Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

New York City Transit

Access & Identity Management Handbook 2013 Access Control & Identity Management, Access Control & Identity Management

New York City Transit is the largest agency of the Metropolitan Transportation Authority (MTA) in New York, the largest transportation network in North America serving 14,6 million people. New York City Transit has the world’s largest fleet of subway cars and the largest public bus agency.

As New York City Transit moves from manual train control to a more computerised environment, providing secure access to applications and buildings is critical. The agency has 49 000 employees across 500 locations, and also manages benefits for 36 000 retirees and spouses.

For the IT staff, provisioning new users was a lengthy manual process, often requiring a few weeks to give users access to the right applications. Revoking network and building access for terminated employees was also time-consuming, and posed security risks. Automating identity management would allow the IT staff to decrease administration time, while greatly improving security.

The agency also needed a security and identity management solution that would work across a mixed operating environment consisting of Microsoft Windows, NetWare, Unix and a variety of mainframe and mid-range servers.

Selecting NetIQ

After evaluating identity management solutions including Oracle, IBM, and Microsoft, New York City Transit selected a NetIQ solution consisting of Identity Manager and NetIQ Access Manager. With API support for disparate systems, the organisation can connect to Microsoft Active Directory and RACF across a variety of operating platforms.

New York City Transit implemented Identity Manager to automatically synchronise user identities across multiple systems, including its time keeping and building access systems. Access Manager allows the IT staff to give employees and contractors role-based access to applications, based on authoritative user data in the agency’s employee information system.

An identity management solution has also helped New York City Transit with its governance, risk and compliance (GRC) strategy. The IT staff can manage risk by ensuring that the right people have access to the right information.

With Identity Manager, the agency has eliminated the manual processes associated with user provisioning and can set up new user accounts in a few hours, rather than a few weeks. The IT staff can also revoke access as soon as employees leave the organisation to safeguard the security of its network, as well as access to its 1500 critical infrastructure control rooms.

With a NetIQ solution, the staff can ensure that users have access only to authorised applications and building, which is critical when managing a large transportation system. Automating identity management has also freed up the IT staff to work on more challenging projects, rather than routine administration.

Cost savings

With centralised identity management, the IT staff can give users a single ID and password to access applications. This has dramatically reduced the number of passwords users had to remember, as well as the number of password-related helpdesk calls. Password self-service also allows users to manage their own passwords.

For its 36 000 retirees and spouses, New York City Transit provides VPN access to its network and uses SecureLogin to provide secure, single sign-on access. Once users have network access, Access Manager provides authorised access to a Web portal where they can access and change their benefit information.

New York City Transit runs its NetIQ identity management solution on SUSE Linux Enterprise Server for greater stability and has had zero downtime to date.

With a NetIQ identity management solution, New York City Transit centralised and automated identity management for 85 000 employees, contractors and retirees. The IT staff has reduced time spent on user provisioning by 60% and can provision new users 90% faster. Users now have secure, single sign-on access to applications which has improved security, as well as employee productivity.

Making its benefits program available online to 85 000 users has dramatically reduced the mailing and administrative costs of managing the agency’s benefits program. New York City Transit has automated identity management and created new services for users, all without the need for additional IT resources.





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Controlling access for people and vehicles
IDEMIA STid Security Technews Publishing Editor's Choice Access Control & Identity Management Asset Management Industrial (Industry) Mining (Industry)
When it comes to access control, the security requirements of mines and the industrial sector are similar, requiring a layered approach that combines physical barriers, digital authentication, and continuous monitoring to protect personnel, assets, and operational continuity.

Read more...
Impro announces Primo update
News & Events Access Control & Identity Management Integrated Solutions
Impro Technologies recently held a launch event in which it introduced a series of new products, from new readers through to its updated Primo access management software.

Read more...
If you cannot prove identity, you cannot claim security
Access Control & Identity Management Information Security
Cybersecurity planning for 2026 is a structural change in how attacks are executed and how trust is exploited, demanding that companies stop layering tools on top of infrastructure and instead prioritise intelligence and identity.

Read more...
Paxton set to launch game-changing new system
Paxton Access Control & Identity Management News & Events
Access control is evolving fast. Installers and end users are looking for systems that are simple to install, easy to manage remotely, and flexible enough to scale. In response, Paxton is exploring how emerging technologies can reshape access control.

Read more...
NEC XON secures mobile provider’s hybrid identities
NEC XON Access Control & Identity Management Information Security Commercial (Industry)
For a leading South African telecommunications operator, identity protection has become a strategic priority as identity-centric attacks proliferate across the industry. The company faced mounting pressure to secure both human and non-human identities across complex hybrid environments.

Read more...
Cloud security in visitor management and access control
SA Technologies Access Control & Identity Management Infrastructure Residential Estate (Industry) Commercial (Industry)
Cloud has become the default platform for modern security operations, from visitor management portals and remote access control to incident logging, reporting, analytics, and integrations. But “in the cloud” does not mean “someone else is securing it for us”.

Read more...
Centurion raises the bar at HomeSec Expo
Centurion Systems News & Events Access Control & Identity Management Residential Estate (Industry) Smart Home Automation Commercial (Industry)
Centurion Systems unveiled its latest product lines at HomeSec Expo 2026, introducing SMART+, a simpler way for installers and end users to manage their Centurion installations - as well as a few new products.

Read more...
What’s in store for PAM and IAM?
Access Control & Identity Management Information Security
Leostream predicts changes in Identity and Access Management (IAM) and Privileged Access Management (PAM) in the coming year, driven by evolving cybersecurity realities, hybridisation, AI, and more.

Read more...
Protecting citizens’ identities: a shared responsibility
Access Control & Identity Management
A blind spot in identity authentication today is still physical identity documents. Identity cards, passports, and driver’s licences, biometric or not, are broken, forged, or misused, fueling global trafficking networks and undermining public trust in institutions.

Read more...
The challenges of cybersecurity in access control
Technews Publishing SMART Security Solutions Access Control & Identity Management Information Security
SMART Security Solutions summarises the key points dealing with modern cyber risks facing access control systems, from Mercury Security’s white paper “Meeting the Challenges of Cybersecurity in Access Control: A Future-Ready Approach.”

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.