IBM Acquires Enterprise IT Security Vendor

IBM has acquired CrossIdeas, a privately held provider of security software that governs user access to applications and data across on-premise and cloud environments. Financial terms were not disclosed.

Based in Rome, Italy, CrossIdeas helps organizations manage identities and application access by bridging the gap between compliance, business, and IT infrastructure to help reduce the risk of fraud, conflicts of duties, and human error in business processes.

As part of IBM’s Identity and Access Management portfolio, CrossIdeas will deliver identity and access governance capabilities to help mitigate access risks and segregation of duty violations. The combined business-driven approach provides integrated governance and full lifecycle management of a user’s time with an organization. 

CrossIdeas addresses the business requirements of auditors and risk and compliance managers withrole analytics, visualizations for better insight into user access, and alignment with compliance and access risk requirements. This Identity Intelligence is delivered via centralized compliance dashboards for auditors to evaluate access risk and activity-based segregation of duties across enterprise-wide applications.  These dashboards are populated using a broad array of identity and access repositories including IBM Security Identity Manager.

IBM said it has now made more than a dozen acquisitions in security over the past decade and invested extensively in dedicated research and development in the security space. “The addition of CrossIdeas extends our portfolio of identity and access management capabilities,” said Brendan Hannigan, general manager of IBM Security Systems. “IBM can now provide enterprises with enhanced governance capabilities and transparency into risk from the factory floor to the board room.”

Information on IBM Security is available at

Information on CrossIdeas is is available at