The American Society of Microbiology (ASM) had committed to modernizing some of the IT solutions and services. This required ASM to lift and shift various tools and applications to the Microsoft Azure Cloud platform.
In addition to shifting to the Azure Cloud, ASM needed to create a new set of applications that would streamline specific business processes for ASM staff members and vendors of ASM.
ASM runs its internal business processes on an old ERP solution. The ERP solution is leverage by ASM internal applications and applications built by their vendors via a SOAP-based Web Services API. This API needed to be modernized. Additionally, access to the API required very fine-grained security controls to limit what data an API user could access and precisely what data elements an API user could access.
Finally, ASM required the implementation of a Single Sign-On solution so that ASM’s vendor’s users could cross authenticate amongst other vendor’s sites without the need to keep logging in to each site.
Since ASM and ASM, through their vendors operate globally and primarily in the EU, all these solutions that ASM required needed to be built from the ground up with GDPR compliance baked into the software. ASM had to take great care and go to extreme lengths to know where personally identifiable data was stored, track access to that data and have the ability for the individual whose data it was to be able to delete all their personally identifiable data.