Tuesday, August 14, 2012

Identity Access Management Critical in Today’s Unstable Business Environment

Today’s business environment is highly competitive, complex, and volatile. This has put tremendous pressure on organizations to increase their accessibility to customers, partners, vendors, suppliers, and employees. Hence, enterprises are deploying an ever-increasing number of applications with multiple, often mutually incompatible, proprietary identity systems, or security models, inconsistent management of identities and different auditing mechanisms. However, in their haste to enhance their accessibility they forget to look at the security aspects, which leads to inefficiencies, increased risk of identity theft and unauthorized access, and failure to meet regulatory compliance.

In today's work environment, passwords and password resets are one of the most widely used measures to ensure information security. A recent research showed that on an average each employee accesses around 16 applications and systems. And as part of the security measure, each employee has to remember five or more passwords, which the employee has to change five or more times per year. It results in multiple repositories of identity information, multiple user IDs and multiple passwords. 

However, the fact of the matter is most employees finding it impossible to manage multiple identities. This is proved by the number of password related calls that help desk receives. Moreover, juggling multiple identities lead to chaos and confusion, which is put to good use by the criminals. This calls for a comprehensive and focused approach that would enhance efficiency, achieve compliance, and improve the security of the organizations. That is what identity and access management offers to do.

Identity and access management helps organizations to manage access to scattered information and applications within the organization without compromising security or exposing sensitive information. Hence, identity and access management can be defined as a set of policies, processes, and technologies for the creation, management, and use of digital identities. The objective of identity access management is to provide right access to the right people at the right time. It comprises of four important aspects namely

●        Authentication
It is the process of verifying and proving the claims of an identity for gaining access to an application system or resource.

●        Authorization
It is the determination whether to allow an identity to perform an action or access a system or resource.

●        User Management
It refers to the process of creating, propagating, and maintaining user identity and privileges. An important component of user management is user lifecycle management, which refers to the lifecycle of a digital identity from creation to termination.

●        Enterprise Directory
It is the repository for securely storing and organizing the digital identities and its credentials and attributes.

In today’s unstable business environment, identity access management is important to secure the organization and to protect confidential and personal data and thereby achieve compliance, business growth, operational efficiency, and cost savings.


Other Links

No comments:

Post a Comment