Who's Who : Modelling and Organizational Management
Orchestrator of your application access: role/attribute-based access control (RBAC & ABAC)
✓ Model your organization and its ecosystemsimply and quickly, no matter the complexity
✓ Ensure real-time workflow tracking with the No Code module (onboarding)
✓ Guarantee integrity with your HRIS and corporate directories
Who's Who: orchestrate and visualize your organization within its ecosystem
1
Modeling of your organizations and ecosystems
ROK allows you to model your organizations based on an unlimited number of criteria: function, company, department, site, business unit, cost center, market type, or product type…
ROK also enables you to model partner organizations in the same way: subcontractors, suppliers, consultants, temporary workers…
Internal
External
2.1
Digital organizational chart
Rok allows, in integration with your HRIS and digital directory, to:
- Dynamically position your employees within any type of organization.
- Define both organic and cross-functional hierarchical relationships.
- Visualize your organization based on all types of criteria, whether they are organic, functional, or even qualitative (risks, IT, knowledge).
Job description
- Clarification of role and responsibilities.
- Identity Governance and Administration (IGA).
- Application Access Management (SI).
User profile
- Aptitudes and skills.
- Optimized collaboration.
- Task assignment.
2.2
Multi-company organizational chart
Rok allows you to work on your organizational optimizations, including:
- Divisional organizations (centralized or not)
- Matrix organizations
- Shared service centers
- Etc.
3
Updated in real-time
ROK enables you to retrieve real-time data from your HRIS, digital directory, or ITSM.
The solution also allows you to create any customized onboarding, offboarding, or relocation application using a no-code approach, enabling you to track and update any employee movement, whether internal to the company or part of your ecosystem, while maintaining integration with existing applications (no disruption to what works).
ROK, the digital twin of your organization
Model any type of organization, even complex ones.
Divisional
Matrix
Hierarchical
a 360-degree view
ROK allows you to filter and sort your organization along the axis you desire at any time, based on the subject you want to address.
The solution also enables you to print any type of organization, regardless of its size, in a readable format.
ROK Decoder: Your Questions, Our Answers!
The Who’s Who has never been so clear.
What does 'Who’s Who' mean?
The who’s who, as seen by ROK, is a graphical representation that allows you to visualize through multiple charts who is who and also who does what, with which tools (Document Management Systems and Applications) and what risks are involved.
This visual directory is integrated in real-time with your Active Directory (AD), your HR Information System (HRIS), Identity and Access Management (IAM), etc.
It manages and allows you to visualize both hierarchical and lateral links and can be printed. It is multi-company and also allows you to integrate your ecosystem of partners (subcontractors, temporary workers, consultants). It is dynamically maintained in real-time and can interface with your application ecosystem to provision and maintain up-to-date authorizations.
In the same vein, it allows you to edit job descriptions or manage your Outlook mailing lists (or other email systems) in real-time.
It is a true 360-degree control tower of your organization.
How do we ensure that the charts are up-to-date in real-time?
ROK incorporates a No Code module that allows you to propose onboarding, moving, and outboarding flows close to your specific needs and also to connect with your application ecosystem via web services (AI-assisted modeling).
You can choose to see ROK as the hub for employee movements and let it automatically update your HRIS, IT Service Management (ITSM), IAM, or use it as a hub collecting information from these various sources (often multiplied in groups) to orchestrate them; in the latter case, you would complement (unaccounted ecosystems or orphan subsidiary applications) the untreated information by quickly and easily creating the necessary collection apps through the No Code module.
How do we visualize, print, and understand complex and numerous organizations?
The charts in ROK are multi-indexed; you can thus view them according to the axis of interest at any given moment by presenting them by: company, site, department, function, business unit, product line, market, etc.
You can also visualize both hierarchical and lateral links…
You can define your graphic charter and colors and concatenate your positions by group or type of function so that a sprawling diagram can fit on a printable A4 page.
Why does a platform offer both chart modeling and a NoCode app creation lab?
Our architecture is unique in the application world and designed to manage who is who and who does what. The flows created in no code rely on charts and not individuals, even if they are grouped under notions of role.
ROK’s philosophy is to place the individual at the heart of the IT system, not as a byproduct of activity.
A huge advantage is that we can thus guarantee instantaneous updates as soon as an organizational movement occurs (man, process, or norm).
This model allows us to ensure among other things that any app created will be secure in terms of access (ROK is used by some of our clients to update their workflows or apps in real-time and automatically).
I often hear about 'role' (in both IT and HR contexts); what does it mean?
There are two definitions of a role depending on whether we are talking about organization (organizational charts) or IT rights (Identity and Access Management, IAM / Identity Governance and Administration, IGA).
In organizational terms (organizational charts), a role refers to a set of responsibilities, tasks, and objectives assigned to a person or a group within the organization. The aim is to facilitate the achievement of the organization’s objectives, organize work, and clarify responsibilities and expectations. The concept of role in this context is limited to defining the tasks, responsibilities, and skills required to perform the work.
In terms of identity and access management (IAM), a role is an abstraction that groups a set of permissions and access rights to IT resources, thus simplifying the management of rights and access for users and systems. The goal is to ensure that individuals have access to the IT resources they need for their work, while limiting access to unnecessary or sensitive information to maintain information security. The notion of role in IT is limited to managing access rights to systems, applications, and data, based on professional needs and security policies.
The former is managed by HR Information Systems (HRIS), and the latter by IAM, sometimes by the directory.
The distinction between these two concepts is crucial as it reflects the difference between managing people and processes in an organization (organizational roles) and the technical management of access to systems and data (IAM role). For example, to clarify, the organizational chart from the HRIS is not the same as one from IAM tools (for the few solutions that allow editing of an organizational chart, which are rare).
As a result, the business side and IT side do not always understand each other. Similarly, IT roles as defined for the use of ERP (a set of permissions) will not be the same as those defined for CRM. Consequently, the same employee will have as many roles at the IAM level as there are applications used, while in an organizational context, they will have only one role.
HR generally leads in informing of organizational movements from which one seeks matrices of rights attribution that serve the IT director to configure each assigned application.
As for the rights assignable to the partner ecosystem who are not employees and thus not directly managed by the HRIS, it is somewhat each to their own.
This explains why managing organizational charts and application rights in real-time is a real challenge and why very few IT directors can produce a comprehensive real-time application map.
How do we reconcile these different notions of role depending on whether we are talking about IT or HR?
The unique feature of ROK globally revolves around the concept of POSITION in ROK, which allows concatenating/fusing the two approaches (organizational role and IT role) into a single object. To do this, we manage on the same platform both the who’s who and the no-code, and we pilot access rights to IT (but also to Document Management Systems, Separation of Duties, etc.) through tasks, resulting in an extremely effective IAM.
This organic and systemic approach to ROK’s data model makes it a unique platform that can dynamically guarantee the integrity of application rights with an always up-to-date organizational chart.
What we can do with ROK, to our knowledge, no other platform can do, and the benefits are immediately measurable in terms of security, visibility, and simplicity.
Is ROK suitable for all sizes of companies?
ROK is a multi-tenant and multi-instance cloud solution; this allows us to dynamically scale the size of the database and the number of necessary virtual machines in real-time.
The SaaS user cost is approximately €5, decreasing with volume, and includes the No Code module.