{"id":45854,"date":"2020-04-20T12:15:43","date_gmt":"2020-04-20T18:15:43","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=resource&#038;p=45854"},"modified":"2021-02-12T18:24:37","modified_gmt":"2021-02-12T23:24:37","slug":"case-study-paywith-compliance-remote-work","status":"publish","type":"resource","link":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work","title":{"rendered":"PayWith Case Study: Compliance, Remote Work, &#038; System Insights"},"content":{"rendered":"\n<p><a href=\"https:\/\/www.paywith.com\/\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">PayWith<\/a> develops mobile-centric payment and rewards solutions for businesses, which they can use to improve customers\u2019 commerce experiences.<\/p>\n\n\n\n<p>Todd Wade, head of information security and compliance, helped PayWith search for and introduce its first directory three years ago, as well as transition to remote work when the COVID-19 pandemic forced businesses worldwide to reassess their operations.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><img decoding=\"async\" src=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/PayWithLogo.png\" alt=\"\" class=\"wp-image-45855\" width=\"263\" height=\"125\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/PayWithLogo.png 350w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/PayWithLogo-300x143.png 300w\" sizes=\"(max-width: 263px) 100vw, 263px\" \/><\/figure><\/div>\n\n\n\n<ul><li><strong>Organization<\/strong>: PayWith<\/li><li><strong>Size<\/strong>: ~25 employees<\/li><li><strong>Location<\/strong>: Vancouver, British Columbia<\/li><li><strong>Problem<\/strong>: Needed a directory and wanted to achieve SOC 2 compliance<\/li><li><strong>Goal<\/strong>: Implement centralized identity and access management (IAM)<\/li><\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"background\">Background: Access Control &amp; Compliance Goals<\/h2>\n\n\n\n<p>Three years ago, PayWith operated without a directory \u2014 the company\u2019s developers took a \u201cgo-your-own-way\u201d approach. The need for centralized IT management became clearer as the company grew, and the team wanted to achieve SOC 2 compliance, which also required formalized access control.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><img decoding=\"async\" src=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/Todd-Paywith.jpg\" alt=\"\" class=\"wp-image-45867\" width=\"396\" height=\"254\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/Todd-Paywith.jpg 792w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/Todd-Paywith-300x192.jpg 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/Todd-Paywith-768x492.jpg 768w\" sizes=\"(max-width: 396px) 100vw, 396px\" \/><figcaption><em>Todd Wade<br>Head of Information Security &amp; Compliance, PayWith <\/em><\/figcaption><\/figure><\/div>\n\n\n\n<p><\/p>\n\n\n\n<p>Todd previously spent more than a decade running IT operations for a credit union, which had a much more traditional and entrenched on-premises system. At PayWith, he knew he needed to find a directory solution that better suited its cloud-forward approach.<\/p>\n\n\n\n<p>\u201cI figured it would be too long of a conversation to try to introduce a traditional setup like Active Directory<sup>\u00ae<\/sup>,\u201d he said. \u201cThat\u2019s when I started looking around to try to find something that would fit in with how they want to do things.\u201d<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"challenges\">Challenges: Introduce a Directory without Adding Hardware<\/h2>\n\n\n\n<p>Todd began searching for a cloud directory service that he could use to introduce centralized IAM. PayWith works heavily in AWS<sup>\u00ae<\/sup> and GCP<sup>\u00ae<\/sup>, and it has since its founding. He wanted the directory he selected to reflect that.<\/p>\n\n\n\n<p>\u201cIn the beginning, using cloud service providers was a cost-saving measure because there wasn\u2019t a huge outlay of cost to get a platform up and running,\u201d Todd said. \u201cOnce that happened, then it became a question of: Why have anything on-site?\u201d<\/p>\n\n\n\n<p>He also wanted to implement security controls to lock down the company\u2019s systems \u2014 macOS<sup>\u00ae<\/sup>, Windows<sup>\u00ae<\/sup>, and Linux<sup>\u00ae<\/sup> machines \u2014 but in a way that was lightweight enough to satisfy the developers.<\/p>\n\n\n\n<p>\u201cThe main thing I wanted to accomplish was to check all the boxes that SOC 2 required,\u201d he said. \u201cThe other thing was \u2014 coming from an IT management perspective \u2014 I wanted to slip in a bunch of controls that I needed to be able to manage the system.\u201d<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"solution\">The Solution: 探花大神<\/h2>\n\n\n\n<p>Todd ultimately selected 探花大神<sup>\u00ae<\/sup> because its Directory-as-a-Service<sup>\u00ae<\/sup> satisfied all his requirements and allowed him to execute IT management from a single platform, rather than cobbling together and managing separate vendors for each individual need.<\/p>\n\n\n\n<p>\u201cKnowing that I needed access management, knowing that I needed to support Windows, Mac, and Linux, and knowing that it was only me doing IT management, I wasn\u2019t looking seriously at solutions that couldn\u2019t support everything,\u201d he said.<\/p>\n\n\n\n<p>PayWith achieved SOC 2 compliance with 探花大神, and the team is now preparing for a PCI audit as well. When he rolled out 探花大神, Todd also took the opportunity to roll out other security policies to PayWith\u2019s users. He implemented password controls and security configurations, such as a <a href=\"https:\/\/jumpcloud.com\/blog\/policies-lock-screen\">policy to lock screens<\/a> after a certain period of inactivity and <a href=\"https:\/\/meet.google.com\/linkredirect?authuser=0&amp;dest=https%3A%2F%2Fjumpcloud.com%2Fblog%2Fpolicies-bitlocker-filevault\">policies to enforce full disk encryption<\/a>.<\/p>\n\n\n\n<p>\u201c探花大神 was easy to put in place and get done what I needed to get done without anybody complaining about it,\u201d he said.<\/p>\n\n\n\n<p>Todd recently rolled out 探花大神\u2019s premium <a href=\"https:\/\/jumpcloud.com\/product\/system-insights\">System Insights<sup>TM<\/sup><\/a>, which returns key telemetry about machine fleets. He\u2019s already used the feature to get the serial numbers on machines, which he wasn\u2019t always able to access previously. He\u2019s also used it to monitor network information and see where individual machines are located. He plans to incorporate other data points to monitor patch status, Chrome extensions and Firefox add-ons, and user SSH keys.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p>\u201cRolling out System Insights was as easy as it possibly could be. All of a sudden, I had a whole bunch of extra information coming into the system. It was great.\u201d<\/p><\/blockquote>\n\n\n\n<p>Three years in, Todd continues to find and implement new features. They\u2019re easy to use and have enabled his use of 探花大神 to grow with PayWith.<\/p>\n\n\n\n<p>\u201cThrough regular conversations with our 探花大神 account rep, I\u2019ll find out there are all these new services that are really easy to roll out, and it\u2019s just a matter of clicking them,\u201d he said.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"transition-remote-work\">Transition to Remote Work&nbsp;<\/h2>\n\n\n\n<p>In March 2020, Todd needed to transition the company to a work-from-home model, and the process was seamless. He went remote several days before the rest of the company, and he spent about half an hour getting everybody settled in the day the office officially went remote. He didn\u2019t have to do much other than help people get familiarized with new conditions.<\/p>\n\n\n\n<p>\u201cI wish there was something more to talk about in terms of how easy it was for everyone to go remote,\u201d he said. \u201cI didn\u2019t have to worry about how they were going to connect to the directory server or how the firewalls needed to be set up so people were able to access everything. It was really just a matter of, \u2018OK, well, just pick up your laptop and go home.\u2019\u201d<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"result\">The Result: \u2018Going to the Cloud\u2019<\/h2>\n\n\n\n<p>探花大神 has helped PayWith maintain a lean but secure IT operation, and it\u2019s been able to run in the background so Todd has more time for other tasks. With a directory that he\u2019s able to \u201cset and forget,\u201d he can now focus on essential tasks like working with AWS and GCP.<\/p>\n\n\n\n<p>\u201cIT is all going to the cloud, at least for a lot of businesses,\u201d he said. \u201cIt doesn\u2019t make sense to spend 90% of your time in those areas but then have to come back and deal with on-prem systems. It wouldn\u2019t fit with how we run things.\u201d<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"learn-more\">Learn More<\/h2>\n\n\n\n<p>Learn more about how <a href=\"https:\/\/www.paywith.com\/\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">PayWith helps organizations develop<\/a> innovative payment and rewards programs.<\/p>\n\n\n\n<p>Whether you\u2019re looking for an IAM tool to help you achieve regulatory compliance or transition to remote work, 探花大神 is here to help. Click <a href=\"https:\/\/jumpcloud.com\/product\">here to learn more about securely connecting user identities<\/a> to systems, apps, files, and networks from the cloud.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>PayWith needed a central cloud directory service to centralize identity and access management and achieve SOC 2 compliance.<\/p>\n","protected":false},"author":89,"featured_media":45857,"template":"","categories":[23],"collection":[],"wheel_hubs":[],"platform":[],"resource_type":[2313],"funnel_stage":[],"coauthors":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>PayWith Case Study: Compliance, Remote Work, &amp; System Insights - 探花大神<\/title>\n<meta name=\"description\" content=\"PayWith needed a central cloud directory service to centralize identity and access management and achieve SOC 2 compliance.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"PayWith Case Study: Compliance, Remote Work, &amp; System Insights\" \/>\n<meta property=\"og:description\" content=\"探花大神\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work\" \/>\n<meta property=\"og:site_name\" content=\"探花大神\" \/>\n<meta property=\"article:modified_time\" content=\"2021-02-12T23:24:37+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"520\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"Cassa Niedringhaus\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work\",\"url\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work\",\"name\":\"PayWith Case Study: Compliance, Remote Work, & System Insights - 探花大神\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg\",\"datePublished\":\"2020-04-20T18:15:43+00:00\",\"dateModified\":\"2021-02-12T23:24:37+00:00\",\"description\":\"PayWith needed a central cloud directory service to centralize identity and access management and achieve SOC 2 compliance.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg\",\"width\":780,\"height\":520,\"caption\":\"White laptop on a white table\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Resources\",\"item\":\"https:\/\/jumpcloud.com\/resources\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"PayWith Case Study: Compliance, Remote Work, &#038; System Insights\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"探花大神\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"探花大神\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"探花大神\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"PayWith Case Study: Compliance, Remote Work, & System Insights - 探花大神","description":"PayWith needed a central cloud directory service to centralize identity and access management and achieve SOC 2 compliance.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work","og_locale":"en_US","og_type":"article","og_title":"PayWith Case Study: Compliance, Remote Work, & System Insights","og_description":"探花大神","og_url":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work","og_site_name":"探花大神","article_modified_time":"2021-02-12T23:24:37+00:00","og_image":[{"width":780,"height":520,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"5 minutes","Written by":"Cassa Niedringhaus"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work","url":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work","name":"PayWith Case Study: Compliance, Remote Work, & System Insights - 探花大神","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg","datePublished":"2020-04-20T18:15:43+00:00","dateModified":"2021-02-12T23:24:37+00:00","description":"PayWith needed a central cloud directory service to centralize identity and access management and achieve SOC 2 compliance.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/04\/case-study-paywith-compliance-remote-work.jpeg","width":780,"height":520,"caption":"White laptop on a white table"},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/resources\/case-study-paywith-compliance-remote-work#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Resources","item":"https:\/\/jumpcloud.com\/resources"},{"@type":"ListItem","position":3,"name":"PayWith Case Study: Compliance, Remote Work, &#038; System Insights"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"探花大神","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"探花大神","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"探花大神"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/resource\/45854"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/resource"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/resource"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/89"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/45857"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=45854"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=45854"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=45854"},{"taxonomy":"wheel_hubs","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/wheel_hubs?post=45854"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=45854"},{"taxonomy":"resource_type","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/resource_type?post=45854"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=45854"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=45854"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}