Skip to main content
search
Articles

The 05 Features for Well-Structured Identity Management

By August 30, 2019#!30Tue, 17 Sep 2019 15:26:51 -0300p5130#30Tue, 17 Sep 2019 15:26:51 -0300p-3America/Sao_Paulo3030America/Sao_Paulox30 17pm30pm-30Tue, 17 Sep 2019 15:26:51 -0300p3America/Sao_Paulo3030America/Sao_Paulox302019Tue, 17 Sep 2019 15:26:51 -0300263269pmTuesday=904#!30Tue, 17 Sep 2019 15:26:51 -0300pAmerica/Sao_Paulo9#September 17th, 2019#!30Tue, 17 Sep 2019 15:26:51 -0300p5130#/30Tue, 17 Sep 2019 15:26:51 -0300p-3America/Sao_Paulo3030America/Sao_Paulox30#!30Tue, 17 Sep 2019 15:26:51 -0300pAmerica/Sao_Paulo9#No Comments

By Gerson Silva *

THE identity management It is considered as the process by which the relationships between people and information assets of an organization are organized and managed throughout the relationship cycle between such individuals and the company itself.

Identity management has a core of Identity and Access Management, which are features that every project should implement:

  •  Governance and Identity Management;
  •  Centralized Authentication;
  •  Automatic provisioning;
  •  Self-Service Portal,
  •  Automated Auditing.

Core Identity Management Description (Features)

  1. Governance and Identity Management

This feature includes definitions of how identities and access to systems will be organized.

In this feature we can mention:

  •  Inventory of identities, systems and access profiles;
  •  Definition of flows regarding roles and responsibilities;
  •  Organization of identities and categorization of all employees, service providers, representatives and even customers;
  •  Definition of processes for requesting, approving, revoking and reviewing access rights;
  •  Definition of automation rules for the above processes,
  •  Administration of identities and access regarding systems and applications and users.

 2. Centralized Authentication

This is a feature that most companies probably don't have yet.

Companies that have many applications and systems have a hard time centralizing authentication.

It would be ideal for companies to use systems that do all this integration as it would slow down many processes. EX: User use same login and password and authentication would be centralized.

3. Automatic Provisioning

This is one of the features that automates tasks that add no value to identity management. Example: create user account, disable account, change password among others.

Automatic provisioning involves activities such as:

  •     Creation, modification, removal of user account;
  •     Registration and updating of personal data in the systems catalogs;
  •     Lock, unlock accounts;
  •     Exchange of passwords;
  •     Association, disassociation of an account with a right of access.
  •     Account queries, profiles, and rights associated with accounts.

4. Self-Service Portal

The self-service portal should provide the user with a good user experience and have the services the user needs most.

A self-service Identity Management portal should allow the user to reset (reset) their password simply and securely on as many systems as possible.

The portal should also offer the following services:

  •     Request new access to systems and new access rights; systems where the user already has access;
  •     Monitor the progress of requests;
  •     View the list of access rights that the user has on all systems,
  •     Manage your identity

5. Automated Auditing

Important in identity management is to ensure that all accounts of people who are no longer part of the organization have been disabled or removed.

Another, somewhat more sophisticated, item is to ensure that only effectively approved access rights are configured on systems. And which rights that have expired have been properly withdrawn.

Functionality that can validate that the defined approval streams will be used to verify that the accounts and access rights configured on the systems are in accordance with what has been approved. An automatic auditing system helps to bring more security in identity management.

 Conclusion

 THE Well structured identity management helps us not only reduce processes, but when well planned brings us security and practicality.

Integrate systems, reduce process time and costs, facilitate access clearance activities, and organize profiles and systems.

There are many benefits related to access management and well-planned identities, we need to be careful and always seek advances so that the results are always positive for the company, users and others.

* Gerson Silva is a Consultant Safeway Consulting.

 

Regarding the [SAFEWAY]

SAFEWAY is an Information Security company, recognized by its customers for offering high value added solutions through Information Security projects that fully meet business needs. During these years of experience, we have proudly accumulated several successful projects that have earned us credibility and prominence in our clients, which constitute in large part the 100 largest companies in Brazil.

Today through more than 17 strategic partnerships with global manufacturers and our SOC, SAFEWAY is considered a one stop shopping with the best technology solutions, processes and people.

Let's make the world a safer place to live and do business!

 

Tags:

Close Menu