CyberSecurity Demystified: A compact reference guide to cybersecurity by Peter Theobald

Author:Peter Theobald [Theobald, Peter]
Language: eng
Format: mobi
Published: 2022-07-31T00:00:00+00:00

Identity and Access Management (IAM)

These solutions take care of authentication (the process of verifying who the user is) and authorisation (only allowing access to what they are authorised to).

Every user needs credentials to access the company systems. These may be usernames, passwords, tokens, etc. When they are transferred or promoted, they may require access to more systems or a deeper level of access. When they leave the company, all their access must be immediately revoked. It would be a disaster if they could still access the company's systems even after leaving the organisation. What is needed in this case is the opposite of a single sign-on – a single sign-off - in one stroke, you need to be able to disable their access to all the systems.

The process of doing all this is called Identity and Access Management (IAM). It is a framework of policies and technologies that ensures that only the right users have appropriate access to the required technology resources. It allows for a fine-grained access policy known as Role-Based Access Control (RBAC). Users are not just granted blanket access to systems, but it is also specified what they can do – only read data from the system, write to it, change policies, add and delete users etc. It also has a built-in reporting module, increasing the organisation's security and productivity.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.