Access requests are an essential part of the security posture of any organization. They are used to grant users access to the systems and the data they require to do their jobs. Access requests should support strong governance to ensure that users don't acquire or retain excessive permissions.
Many organizations struggle to implement effective access controls. They rely on processes which are either entirely manual or have significant manual components. This is costly and time consuming, leading to SLA problems, impacting user productivity and incurring significant expenses. Control problems are also often present, resulting in audit failures and increased regulatory risk.
In this document, access management is first defined and then the various challenges faced by many organizations are described. The root causes of these challenges are explored and solutions are presented, using a combination of Hitachi ID Identity Manager technology and Hitachi ID Identity Express best practices.