Identity Management Systems as a Risk?

With the implementation of an IdM tool, companies establish the central control of access rights administration of internal and external users. Therefore in terms of GRC, the audit of IdM systems is of prime importance. However, auditing means more than just the verification of the IdM’s internal security. By collecting and consolidating all the access rights for a wide variety of different systems and applications, it also provides the answers to a large number of complex GRC questions. The professional management and analysis of configuration and log data enables powerful audits to be performed on your IdM systems, ensuring compliance with your company’s security policies. In other words, Identity Management auditing can be seen as a vital part of your overall GRC strategy, helping to meet major requirements as set out by regulatory laws and standards, and providing vital information for Key Risk Indicators.