dcsimg

Five Critical Tenets of Identity and Access Management

  • Five Critical Tenets of Identity and Access Management-

    Think identity - not account

    Even before the advent of cloud computing, we learned that more often than not, an end user in an organization typically has multiple accounts and multiple entitlements per person across the infrastructure. If an enterprise only focuses its IAM program on managing at the account level, it will never get the total visibility needed to properly know "who does have access to what."

    Understanding the relationship between the identity and the account, between the account and the entitlement and between the entitlement and the data/information that it protects is key. By centralizing data around an identity, enterprises have a single place to model roles, policies, and risk to support compliance, provisioning, and access management processes across the organization.

1 | 2 | 3 | 4 | 5 | 6 | 7

Five Critical Tenets of Identity and Access Management

  • 1 | 2 | 3 | 4 | 5 | 6 | 7
  • Five Critical Tenets of Identity and Access Management-2

    Think identity - not account

    Even before the advent of cloud computing, we learned that more often than not, an end user in an organization typically has multiple accounts and multiple entitlements per person across the infrastructure. If an enterprise only focuses its IAM program on managing at the account level, it will never get the total visibility needed to properly know "who does have access to what."

    Understanding the relationship between the identity and the account, between the account and the entitlement and between the entitlement and the data/information that it protects is key. By centralizing data around an identity, enterprises have a single place to model roles, policies, and risk to support compliance, provisioning, and access management processes across the organization.

The identity and access management (IAM) market is experiencing a renaissance with the emergence of new options for how and where to deploy IAM technology, both on-premises and as a service. At the same time, most organizations are struggling with how to best utilize the IAM solutions they have to manage their changing world of IT infrastructure. New technologies like cloud and mobile are being mixed with established mainstays like SAP, Oracle and RACF and all must be managed with an increasing focus on governance, compliance and automation. However, regardless of the delivery model selected, and whatever the mix of applications being managed, many best practices of IAM remain unchanged.

As we look back on what we've learned in the industry so far, and we lay out a path to the future products and solutions for tomorrow, some basic and very simple patterns (or tenets) of IAM approaches emerge that can help guide a solution and a deployment today and 10 years from now. This slideshow features five of the critical IAM tenets, identified by SailPoint, that are necessary for defining, securing and managing identity across the enterprise.