available on request.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Documentation available on request.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Documentation available on request.
Incident management type Supplier-defined controls
Incident management approach Documentation available on request.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Third-party
Third-party virtualisation provider AWS
How shared infrastructure is kept separate Akamai is experienced at running its own shared infrastructure as well as operating on third party public cloud infrastructure. Akamai adopts best security practices and fully observes the government's guidance in this area.

Energy efficiency

Energy efficiency
Energy-efficient datacentres No

Pricing

Pricing
Price £100000 per licence per year
Discount for educational organisations Yes
Free trial available No

Service documents

pdf document: Pricing document pdf document: Service definition document pdf document: Terms and conditions pdf document: Modern Slavery statement
Service documents
Return to top ↑