Access management also known as rights management is the execution of policies and procedures for granting authorized individuals the right to access services, functions, data, and physical locations while preventing non-authorized individuals from accessing systems, assets, and other services.
Access management is one of the information security disciplines which interacts with users and their management the most and is critical to the implementation of policies and procedures to support the enterprise security goals, maintain access controls, and mitigate access risks.
Identity Management Institute® (IMI) developed the Certified Access Management Specialist® (CAMS) training program for testing, analysis, and evaluation of the knowledge, skills and abilities of professionals for the purpose of certification and re-certification in the field of access management. CAMS® is a registered trademark of IMI.
Access Management Role
In the fulfillment of their duties, CAMS professionals must in general ensure that:
- Users and their approvers are properly identified,
- Access is approved and granted on a timely basis,
- Access is removed timely and completely when users change jobs or roles,
- Access Control Matrix is maintained and periodically audited to ensure access permissions are valid and accurate,
- User activities are recorded, and
- Incidents or events are properly managed.
Critical Risk Domains™
The 10 Critical Risk Domains which professionals must understand and master in order to earn the CAMS designation include the following:
- Security Objectives
- Access Controls
- Rights Management
- Access Control Matrix
- Logging and Monitoring
- Event Management
Who Should Become a CAMS
Professionals who are engaged in any of the following activities either directly or in a support role will greatly benefit by becoming a Certified Access Management Specialist as they will improve their skills and increase their credibility:
- Receiving and verifying access requests,
- Reviewing access right approvals,
- Granting, correcting and removing access rights,
- Monitoring access activities,
- Auditing access control matrix and related system reports,
- Following up on suspicious activities, and
- Investigating and resolving access incidents.
Currently, interested and qualified members may become CAMS® without an examination if they meet the requirements set forth in the CAMS application.
The CAMS application fee is $195 for current IMI members. To become a member, please visit the membership page for more information.
IMI uses PayPal and other third party credit card processors to request and receive international credit card payments after applications are received. Alternatively, candidates may mail a cashier’s or company check.