Role Management

Role management has become a critical component in addressing governance, risk management and compliance requirements around user access to sensitive applications and data. Roles directly support compliance by aligning access privileges to user job functions within the organization and by providing business context to lower-level entitlements and permissions that must be reviewed by business managers and compliance staff.

IdentityIQ helps organizations create, enforce and verify role-based access across diverse enterprise applications using an automated approach. By standardizing user access privileges using a flexible role model, the Governance Platform offers role management to improve the accuracy of entitlements, increase the efficiency of IT administrators and ensure low-level access rights adhere to business and regulatory policies.

Overview

Create Roles, Manage Role Lifecycles and Align Access to Job Functions
The role management capabilities of the Governance Platform enable organizations to define the roles that support critical business processes and manage the lifecycle of each role – from creation and modification to approval and, when necessary, retirement.

Role management reduces the time it takes to define roles by automating the process of grouping fine-grained entitlements into technical IT roles. It facilitates the assignment of users into business roles and ensures conformance to policy through continuous monitoring and auditing of user privileges.

Benefits

With IdentityIQ role management, enterprises can:

• Reduce complexity and simplify administration of user access rights by grouping cryptic, technical access rights into logical business roles, and capturing the business context required to simplify user administration
• Enforce and verify role-based access policy across applications by automating role approvals, certifications and analytics
• Streamline and simplify compliance and provisioning processes
• Improve collaboration across business, IT and audit/compliance teams by facilitating cross-functional participation in the role modeling process
• Detect and prevent inappropriate access to reduce business risk

Resources

• SailPoint IdentityIQ Product Overview – A high-level introduction to SailPoint IdentityIQ, a comprehensive identity governance solution that delivers risk-aware compliance management, integrated lifecycle management, identity intelligence, and user provisioning with a common framework for managing roles, risk and policy.
• Best Practices: Practical Role Management – This paper identifies common pitfalls on the road to role management and which best practices can pave the way to solving real business problems.
• Viewpoints: Role Management and Risk – This educational paper reviews how effective role management can provide the business context necessary for non-technical personnel to oversee and verify user access policy. It reviews three ways that role management helps organizations to manage information security risk and ultimately corporate risk.
• Podcast: Role of Roles in Compliance Podcast – Jackie Gilbert, VP of Marketing and Founder, interviews Darran Rolls, CTO for SailPoint, on the subject of role-based access control (RBAC), and its relevance to identity management and compliance projects. Darran tackles the controversial topic concerning the difference in roles for provisioning and roles for compliance and where they can, ultimately, come together.
• Podcast: Why Enterprises Need More Roles – SailPoint speaks with Forrester Research Senior Analyst, Andras Cser, to discuss the growing importance of enterprise role management. Cser, a leading expert on identity management, explains why role management is becoming increasingly strategic to organizations as business users become more involved in identity governance, particularly during the recent economic turmoil. He also provides recommendations for companies considering an enterprise role management project.

Demo

Register to See IdentityIQ in Action


Please complete the questions below and someone will contact you soon to schedule an IdentityIQ demo. *Please note, fields marked with an asterisk (*) are required. First Name: * Last Name: * Title: * Company: * Email: * Phone: * (please use only numbers) What capabilities are you most interested in? (select all that apply, please hold down "ctrl" key when selecting multiple answers) Compliance management Access Certifications Policy Enforcement Provisioning Role Management Access request management Identity intelligence Auditing and reporting All of the above Other   * If your browser is set to accept cookies, you will be recognized on subsequent visits and immediately granted access to the SailPoint Resource Center.