Category: Identity and Access Management

The What, Why, and How of Deprovisioning

What’s deprovisioning?

Simply put, deprovisioning is the opposite of provisioning. While provisioning is carried out when an employee joins the organization, deprovisioning needs to be carried out when an employee exits. 

Deprovisioning involves revoking the user’s access to the organization’s data, applications and devices. It is the final stage of the corporate user lifecycle that begins with on-boarding and provisioning.

Why is it important?

Provisioning plays an important role in an organization’s productivity by getting new users the access they require to perform their role in the company. 

Deprovisioning, on the other hand, plays a critical role in security and compliance. When an employee moves on, it is vital that they no longer have access to the organization’s data or applications, because this would leave the door open to misuse. 

The consequences can range from data theft to malware insertion, leaks of confidential information to compliance violations. Each of these can have a major negative impact on the company’s finances as well as reputation.

How does it work?

Most organizations make use of multiple applications in their operations. Manually remembering to revoke access from a user when they exit the company can therefore be tedious, time consuming, and can easily result in human error as well.

A key requirement for an efficient and effective provisioning and deprovisioning process, therefore, is to bring control over access to all of the organization’s applications and data onto a single platform. This is typically achieved through the use of a Single Sign-On (SSO) solution – which is typically one of the major components of an Identity and Access Management solution.

With an SSO in place, the company’s admins can exercise control over user access from a single place, making the process fast, accurate and convenient. By removing the user’s account in one centralized dashboard, their access to all applications and data is then automatically revoked.

Akku is an enterprise identity and access management solution by CloudNow that helps companies manage the corporate user lifecycle more efficiently – from provisioning all the way to deprovisioning. Talk to us today to see how Akku could help your business address security and compliance issues arising from sub-optimal deprovisioning processes.

Can IAM Improve User Experience and Efficiency on the Cloud?

When an enterprise migrates to the cloud, it essentially opens the doors to a range of new possibilities for its business to flourish. When cloud capabilities are utilized to their full potential, several aspects of management are largely simplified, various processes integrated, and employees empowered to focus on their core roles.

However, many of these benefits to efficiency and convenience are often rendered ineffective by the roadblocks that tight security systems bring into the mix. That is why it is important to take into account the impact of your user, data and application security set up on user experience across your environment.

Continue reading Can IAM Improve User Experience and Efficiency on the Cloud?

Access Management Across Different Devices and Browsers

In today’s technology ecosystem, a strong foundation for authorization plays an important role in the overall data security of a company. Controlling each user’s access to data, and monitoring this across devices and browsers is essential to your enterprise’s security. 

Implementing a strong device policy is an integral aspect of data security

With a strong device policy in place, it is possible to exercise highly granular control over which of the company’s applications, information, and data your employees can access– through the company’s devices, as well as through their personal devices. Continue reading Access Management Across Different Devices and Browsers

Exploring the Difference Between Identity Management and Access Management

Only a small percentage of people across industries understand the difference between Identity Management and Access Management. The two concepts are certainly related and intricately interwoven, but they are still distinct in meaning and function. 
Continue reading Exploring the Difference Between Identity Management and Access Management

Managing Identity and Access in the Workplace

Identity and access management, sometimes simply known as identity management, refers to the IT function of maintaining security through the management of digital identities. In a workplace, this includes provisioning employees with accounts to all applications and platforms they will be using for their official tasks, assigning them with the right kind of permissions to each of these applications/platforms, and making sure that the right people have the right access to the right resources and data. Continue reading Managing Identity and Access in the Workplace

Customer IAM for GDPR Compliance

In order to protect the digital privacy of European citizens, the European Union created the General Data Protection Regulation to ensure that organizations which collect any personal data from their users make the users aware of how and why their personal data is being used. Essentially, installing an Identity and Access Management solution across your organization for your employees as well as customers can help you stay compliant with this complex regulation. 

The EU’s GDPR took effect more than a year ago, but that doesn’t make it any easier to comply with. So if your organization is still finding compliance a difficulty, we are here to help.  Continue reading Customer IAM for GDPR Compliance

Can an IAM solution prevent Credential Phishing?

The most common misconception regarding credential phishing is that it is people-driven and not organization-driven. Therefore, organizations tend to underestimate the impact it can have on them if even one of their employees is a victim of credential phishing. We suggest reviewing your entire security strategy to ensure that you are protected against phishing. 

Here is everything you need to know about credential phishing attacks.

Continue reading Can an IAM solution prevent Credential Phishing?

Identity and Access Management for Social Engineering Attacks

When in action, a social engineering attack could look like an email received from a government organization or your own organization asking your employees to divulge their credentials. The basis of social engineering attacks is to induce fear or urgency in unsuspecting users and employees into handing over sensitive information. Over the years, these attacks have become more sophisticated –  even if you open a mail or message from a possible attacker, malware is immediately installed on your system.  Continue reading Identity and Access Management for Social Engineering Attacks

Overcoming the Challenges of the Media Industry With Identity

When the digital revolution started, media companies were among the first ones to embrace it. Today, most media companies create content targeted exclusively at online subscribers on digital platforms, pivoting their efforts to become more user-friendly for a digital audience. 

In order to convert free digital users into paid users, it is also important to effectively profile them and target the right ads to the right users. Therefore, it becomes crucial to learn more about the users logging in to view media content – whether on an online magazine or a video streaming platform. At the same time, user information that is collected online needs to be safeguarded and the methods used for data handling must adhere to strict regulations. Continue reading Overcoming the Challenges of the Media Industry With Identity

Security vs. Usability

Security vs. usability – the debate has been around for quite a while now. Which one would you prioritize? Would you consider convenience more important than security when it comes to the identity management of consumers? What are your users more inclined to? Is there a way to find a balance between the two? Continue reading Security vs. Usability