As businesses look to move to the cloud and add value through digital transformation, data has moved beyond the perimeter. Organisations now need to offer secure anytime, anywhere access to customer and corporate data to deliver the best products and highest service levels. Additionally, for compliance purposes, they need to understand who has access to what data. IAM technology can help achieve all of that.
Many IAM projects fail without the right support. In a survey by Computing1, more than a third of respondents (38%) had been involved in or affected by an IAM project that was never fully completed, took much longer than planned or failed to meet expectations. The reasons for these unfulfilled plans included the complexity of the customisation to manage access to legacy applications and platforms; a lack of specialist IT skills to manage the solution; to project plans that were driven by IT and security considerations than by business needs.
The origins of IAM is rooted in big-budget security implementation in the banking and finance sector to lock down their IAM in response to regulatory and compliance requirements. Now, organisations of all types and sizes and in sectors ranging from retail to healthcare, energy and manufacturing, are looking at IAM technology to secure flexible access to cloud-based resources and support agile working environments. Increasingly, these organisations must comply with a growing number of regulations around data privacy and security. As a result, they face a range of intertwined and complex business, regulatory and technology issues.
Organisations confronted by the need for enhanced IAM may have justifiable concerns around bringing in an IAM project on time and in budget. Rightly so, these projects are complex. But I may have an answer to help alleviate those concerns. While there is no silver bullet, here are five simple recommendations, borne from our experience, that will help to guide organisations on their journey to a successful IAM project:
IAM: the paving stones on the road to full governance
IAM technology is highly sophisticated, yet it is only a part of journey towards full governance. Wherever the organisation is on that journey, the key is to get the right support to help you get to where you want to be. Technology alone cannot do that. Ensuring that you have the right partner who can deliver the consulting, pre-sales and deployment services that you need is vital. Only after IAM is integrated across the organisation will it be possible to realise ambitions for flexible working, agility and improved responsiveness, or business growth.
1 Why IAM projects fail – Understanding and avoiding common pitfalls on the route to effective identity and access management. August 2015. Computing research paper.
About the Author
Rogier Egberink is One Identity’s Regional Sales Director for Benelux, Italy and France