Role Engineering. This includes top-down design of role-based access control, as well as bottom-up discovery of role definitions through the application of pattern recognition technology to the existing privileges

Role-based and Pattern-based Privileges Auditing. This includes reviewing the privileges and role definitions to identify out-of-pattern privileges, duplicate and overlapping role definitions, etc.

Compliance with policies and regulations. This includes a rule and constraints engine on top of role definitions and the raw privileges. This engine reviews the existing privileges vis-a-vis segregation of duty rules and other business process rules and constraints.

Ongoing Role Management and Reporting. Sage's web-based Reporting Server provides reports for the ongoing administration of role definitions; for role engineering; and reports for IT, Security, and Compliance executives.

Identity Management and Provisioning. In these projects, Sage can play an important role in the initial assessment and planning phase, and then of course in the role engineering and role management functions.

Implementation of Role-Based Security in a specific system, such as RACF, Top Secret, Enterprise Directory systems, ERP and CRM systems, etc.

Automated verification of compliance in one system or across systems, e.g., as part of a Sarbanes-Oxley compliance effort

Review of privileges quality in one system or across systems, e.g., for the purpose of planning a privileges cleanup effort