Access management also known as rights management is the execution of policies and procedures for granting authorized individuals the right to access services, functions, data, and physical locations while preventing non-authorized individuals from accessing systems, assets, and other services.
Access management is one of the information security disciplines which interacts with users and their management the most and is critical to the implementation of policies and procedures to support the security goals of the organization, mitigate access risks, maintain access controls, and comply with contractual and legal requirements.
Identity Management Institute® (IMI) developed the Certified Access Management Specialist® (CAMS) training program for testing, analysis, and evaluation of the knowledge, skills and abilities of professionals for the purpose of certification and re-certification in the field of access management. CAMS® is a registered trademark of IMI.
Watch this video to learn more about the Certified Access Management Specialist (CAMS)® program:
The CAMS examination consists of 100 multiple-choice questions. Candidates must answer at least 70 questions correctly to pass the exam and become certified. Registered candidates can schedule the exam for up to 3 times at no additional charge which can be taken on any day except on the blackout dates listed in the exam registration form anywhere on desktop computers or mobile devices with Internet access. Please click here to take the CAMS practice test to become familiar with the final test format and content.
Access Management Role
In the fulfillment of their duties, CAMS professionals must in general ensure that:
- Users and their approvers are properly identified,
- Access is approved and granted on a timely basis,
- Access is removed timely and completely when users change jobs or roles,
- Access Control Matrix is maintained and periodically audited to ensure access permissions are valid and accurate,
- User activities are recorded, and
- Incidents or events are properly managed.
Critical Risk Domains™
The 10 Critical Risk Domains which professionals must understand and master in order to earn the CAMS designation include the following:
- Security Objectives
- Access Controls
- Rights Management
- Access Control Matrix
- Logging and Monitoring
- Event Management
Who Should Become a CAMS
Professionals who are engaged in any of the following activities either directly or in a support role will greatly benefit by becoming a Certified Access Management Specialist as they will improve their skills and increase their credibility:
- Receiving and verifying access requests,
- Reviewing access right approvals,
- Granting, correcting and removing access rights,
- Monitoring access activities,
- Auditing access control matrix and related system reports,
- Following up on suspicious activities, and
- Investigating and resolving access incidents.
The CAMS application fee is $195 for current IMI members. To become a member, please visit the membership page for more information.
IMI uses PayPal and other third party credit card processors to request and receive international credit card payments after applications are received. Alternatively, candidates may mail a cashier’s or company check.