Role Lifecycle Management

Overview

Improve Operational Efficiency and Accuracy
Compliance IQ simplifies the management of roles over the entire lifecycle of definition, maintenance, and retirement process—automating workflows, facilitating change control, and improving administrative efficiency. With its business-friendly web-based interface, users across the enterprise can easily create and modify roles, approve roles, certify roles, and deactivate roles upon retirement.

Capabilities

• Review and Approve Role Changes – When a new role is created or an existing role is modified, Compliance IQ routes the role to the appropriate reviewers for analysis and approval. Reviewers can easily analyze the role for accuracy, and approve or disapprove the role.
• Perform Role Change Impact Analysis – Before approving a new or modified role, managers can conduct a simple "what if" analysis, enabling a proactive assessment of the role change and the impact on users before the change takes place—a task impossible to do with manual role management processes.
• Conduct Role Certifications – To ensure the accuracy and legitimacy of the role model, Compliance IQ automates the periodic review of roles. Role certifications can be performed for both role membership and role structure (including entitlements associated with the role).
• Generate Comprehensive Role Audit Reports – Compliance IQ audits and logs all actions performed on roles, such as create, modify, approve, or disable. Compliance IQ's reporting capabilities enable organizations to schedule and generate periodic role audit reports that can be distributed to any manager of interest.

Features

• Approval Workflow – Automates process for routing approval requests for new or modified roles
• Impact Analysis – Allows stakeholders to model the impact of proposed role changes
• Role Certification – Automates the periodic review of role membership and role structure to ensure the role model accuracy
• Role Change Auditing – Audits and logs all actions performed on roles, such as create, modify, approve, or disable

Resources

• Compliance IQ Product Brochure – A quick introduction to SailPoint Compliance IQ, an integted solution that automates identity compliance controls, manages roles and analyzes identity risk.
• Role Management Data Sheet – Outlines the key components and benefits of Compliance IQ's role management offering including role creation, lifecycle management, role assignment and role-based governance.
• Viewpoints: Role Management and Risk – This educational paper reviews how effective role management can provide the business context necessary for non-technical personnel to oversee and verify user access policy. It reviews three ways that role management helps organizations to manage information security risk and ultimately corporate risk.
• Best Practices: Practical Role Management – This paper identifies common pitfalls on the road to role management and which best practices can pave the way to solving real business problems.
• Role of Roles in Compliance Podcast – Jackie Gilbert, VP of Marketing and Founder, interviews Darran Rolls, CTO for SailPoint, on the subject of role-based access control (RBAC), and its relevance to identity management and compliance projects. Darran tackles the controversial topic concerning the difference in roles for provisioning and roles for compliance and where they can, ultimately, come together.

Demo