Identity governance and administration (IGA) is a policy-based approach to identity management and access control that efficiently mitigates risk and improves compliance organization-wide. Understanding IGA starts with understanding each of the two parts separately — identity governance and identity administration. The former addresses the segregation of duties, role management, logging, analytics, and reporting. The latter addresses credential and account administration, device and user provisioning and deprovisioning, and entitlement management. Combining the two of these improves compliance and mitigates risk by enabling functionality that’s beyond the scope of traditional identity and access management (IAM) systems.
Improving Visibility Into Your System with IAM and IGA
Identity governance and administration tools help simplify and streamline user identity lifecycle management through capabilities such as password management, integrations, automation, access request management, detailed event logging, provisioning and deprovisioning, and entitlement management. IGA tools work with IAM tools to make all of this happen in the most seamless and efficient way possible.
The issue is, traditional IGA platforms can be expensive, and many small to mid-sized enterprises (SMEs) don’t require the full functionality of these tools, nor do they want to pay for them. The market focus is shifting to a new model that works for everyone, not just large enterprises with extensive resources. Vendors are now offering “light” IGA capabilities or concentrating on solving just a few problems that smaller enterprises face, rather than trying to provide an extensive suite of products and services that are not needed. These modest IGA solutions are the future and a great option for those organizations with no IGA solution in place already.
Many SMEs find that implementing a single IAM solution with IGA capabilities is the best route to take to reap the benefits of both without making the lives of IT admins more difficult than necessary. The difference between IAM and IGA is that IGA allows organizations to define and enforce IAM policy and connect IAM functions to meet audit and compliance requirements. So the primary purpose of identity governance and administration is to connect and enforce IAM policies.
Benefits of IGA
As organizations continue adding (Read more…)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Brenna Lee. Read the original post at: https://jumpcloud.com/blog/what-is-identity-governance-and-administration-iga