|
Get Informed.
Take the first step in identifying your priorities, conducting a side-by-side product analysis and finding a solution that suits your needs. Get Started.
See IdentityIQ in action and how it can work for you. Get Support.
Take advantage of SailPoint's helpful resource center with a collection of documentation on a range of today's hottest topics in identity management. Get Informed.
Take the first step in identifying your priorities, conducting a side-by-side product analysis and finding a solution that suits your needs. Get Started.
Make the most of SailPoint's online support system, Compass, to plan, pilot, implement and deploy SailPoint IdentityIQ across your entire organization. Get Support.
SailPoint's customer support portal is available 24x7. Request an account today and get the help you need. Get Informed.
Take the first step in identifying your priorities, conducting a side-by-side product analysis and finding a solution that suits your needs. Get Started.
Learn more about how to become a SailPoint partner today. Get Support.
SailPoint partners can access the knowledgebase, training info and more on Compass. Get Informed.
On a deadline? Reach out to the SailPoint PR team. Contact Erin Hanley at pr@sailpoint.com or 512-346-2000 ext. 32. Get Started.
Keep in touch with the latest news from SailPoint by subscribing to our quarterly newsletter. Get Support.
Contact us today and let us know how we can help you. Get Informed.
Keep in touch with the latest news from SailPoint by subscribing to our quarterly newsletter. Get Started.
Join one of the industry's fastest growing companies! Visit our Careers page to see available opportunities. Get Support.
Contact us today and let us know how we can help you. Get Informed.
Keep in touch with the latest news from SailPoint by subscribing to our quarterly newsletter. Get Started.
See IdentityIQ in action and how it can work for you. Get Support.
Contact us today and let us know how we can help you. Get Support.
Talk directly to a member of SailPoint's technical support team by calling: +1 (512) 346-2000 x 771. Get Informed.
Customers have access to user community discussions, the knowledgebase, training and documentation on Compass. Get Started.
Login to Compass, the online community portal, to access the support portal and get answers today. |
Tales from the Trenches: Identity Governance Best Practices
Focus on value. That has been SailPoint's mantra for 2009, particularly as we help our customers address security and compliance challenges amidst constrained resources, tight budgets and increasing scrutiny. When I sat down to write this month's opening article for NAVIGATE, I thought about discussing how our company and product add value. Instead, I thought it would be more appropriate – and dare I say valuable – to share advice and lessons learned from our own customers. Based on conversations with customers throughout the last few weeks, I'd like to share a couple of important lessons learned from companies proactively addressing IT risk with identity governance. Marry compliance and security efforts. All too often, companies are focused on proving compliance and on preventing security breaches, but they attempt to address both individually. Identity governance enables you to truly synchronize your IT security and risk management efforts with your compliance and IT audit processes, which was the initial goal of the regulatory mandates in the first place. Take the case of a major insurance company that wanted to implement an identity governance solution to demonstrate proof of SOX compliance while reducing security vulnerabilities. The company is visionary when it comes to proactive risk management because its IT leaders were adamant that they improve security in addition to complying with the "letter of the law." With SailPoint IdentityIQ the company was able to quickly and easily aggregate, correlate and cleanse data for high-risk applications, and fully automate review and certification by line managers for 45,000 users. Out-of-box reports now provide visibility and proof necessary for internal and external audits without the need for time-consuming data gathering and compilation. And equally important, the project has lowered risk and improved security through the elimination of orphan accounts, excess privileges and SoD policy violations. Don't underestimate the need for "quick wins." Even as the economy stabilizes, the enterprise IT buying process has changed. That means that you need to focus on proving the value of your technology purchases. This goes beyond rapid deployment of the technology and requires that you can demonstrate tangible results at varying intervals of any implementation. Fortunately, the very nature of identity governance tools makes these quick wins almost automatic. One of the world's largest banks experienced immediate value from the enhanced enterprise-wide visibility into "who has access to what" and the ability to easily generate customizable, on-demand reports within IdentityIQ. The bank accelerated the rate of early results by leveraging a hosted version of IdentityIQ and reported that during the first review cycle, managers were able to identify and revoke 20% of existing user entitlements as unnecessary. By this action alone, the bank was able to significantly improve its accuracy in granting user access privileges while also reducing risk and increasing security. Equally impressive, the time spent on access certifications was reduced from months to a few days. It's important to take a step back from your identity governance initiatives to make sure you're addressing security and compliance challenges in tandem. It not only makes your approach more efficient, which is critical for teams with constrained resources, it ensures maximum effectiveness and value for your efforts and investment. At the same time, identifying the "quick wins" given your specific situation allows you to achieve the incremental progress needed to garner on-going executive support for your project. I hope this advice resonates with you. My goal is to continue sharing tips, tricks and lessons learned in future newsletters, in the customers section of our website and via the SailPoint blog, Identity Quotient. Sincerely, For More Information
|
