Security365 Management Center Product Introduction
What is the Security365 Management Center?
The Security365 Management Center isZero Trust-based Integrated Security Management PlatformIt is possible to centrally manage all security services' users, groups, licenses, and access policies within the organization.
Key Concepts
Integrated Management Platform
- Manage users and groups, assign licenses, and set security policies from a single console.
- Integrated management of all Security365 services such as SHIELDrive, SHIELD Gate, Document Security, etc.
- Maximizing management efficiency with a consistent policy framework
Zero Trust Architecture
- "Never trust blindly, always verify."
- Perform conditional validation for all access attempts.
- Dynamic access control based on IP, time, country, and device conditions.
Flexible account linking
- Automatic synchronization of Microsoft 365, Google Workspace, and SCI Server accounts.
- Elimination of duplicate management through the use of the existing personnel system.
- Manual registration and automatic synchronization can be performed simultaneously.
Why is the Security365 Management Center necessary?
Changing security environment
Introduction of various SaaS services
- Simultaneous use of various security solutions such as document security, web isolation, and cloud storage.
- Separate management console for each service → Increased management complexity
- Difficulty in maintaining policy consistency
Distributed Workforce Management
- Diversification of access environments due to the expansion of remote work and telecommuting.
- Increase in external personnel such as contractors and partners.
- Increased frequency of account creation, modification, and deletion
Strengthened compliance
- Compliance with the Personal Information Protection Act and information security regulations is required.
- Obligation to Track Access History and Submit Audit Materials
- Requirement to Apply the Principle of Least Privilege
Limitations of the existing management method
Issues with Individual Service Management
1. Distributed Management
서비스 A 관리 콘솔 → 사용자 100명 등록
서비스 B 관리 콘솔 → 동일 사용자 100명 재등록
서비스 C 관리 콘솔 → 또다시 100명 등록
└─ 문제: 동일 작업 반복, 정보 불일치 위험
- Managing duplicate user information by service
- Risk of omitting deletion of accounts for resigning employees
- Individual modifications are required in all services when changing policies.
2. Lack of Policy Consistency
- Apply different authentication policies for each service.
- Different criteria for setting access conditions
- Security level deviation occurred.
3. Difficulties in Audit Response
- Different log formats for each service
- Unable to view integrated history
- It takes a lot of time to gather audit materials.
Limitations of Manual Account Management
1. Delay in synchronizing personnel information
인사팀: 신규 입사자 등록 완료
IT팀: 계정 생성 요청 접수 대기
└─ 문제: 입사 후 며칠간 시스템 접근 불가
2. Human Error
- Typographical errors and omissions occur during manual input.
- Authorization error
- Delay in Deactivating Resigned Employee Accounts
3. Scalability Constraints
- Delay in processing during large personnel changes
- Mass modification work required during organizational restructuring.
Differentiating Features of Security365 Management Center
1. Integrated Management Console
Security365 Management Center: Single Console
모든 서비스의 사용자·정책·라이선스
↓
Security365 관리센터
↓
한 번의 설정으로 전체 서비스 적용
Scope of Management
| Management Target | Function |
|---|---|
| User | Register, Edit, Delete, Activate/Deactivate |
| Group | Basic Group, Policy Group, Condition-Based Group |
| Administrator | Role-based access control, access policy configuration |
| License | Allocation, Deallocation, Automatic Allocation by Service |
| Policy | Conditional access policy, authentication policy |
2. Automatic Account Synchronization
Security365 Management Center: Integration with HR System
Microsoft 365 / SCI Server 인사 정보
↓
자동 동기화 (수동/예약)
↓
사용자·그룹 자동 생성·업데이트
└─ 효과: 인사 정보 실시간 반영, 관리 부담 최소화
Synchronization Options
| Option | Description |
|---|---|
| Full synchronization | Synchronize all AD groups and user information |
| Designated Group Synchronization | Sync only the selected group and members. |
| Automatic synchronization | Automatically execute according to the set schedule. |
| Manual synchronization | Execute immediately if the administrator is needed. |
3. Conditional Access Control
Security365 Management Center: Multi-Condition Verification
사용자 접근 요청
↓
조건 검증: IP + 시간 + 국가 + 디바이스
↓
조건 충족 → 접근 허용 (추가 인증 선택 가능)
조건 미충족 → 접근 차단
Example of Condition Combinations
| Scenario | Condition | result |
|---|---|---|
| In-house work | Company IP + Weekday Working Hours | Access Granted |
| Remote work | Registered home IP + weekdays | Access Allowance + OTP Authentication |
| Overseas business trip | Overseas IP | Access blocked or administrator approval |
| Night Access | Nighttime hours | Access Denied |
4. Granular Permission Management
Security365 Management Center: Role-Based Permissions
최고 관리자: 모든 기능 접근 + 관리자 권한 부여
편집 관리자: 메뉴 조회·편집 (관리자 메뉴 제외)
조회 관리자: 메뉴 조회만 가능
로그 조회 관리자: 로그 메뉴만 조회 가능
Permission Matrix
| Role | User/Group | Policy Settings | Admin Management | Log Inquiry |
|---|---|---|---|---|
| Super Administrator | ✅ Edit | ✅ Edit | ✅ Edit | ✅ View |
| Editor Manager | ✅ Edit | ✅ Edit | ❌ | ✅ View |
| Query Manager | 👁 View | 👁 View | ❌ | ✅ View |
| Log Viewer Admin | ❌ | ❌ | ❌ | ✅ View |