I wrote an article that appeared in VentureBeat In this article I compared the principles of privileged account management to Maslow’s Hierarchy of Needs that we all know and love from Psychology 101. In a nut shell, I proposed that it was time that the securing of administrator access and privileged accounts finally moved from the mundane (but necessary) access, security, and control tasks into the more strategic (and more valuable) management and governance areas.
But this idea isn’t limited to privileged account management. IT really can be applied to any area of IAM. Here’s what my hierarchy looks like, next to Maslow’s.
So what does this have to do with me? You may ask. Think about your IAM projects. Where do they each reside on this hierarchy? Where do you ultimately want them to end up? I would argue that the purpose of everything we do in IAM is to get to a governed stance, but a vast majority of the investment and effort put into IAM is bogged down at lower levels. But they don’t have to be.
Approaching any IAM project – whether it be provisioning, single sign-on, password management, privileged account management, attestation or recertification, access request and fulfillment, or whatever you may be dealing with today – with an eye towards governance will remove many of the barriers that traditionally make IAM so difficult.
So from an actionable, real-world standpoint here’s a few ideas to ponder:
I would argue that only the One Identity family of solutions adequately addresses all four and takes into account the ultimate goal of everything we do in IAM – governance.