Five Critical Tenets of Identity and Access Management

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7
Next Five Critical Tenets of Identity and Access Management-2 Next

Think identity - not account

Even before the advent of cloud computing, we learned that more often than not, an end user in an organization typically has multiple accounts and multiple entitlements per person across the infrastructure. If an enterprise only focuses its IAM program on managing at the account level, it will never get the total visibility needed to properly know "who does have access to what."

Understanding the relationship between the identity and the account, between the account and the entitlement and between the entitlement and the data/information that it protects is key. By centralizing data around an identity, enterprises have a single place to model roles, policies, and risk to support compliance, provisioning, and access management processes across the organization.

The identity and access management (IAM) market is experiencing a renaissance with the emergence of new options for how and where to deploy IAM technology, both on-premises and as a service. At the same time, most organizations are struggling with how to best utilize the IAM solutions they have to manage their changing world of IT infrastructure. New technologies like cloud and mobile are being mixed with established mainstays like SAP, Oracle and RACF and all must be managed with an increasing focus on governance, compliance and automation. However, regardless of the delivery model selected, and whatever the mix of applications being managed, many best practices of IAM remain unchanged.

As we look back on what we've learned in the industry so far, and we lay out a path to the future products and solutions for tomorrow, some basic and very simple patterns (or tenets) of IAM approaches emerge that can help guide a solution and a deployment today and 10 years from now. This slideshow features five of the critical IAM tenets, identified by SailPoint, that are necessary for defining, securing and managing identity across the enterprise.

 

Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

 
More Slideshows

Privacy rollback Security Pros Give Their Opinions on ISP Data Privacy Rollback

IT staff, organization leaders, and the average citizen have all expressed levels of concern over the FCC about-face in regard to ISP privacy. Here’s what the security experts say. ...  More >>

IT security skills 7 Top Skills for Security Pros

Executives at several top tech firms outline the skills they need now and in the near future, including IaaS and IoT security expertise. Other skills listed may surprise you. ...  More >>

IT security careers The Most In-Demand Security Jobs and How to Get Them

Security professionals are in demand right now, and entry-level security jobs generally fall into either an engineer or analyst role. Find out more about required skills and career paths. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.