Regulated Authorization Governance at MAN Financial Services
MAN Financial Services used NEXIS to model business roles, enforce segregation of duties, automate recertification, and support audit-ready authorization governance under strict regulatory requirements.
About MAN Financial Services
MAN Financial Services supports MAN Truck & Bus customers with local and international finance, leasing, and insurance solutions. The company is part of Volkswagen Financial Services AG and operates in a regulated financial-services environment with strict authorization and audit requirements.
- Industry: Automotive Financial Services
- Parent Group: Volkswagen Financial Services AG
- Core Focus: Finance, leasing, and insurance solutions
- Governance Context: Regulated authorization management and audit readiness
The Challenge
As a financial institution, MAN Financial Services had to demonstrate at any time who held which access rights across the organization. Frequent onboarding, transfers, and offboarding made lean, secure IAM essential. The organization needed a way to enforce minimum-access principles, apply SoD controls, and maintain audit-ready documentation without introducing unnecessary complexity.
Before the project, IAM operated without a technical platform. The goal was not to introduce a heavyweight suite, but a flexible and scalable governance layer that could automate existing access processes and support full regulatory compliance.
The goal was to
- Model and monitor business roles based on minimum-access principles
- Enforce embedded SoD rules across the authorization landscape
- Automate recertification and role change processes
- Connect IAM processes to existing operational systems
- Support continuous audit readiness under financial-sector regulation
The Approach
After a successful proof of concept, MAN Financial Services introduced NEXIS as a flexible governance layer for business role modeling and authorization control. The focus was on automation, simplification, and regulatory alignment rather than a large IAM replacement project.
Business roles in NEXIS replaced Excel-based role management.
Segregation-of-duties rules were built into the role model and monitored continuously.
Semi-annual review cycles were automated with task-specific interfaces and clear visual guidance.
Business units and IT worked through structured workflows without media breaks.
SQL, LDAP, and SAP sources were connected through standard connectors, and REST API integration linked NEXIS to the existing ticketing environment.
The Results
With NEXIS in place, MAN Financial Services established a structured, automated model for authorization governance that met regulatory expectations while reducing manual effort. Access assignments became easier to manage through business roles, SoD requirements were enforced consistently, and recertification became a repeatable process instead of a manual burden.
- Structured Business Roles
Regulatory-compliant role structures supported secure access assignment. - Embedded SoD Enforcement
Compliance controls were integrated directly into authorization governance. - Automated Joiner, Mover, Leaver Handling
Access changes were handled faster and with less manual intervention. - Audit-Confirmed Compliance
Internal and external audits confirmed alignment with regulatory requirements. - Recognized Project Impact
The project placed third in a global Volkswagen Group IT competition out of more than 64 submissions.
Other Case Studies
Automated Access Recertification at Beiersdorf Shared Services – Event-Driven Identity Governance with NEXIS
Beiersdorf Shared Services implemented NEXIS to automate event-driven access recertifications and establish clear, auditable identity governance processes across its global...
Role-Based Access Governance at Scale: W&W Group Case Study
The Wüstenrot & Württembergische Group implemented NEXIS to establish a structured authorization role model – reducing governance complexity and strengthening compliance across its financial services operations.
