Commissioned by Radiant Logic
1 Executive Summary
Digital transformation is raising the bar for business agility and is creating an explosion in the volume, variety and velocity of identity data that enterprises have to manage efficiently. At the same time, regulators are increasing the liability of enterprises for assuring that identity data is safeguarded, is only collected, retained and accessed appropriately, and is accurate. Most enterprises‘ deployed IAM infrastructures are straining to accommodate these forces, and have become a constraint on the ability of the business to compete and to meet new regulatory requirements. To break free, the digital enterprise needs integrated identity data, defined as a capability providing:
- a comprehensive view of all its identity data;
- an efficient way to keep it consistent across all systems where it is created, stored or applied; and
- the abillity to enforce policies on identity data collection, protection, and use that are consistent with enterprise business and compliance obligations.
For large enterprises—or for organizations of any size that use identity information from many sources to control access to diverse digital services on-premises and in the Cloud—identity integration is an increasingly urgent requirement.
This paper lays out the important functional requirements that should be met by an IAM core component that will enable enterprise-wide integration of identity data. These requirements roughly divide into four categories: database performance; identity resolution, schema extraction and data modeling support; synchronization or “virtual extract-transform-load (ETL)” capability; and connector and IAM component integration support.
Several common business scenarios illustrate the value of an integrated identity data capability. These include mergers and acquisitions; extension of premises-based IAM to the Cloud; and implementing compliance with new privacy regulations.
The features of Radiant Logic’s RadiantOne identity suite are briefly described and matched against the list of features needed to enable identity data integration.
Finally, KuppingerCole recommends an approach to acquiring an integrated identity capability based on the fact that such a capability should bring essential benefits to both corporate compliance executives and line-of-business leaders.