Although, Identity and Access Management (IAM) is the security backbone of an organization, it is often seen as a mere technical implementation. The four P’s comprise people, process, product and partner and are a main concept within IT service management. In this session the four P’s of IAM are applied to the context of extended enterprise. An extended enterprise is a network of firms which cover supply chains but also loosely coupled collaborations as for example arise in the context of cloud services. In such organizational forms IAM becomes rather a service building block than a technical solution. So the impacts of extended enterprises to IAM are illustrated using the 4 P-Concept.
The most pressing demand from business to the IAM departments today is about the “extended enterprise”. Business wants new services. They want to access services and systems of business partners. They want to onboard external partners. They want to use cloud services. All this has to be done quickly but still in a secure way. This session will explain how to move forward when it comes to supporting the enterprise and to deal with all types of third parties in a consistent way. It will show how a standardized infrastructure could look like. It will discuss what you need as a conceptual foundation, which steps to go next, and what a potential end-state could look like. It will talk about maturity levels for a standard infrastructure which allows to extend IAM/IAG beyond the core enterprise.