KuppingerCole
KuppingerCole Events
  1. Home
  2. Reports
  3. Technology Report: Access Governance Architectures - 70219

Technology Report: Access Governance Architectures - 70219

Report Details

Access Governance is about the governance and management of access controls in IT systems and thus about mitigating access-related risks. These risks include the stealing of information, fraud through changing information, and the subverting of IT systems, for example in banking to facilitate illegal actions, to name just a few. The large number of prominent incidents within the last few years proves the need to address these issues – in any industry. There are an increasing number of tools for Access Governance. On one hand, a number of start-ups have entered the market with specific solutions to Access Governance. On the other hand, existing provisioning products have been enhanced or complemented by specific Access Governance functionality by their vendors.

However, the implementation has to be well thought out, given that there are many different architectural approaches for Access Governance. It is no surprise that the vendors of Access Governance tools tend to position those tools as the core element of at least the IT GRC (Governance, Risk Management, Compliance) infrastructure. From the KuppingerCole perspective, the role shouldn’t be overhyped. Access governance is important with respect to the high relevance of access risks. However, Access Governance might be accomplished using provisioning tools. And, beyond that, Access Governance is just one element within a larger GRC architecture. So Access Governance is important, but it is not only about Access Governance. Much of the success of Access Governance is based on the fact that it provides a much better user experience than classical provisioning and not so much about the added features. This aligns with the KuppingerCole IT Model, which emphasizes a Business Service Layer as interface to the business users, providing exactly the services they need.

Thus, successful implementations require a holistic view of GRC to ensure that all types of IT controls are covered and are well aligned to the business controls. It requires as well a well thought out architecture with respect to existing or planned identity provisioning tools, which can’t be substituted for access governance tools. However, that’s where the biggest value of doing Access Governance comes from. Access Governance is perfectly suited to leverage existing IAM (Identity and Access Management) infrastructures to the next level. The report discusses the different architectural options, their strengths and their weaknesses.

You can get access to this document for free, if you register for KuppingerCole Select access now.

Date Title Price
Mar 27, 2012

Technology Report: Access Governance Architectures - 70219

Access Governance is about the governance and management of access controls in IT systems and thus about mitigating access-related risks. These risks include the stealing of information, fraud through changing information, and the subverting of IT systems, for example in banking to…

 €495.00 Get Access
Mastercard Visa PayPal Invoice

Latest Related Reports

Executive View

Executive View: EmpowerID - 70894

EmpowerID provides  a complete solution for IAM, CIAM, and Adaptive  Authentication.  With a highly  customizable workflow and authorization engine,  EmpowerID delivers advanced functionality for  enterprise and government  customers.

Executive View

Executive View: Hitachi ID IAM Suite - 72543

Hitachi ID offers an all - in - one IAM package to address enterprise business  requirements.   With an emphasis on  process automation and self - service, the  Hitachi ID IAM Suite helps businesses reduce their expenditures on identity - related administration and…

Executive View

Executive View: RSA Identity Governance and Lifecycle - 72503

RSA Identity Governance and Lifecycle is a complete solution for managing digital identities, both inside and outside the enterprise. The RSA solution covers all aspects of governance from attestations to policy exceptions and identity lifecycle, from provisioning to entitlement assignment…

Advisory Note

Advisory Note: Enterprise Role Management - 70285

Role-based access control (RBAC) has become an important part of Access Management and Access Governance. However, defining, implementing and maintaining an enterprise role model remains a substantial task and many projects fail. This document describes best practice approaches towards the…

Leadership Brief

Leadership Brief: Transforming IAM – not Panicking - 71411

Many organizations are responding to incidents and audit failures by panicking and buying more point solutions. They need to take a more strategic approach to transform their IAM. 

Executive View

Executive View: Beta Systems Garancy Recertification Center - 71315

With the new Garancy Recertification Center, Beta Systems is closing a previous gap in its portfolio in the Access Governance segment. The portal solution for recertification enables companies to run review campaigns of the users’ access rights in a business-friendly and intuitive…

Executive View

Executive View: SailPoint IdentityIQ - 71319

SailPoint IdentityIQ is one of the leading products in the emerging market for Identity and Access Governance. The governance-based approach centralizes visibility and compliance, and minimizes risk by applying controls across all IAM services geared towards business users. They expand…

Executive View

Executive View: Protected Networks 8MAN - 71520

8MAN ist eine Access Rights Managment-Lösung für Windows-Umgebungen. Der Fokus liegt auf der Analyse von Berechtigungen und ihrer Verwaltung in solchen Umgebungen. Damit fällt 8MAN in die Kategorie von Entitlement & Access Governance-Lösungen und kann bestehende…

Executive View

Executive View: EmpowerID Office 365 Manager - 71322

EmpowerID Office 365 Manager is an Identity and Access Management solution for Office 365 providing single sign-on, user provisioning and administration, and access governance functions in a single integrated package.

Executive View

Executive View: One Identity Manager v7.0.1 - 70894

One Identity Manager is well-designed, well-integrated and complete Identity Management solutions, which continues to demonstrate leadership in the IAM/IAG market. Version 7.0.1 builds on the major release (v7), and adds a significant number of new features along with performance…

Discover KuppingerCole

KuppingerCole Select

Register now for KuppingerCole Select and get your free 30-day access to a great selection of KuppingerCole research materials and to live trainings.

Blog

Latest Insights

GDPR and PSD2: Challenges and opportunities for CIAM

Executive View: PingIdentity’s PingDirectory - 70294

Leadership Compass: Privilege Management - 72330

Leadership Compass: CIAM Platforms - 70305

Advisory Note: Identity in IoT - 70282

Hot Topics

Operational Technology, SCADA, & ICS Security

Blockchain & Distributed Ledgers

Life Management Platforms

Real Time Security Monitoring & Intelligence

Adaptive Authentication & Authorization

Privilege Management

Entitlement & Access Governance

Customer Privacy

Cognitive Technologies

Spotlight

Learn more

Connected Consumer

When dealing with consumers and customers directly the most important asset for any forward-thinking organisation is the data provided and collected for these new type of identities. The appropriate management of consumer identities is of utmost importance. Handing over personal data to a commercial organisation the consumer typically does this with two contrasting expectations. On one hand the consumer wants to benefit from the organisation as a contract partner for goods or services. Customer-facing organizations get into direct contact with their customers today as they are accessing their [...]

Become a Client

Learn more about becoming a Client

Contact Us

Call Us

+49 211 2370770
Mo - Fr 8:00 - 17:00