A North American financial services company implemented the enterprise role management system by first assessing the current situation, laying out a formal role-based access control (RBAC) and governance vision, selecting a role management platform, setting up the infrastructure, and gradually setting up four key processes to support the access recertification, the role mining and management, and segregation of duties (SoD) definition processes. The company also continues to place great emphasis on keeping the enterprise roles up-to-date and enhancing the application onboarding and role management process.