RCPI
Sector: Healthcare, Higher education, Non-profit organisation
Size: 51-200+ employees
Technology used: Microsoft Azure, Smart AIM
Solution area: Cloud infrastructure and security
RCPI operated across 13 siloed systems, with individual users maintaining access through multiple email addresses. This limited visibility, increased administrative effort, and engendered governance and compliance risks across its growing global network. With users rotating across hospitals and countries, the organisation needed a secure, scalable way to manage digital access while enabling personalised experiences across its global services.
Spanish Point partnered with RCPI to modernise identity and access management using Microsoft Entra External ID. The solution unified the disparate systems into a single secure identity platform, enabling single sign-on (SSO), multifactor authentication (MFA), automated account provisioning, and role-based access controls.
.png?h=508&iar=0&w=640)
RCPI reduced administrative overhead by 50%, improved onboarding and user experience, and maintained full-service continuity during attempted global cyberattacks. The platform now provides secure access, stronger governance, and a scalable foundation for future data and AI initiatives.
in administrative overhead.
into a single identity platform.
during attempted cyberattacks.
gained secure access to RCPI's digital platform.
The objective was not simply to improve access management, but to establish a secure, resilient identity governance and authentication solution capable of supporting RCPI’s global scale and future digital ambitions. This required a modern approach to identity architecture, built to withstand security threats while enabling flexibility and growth.
The core environment was re-engineered around Microsoft Entra External ID to provide seamless single sign-on (SSO) and multi-factor authentication (MFA) via OIDC/OAuth and SAML 2.0 protocols. Custom integration was achieved through lightweight Microsoft Azure Function Apps that handled real-time user synchronisation with the RCPI Data Hub and provided a subscription-based API for third-party vendor interoperability. To manage transient user populations, Spanish Point implemented automated deprovisioning logic using Microsoft Graph API telemetry to identify and lock accounts inactive for 24 months, significantly reducing manual governance burdens.
An accompanying analytics solution enabled continual extraction from the Entra ID logs and the update of an interactive dashboard in Microsoft Power BI. This allowed operators to both monitor the solution as well as to gain further insight into their membership across geography, device preference etc.
Operational resilience was achieved by configuring the native security capabilities of Microsoft Entra ID using best practice to mitigate cybersecurity risk. Leveraging the Smart AIM library, enterprise-grade security configurations including fraud detection and rate limiting were deployed using infrastructure-as-code (IaC) via automated Azure DevOps pipelines. This engineering approach was validated under real-world conditions, maintaining 100% service availability during targeted cyber security threats and providing the high-availability foundation required for RCPI’s mission-critical medical training.
