Identity and Access Management Blog and Articles

This identity and access management blog lists links to identity and access management articles and cybersecurity news analysis provided by Identity Management Institute which highlight the emerging issues facing the identity management industry and solutions available to IAM professionals. Please subscribe to the Identity Management Journal to receive periodic announcements and updates made to this identity management blog.

Identity and Access Management blog articles by Identity Management Institute

Building a Robust Identity and Access Management Team

There is a need for identity and access management teams and experts. Identity Management Institute helps identity management professionals get certified and companies get the talent they need to build robust IAM teams.

Is Identity and Access Management Part of IT or Cybersecurity?

As organizations increasingly establish IAM teams, many IAM experts question whether the Identity and Access Management function is part of IT or Cybersecurity.

Cloud Access Security Broker (CASB) For Cloud Security

Cloud Access Security Broker (CASB) is a cloud security solution that helps organizations control access, reinforce policies, and protect data in the cloud.

Biometric Authentication for Better Security

Many companies transition to biometric authentication for better security as it helps to keep hackers at bay and users happy when they access systems.

Why to Switch to Fast Identity Online (FIDO) Authentication

The Fast Identity Online or FIDO standard is a joint development by the world’s leading technology companies which try to strengthen the security of systems, mobile devices and applications through strong password-less authentication.

Cyber Attack Methods on Internet Availability

Although the prospect of “bringing down the whole Internet” is enticing, hackers shifted tactics toward crashing networks of businesses and governmental entities.

Zero Day Security Vulnerability Management and Exploit Prevention

Zero day attacks take advantage of security flaws in a program that developers either don’t know about or have not yet addressed. Learn about zero day attack prevention and incident response.

Internet Infrastructure and Disruption Causes

An imminent cyberattack on the Internet and online communications is one of the causes for internet shutdown which can lead to disruption to communications, and system damage.

Facing the Unique Challenges of Customer IAM

Companies dealing with consumers face challenges in the area of identity management which requires a balanced approach on data security and user experience.

Managing Insider Threats with a Zero Trust Access Model

Insiders pose a greater security risk to an organization’s systems and data. Insider threats can be managed with a zero trust model and multi-layer security.

Privileged Account Management (PAM)

As the number of systems, users, and data grows, the need for a robust identity and access management solutions and experts becomes even more important to manage accounts and their access. Specifically, privileged accounts which offer the highest level of access to a system are prime hacking targets.

5 Identity and Access Management Best Practices

Identity and access management (IAM) is a critical component of a successful protocol and requires the implementation of best practices to maintain the integrity of user and device identities.

Global Internet Interruption will Cause Worst Economic Crisis

An extended global Internet interruption will cause even a bigger economic crisis than Corona virus leading to financial sector meltdown, business bankruptcies, mass layoffs and unemployment, and many other unforeseen consequences never witnessed before.

Technology Project Management Best Practices, Challenges, Styles, and Skills

Project managers in the technology industry must use and adopt best practices in project management and have the skills to overcome project challenges.

The California Consumer Protection Act (CCPA): 2020 Business Guide

California Consumer Privacy Act (CCPA) regulation applies to companies and organizations doing business in California that meet certain data management criteria.

Cloud Security and Access Management Concepts

As more data and applications move to the cloud from traditional systems, it becomes paramount for businesses and their management to secure their data from threats and attacks as they store, process, and access their data in the cloud.

KAGE Data Protection Framework

KAGE is a data protection framework developed by Identity Management Institute to offer a simplified information security framework for the CDP® certification.

CARTA, Zero Trust and the Future of Adaptive Risk Management

Extensive networks with diverse user bases require identity management and access control measures capable of executing adaptive responses to dynamic user interactions. The CARTA framework introduced by Gartner offers one such solution.

Dealing with Ransomware Pirates

Recent study suggests that ransomware attacks are on the rise and ransomware victims must carefully decide how to proceed when dealing with ransomware pirates.

Ransomware Attack Prevention and Response Solutions

The security tips discussed in this article offer ransomware attack prevention and response solutions to help organizations keep their information assets safe.

Understanding and Using Hyperledger for Blockchain Identity Management

The Hyperledger project offers businesses many powerful identity and access management tools and features with granular user access and data privacy controls.

Identity of Things Challenges in IoT Identity Management

For Internet of Things, we must be prepared to address IoT identity management needs for self-service, identification, ownership, access rights, and tasks.

From IAM to Customer IAM: 7 Basic Tenets of CIAM

These seven core Customer Identity and Access Management – CIAM principles serve as guides for businesses seeking the best customer system security solutions.

Identity and Access Management Purpose and Objectives

The identity and access management purpose is to support the overall cybersecurity objectives of an organization. As such, identity and access management objectives are to ensure confidentiality, integrity, and availability of systems and data.

Using IAM to Support Regulatory Compliance in Cybersecurity

Using identity and access management for cybersecurity regulatory compliance requires a solid framework for managing user identity and controlling data access. Learn about 5 regulations which can be supported by identity and access management for compliance.

Polymorphic Malware: Best Practices for Responding to a Growing Threat

Known as polymorphic malware, these malicious programs must be detected and eradicated to prevent widespread data compromise. Learn about polymorphic malware security and protection best practices.

What Impact is COVID-19 Having on Cybersecurity?

With increased remote workforce due to Coronavirus, businesses face continued challenges associated with COVID-19 which is having an impact on cybersecurity.

Shortcomings in Cybersecurity Risk Management

Every company concerned with protecting its systems and information must also be concerned with shortcomings in its cybersecurity risk management efforts. Learn about these shortcomings.

Integrating Cyber and Physical Security For Better Access Management

Integrating cyber and physical security is necessary for better access management and requires actionable plans for policy enforcement to address access risks.

Access Control Types and Models

Access control types and models are designed to allow, deny, limit, and revoke access to resources through identification, authentication, and authorization. Learn more about these concepts.

Executive Assistant Superpowers

Executive assistant superpowers should not be underestimated when considering the level of access that some executives have and share with their assistants.

Cybersecurity Considerations for Remote Workers

Adopting a remote work policy requires careful considerations of cybersecurity implications for remote workers to avoid placing your business at a disadvantage.

Why Some Executives Abuse Power and Override Security Policies

Corporate executives have in general more power than others in an organization and some of them abuse their power and override security controls with or without malicious intention.

Identity and Access Management Challenges

There are many identity and access management challenges facing organizations and their staff which are introduced by changes in our way of life, technology and threat landscape.

Information Security Outsourcing Risks and Solutions

Information security outsourcing presents certain risks that companies must manage. As more companies decide to outsource certain aspects of their identity management and security services, they must take responsibility for managing their security service providers.

Should You Consider IAM Certification?

Pursuing identity and access management or IAM certification has the potential to improve your career as an IT specialist or cybersecurity professional.

Identity Management and Cybersecurity News Update

From Coronavirus cyber threats to ransomware blackmail, blockchain identity management and zero trust, this article lists the latest IAM and cybersecurity news.

Identity Theft Red Flags Rule Examination Procedures Checklist

These identity theft audit procedures will be followed by government examiners to ensure compliance with the Red Flags Rule and can be used by companies as a checklist to assess their compliance level and preparedness for an eventual audit.

26 Red Flags for Preventing Identity Theft

The US government has identified 5 categories of identity theft red flags and a total of 26 specific red flags as part of the Red Flags Rule regulation that businesses must use to develop an identity theft prevention program.

Are Biometric Data Breaches a Real Security Threat?

With growing adoption of biometric technology, there is a growing concern that biometric data can be stolen and used to gain access to data with far more permanence than a password.

Business Outsourcing Myths and Risks

There are certain business outsourcing risks and myths around the benefits when companies decide to let another company take care of their business operations.

Key Characteristics of Identity and Access Management Solutions [Business Guide]

Identity management is an essential component of modern enterprise security. Check out these key characteristics of identity and access management solutions.

Blockchain Identity Management for Security and Privacy

There are clear signs that future business solutions for security and privacy will include blockchain identity management but new challenges must be addressed.

Information Security Program Implementation Guide

This article summarizes the government information security program implementation guide under NIST 800-100 and the minimum security requirements per NIST 800-53.

Artificial Intelligence Has its Perks, But it’s Not a Panacea

Sophisticated artificial intelligence solutions can be used to improve security but companies must mitigate artificial intelligence threats and security issues.

Enterprise Cybersecurity Best Practices: Creating an Information Security Policy

Security should be a priority for companies and cybersecurity policy best practices must be considered in security management including clear instructions.

Mergers, Breach Protection and Government Cybersecurity

In response to changing cybersecurity trends, businesses and government cybersecurity still struggle to protect their systems from hackers or insider threats.

Strategic Access Management Protects Smart Buildings From Siegeware

Updated and adequate access management policies and practices can help protect smart buildings from siegeware attacks and prevent ransomware and financial loss.

Third Part Security Risk Management Best Practices

The complex inter-connectivity between enterprises and their vendors requires diligence and application of third party security risk management best practices.

Is Adaptive Authentication the Solution for Modern Identity Management?

Adaptive Authentication is a risk-based authentication method used to grant entities access based on various risk factors such as user role and behavior.

2019 Cybersecurity Roundup and 2020 Predictions

Kick off the new year by taking stock of the 2019 cybersecurity events and preparing for new challenges by considering identity management predictions for 2020.

Onboarding Best Practices to Mitigate Insider Threats

The lack of user awareness places companies at significant risk for breaches resulting from ignorance and errors. Proper onboarding techniques are necessary to educate employees and reduce the likelihood of insider threats from day one.

Digital Identity Transformation

Identity Management Institute has introduced a framework for “Digital Identity Transformation” which is the holistic assessment and improvement of business processes, people, and technologies to achieve the identity management excellence, system security, data privacy, and regulatory compliance objectives of an organization.

Is Your Enterprise Making These Critical Identity Management Mistakes?

92% of IT and security professionals face “at least one challenge” which can lead to making critical identity management mistakes and data breach incidents.

Insider Threats to System and Data Security

The best approach to manage insider threats to system and data security is for companies to incorporate as many concepts and best practices described in this article into their overall cybersecurity strategy.

Smart Homes, Smart Buildings, Smart Cities

With the number of connected devices projected to increase, smart homes, smart buildings and smart cities add to IAM challenges in the modern IoT landscape.

Exploring Authentication Options for Better Security

The increasing complexity of the cybersecurity landscape has rendered traditional passwords all but useless, and a nuanced approach to access management is necessary to protect against emerging threats.

Dangers of Security Policy Override and Violations

Executives and management team members like all other employees should not be exempt from following any of the company’s security policies and procedures in order to ensure continued protection of company assets including confidential information.

Security Challenges and the Future of the IAM Market

The digital landscape is always changing, and projections suggest identity and access management (IAM), cloud services and updated security models will be key considerations for 2020.

Improving Identity Theft Prevention with Machine Learning

Making Machine Learning a primary tool in identity theft prevention helps safeguard businesses against inevitable attacks and preserve the identities of all users with network access.

IAM Certification Types and Benefits

Identity Management Institute offers various types of IAM certifications to its members and customers in order to confirm certain assertions and qualifications.

6 Tips for Selecting an IDaaS Solution

These six questions can guide enterprises to evaluate security, functionality and adaptability for selecting an IDaaS vendor for diverse access requirements.

Reasons Why You Need to Upgrade Your IAM Systems

In light of changing access needs and the complexity of modern threats, IT teams must examine existing systems for signs of obsolescence and take steps to implement solutions with features designed to support modern access needs.

Why Identity and Access Management is Important

This article lists a few reasons to demonstrate why identity and access management is important to the cybersecurity, data protection, and privacy industries.

Artificial Intelligence For Data Breach Prevention

Leveraging artificial intelligence for data breach prevention requires a detailed security plan, tools and the help of a qualified IT team to execute the plan.

Overview of Identity Theft Companies

As consumers look for identity theft help, they must assess and select the best service provider. This article provides an overview of some identity theft companies and how companies can differentiate themselves from the crowd with a product certification.

How Artificial Intelligence and Machine Learning are Transforming IAM

Companies are turning to artificial intelligence and machine learning for IAM transformation and improved identity and access management practices and security.

LDAP Authentication Management Best Practices

The Lightweight Directory Access Protocol (LDAP) provides database access control but can present security problems if proper administration is not followed.

Identity Theft Company Certification

Identity theft companies are encouraged to undergo a voluntary product certification process in order to showcase their services and the “Certified Product” badge. The certification report will answers many of consumers’ questions upfront and help gain their trust.

Improving Security to Future-Proof Enterprise Cloud Environments

Monitoring the trends in cloud security can guide enterprises to best practices for protecting users, identities and data in the cloud. Preparing in advance for changes in cloud use and technology equips businesses to handle attacks and avoid catastrophic breaches.

IAM Best Practices in Changing Environments

When planning for the future, identity management professionals must consider continuing changes in data privacy and security regulations and take into account the evolving nature of enterprise systems.

Complex Cyberattacks Require Improved Security

In light of frequent and complex cyberattacks, predictions for the coming years suggest an aggressive and proactive approach to security is necessary to manage network access.

Security and Privacy Risks of Biometric Authentication

Businesses considering biometric authentication as part of their strategy must consider the potential security and privacy risks of biometric authentication. What can businesses do to protect biometric data going into 2020?

Brazilian General Data Protection Law

Organizations need to understand the impact of the Brazilian General Data Protection Law or LGPD which is Lei Geral de Proteção de Dados in Portuguese in the context of current data protection regulations for compliance.

6 Reasons Why Data Privacy is Dead

Privacy has diminished due to the emergence of new technologies, users’ irresponsible attitudes, frequent data breaches, companies’ willingness to profit from data sharing, and government spying.

7 Password Attack Methods Hackers Use

In many cases, passwords can be guessed using common phrases such as “password”, other times, hackers may rely on one of the attack methods in this article.

2019 Could Be the “Worst Year” For Data Breaches – Can New IAM Trends Help?

With 2019 set to be one of the worst years in history for security incidents, IT and cybersecurity experts need to consider how new trends in identity and access management (IAM) may provide added protection for sensitive data against an ever-increasing range of security threats.

Ways to Learn Cyber Security

The shortage of qualified cybersecurity professionals must come as a good news to new entrants and those in related technology fields to learn cyber security.

Lack of Knowledge and Training Threatens Healthcare Security

Although healthcare organizations handle a great deal of highly sensitive personal information, new reports show a troubling lack of awareness and training in the areas of security regulation and policies in U.S. and Canadian institutions.

Cyber Security Certifications

Cyber security professionals need to consider cyber security certifications to improve their skills, advance their career, and gain a competitive advantage. This article provides further details about various cyber security job titles and roles.

Edge Computing: More Secure, or a Security Nightmare?

Edge computing brings computer tasks closer to data sources, either enabling execution within devices themselves or outsourcing to local servers and data centers instead of central locations.

Overview and Benefits of IT Security Courses

IT security courses are essential for students and employees whether they help manage a security program or must apply security when using and handling systems.

Using Mobile Device Management for Secure Network Access

MDM acts as an important component of mobility management and is quickly becoming a necessary companion to identity and access management (IAM) for businesses where BYOD is a necessity or remote employees make up a significant portion of the workforce.

Can Better Access Management Solve Healthcare Cybersecurity Challenges?

Protected Health Information (PHI) consisting of personal details, medical histories and other health related data is highly attractive to hackers, but many healthcare organizations lack the robust security protocols required to guard against cyberattacks and need help implementing better access controls.

Emerging Security Threats and Technological Innovations

This article highlights the latest events and trends to demonstrate how emerging threats and technological innovations are changing the security landscape.

API Security and IAM Risks

Application Programming Interface (API) gives access to valuable information and this article provides an overview of the API security and IAM risks as well as ways to mitigate the risks.

Identity and Access Management for Cloud Security

Identity and Access Management (IAM) is considered one of the most effective ways to provide cloud security. This article analyzes why the Identity and Access Management domain is the most significant control for data security in cloud environments.

Facing the Unique Security Challenges of a Remote Workforce

Companies offering remote work opportunities in response to the growing demand face security challenges unique to managing a mobile workforce and must respond accordingly to prevent unauthorized network access.

Vendor-Neutral and Vendor-Specific Certification Benefits and Differences

When it comes to professional IAM certifications, many members of Identity Management Institute (IMI) ask themselves which IAM certification they must pursue for career growth and learning. Another important question that they pose themselves is what are the differences and benefits of vendor-neutral versus vendor-specific certification?

Is Facebook’s Libra Currency the Next Threat to Privacy?

Facebook’s announcement of its upcoming cryptocurrency launch is making some lawmakers and security experts uneasy. Dubbed “Libra” and slated to debut in 2020, the currency has the potential to threaten privacy on a global scale unless regulatory action is taken to minimize the risks to consumers’ data and identities.

Top Security Concerns of Blockchain-as-a-Service (BaaS)

As with all “as-a-service” offerings, the responsibility for security in Blockchain-as-a-Service (BaaS) falls to the provider. Businesses considering BaaS must evaluate the potential known vulnerabilities of BaaS providers and how blockchain vulnerabilities could affect their security.

Challenges in IAM Practices and Cybersecurity Standards

Cybersecurity remains a top concern for anyone handling sensitive information, but recent incidents and study results indicate an alarming lack of understanding regarding the importance of access control and unified security management.

Exploring the Implications of the Blockchain for Healthcare Data Security

Emerging blockchain technology may offer a solution to healthcare’s biggest security challenges. Features such as decentralized storage, cryptography and smart contracts provide a framework for organizations to improve data protection while maintaining accuracy and preventing unauthorized access to or alteration of patient information.

Security Risks of Increasing Enterprise Voice-Enabled IoT Adoption

Voice-enabled internet of things (IoT) technology presents certain security risks with the increasing use of in-home smart speakers and other enterprise devices.

Identity and Access Management Jobs and Career Path

Technical IAM experts need to understand the risks in order to design better products and non-technical IAM specialists need to understand best practices in order manage systems and projects, or improve processes to counter the emerging threats.

Biometric Authentication: Safe Solution or Major Security Risk?

Often used alone or as part of multi-factor authentication protocols, biometric data is seen as a more secure alternative to traditional passwords. However, concerns about potential vulnerabilities are beginning to arise as the use of biometrics becomes more prevalent.

What Can We Learn From Massive Data Breaches?

Despite increased efforts to improve security and prevent hacking, major sites continue to become the targets of global hackers. What do these breaches teach us about modern cybersecurity, and what can be done to minimize future risks?

How KYC Affects Customer Identity Management

Among regulations is the “know your customer” (KYC) process, which may directly affect how institutions handle identity management.

Is AI the Future of Cybersecurity for Businesses?

AI represents the next frontier in security and access management and Artificial Intelligence will transform cybersecurity as the industry confronts threats.

CIPA Certification: What It Is, and Why You Should Pursue It

The Certified Identity Protection Advisor (CIPA) designation is for professionals who educate, guide, and support consumers with their identity theft solutions.

Trends, Breaches, and the Changing Face of IAM

Evolving cybersecurity concerns impact every organization handling sensitive personal data. The latest trends in identity and access management (IAM) point toward a cloud-based future where the concept of a “user” becomes more and more flexible.

Identity and Access Management Standards

Common identity and access management standards handle user requests for access to data or applications and deliver responses based on the information a user provides. Get the the list of common IAM protocols.

Employee Errors Cause Most Data Breaches

Employees often fall victim to phishing and social engineering attacks which result in compromised system access. Employee errors cause most data breaches.

Decentralization and the Blockchain: A Smarter Approach to Identity Theft Protection?

Blockchain technology could improve identity management through identity decentralization with a single, user-controlled set of integrated identifiers to help prevent identity theft.

Biometric Trends and the Next Generation of IAM

Biometrics are growing in popularity as an alternative to less secure forms of authentication and are gaining wider acceptance among consumers and employees.

The Evolution of Identity and Access Management

Understanding what the future holds makes it possible to implement proactive defenses against potential breaches, stay ahead of new hacking tactics and preserve the integrity of complex modern systems.

Digital Twin Technology Benefits and Challenges

IT professionals must be aware of the potential digital twin technology benefits and challenges and its security risks so that companies can benefit from the technology without placing systems, products or end users at risk.

Should You Be Worried About Hivenets?

The very same artificial intelligence (AI) tools companies use to improve their business can enable hackers to increase the reach and magnitude of breaches. Hivenets are one of the most potentially devastating developments to arise from the malicious implementation of AI.

Why We Should Be Concerned About Crime-as-a-Service

This business of selling the tools of the cybercrime trade, dubbed crime-as-a-service (CaaS), should be on the radar of every IT and cybersecurity professional.

Why Employees Need Cybersecurity Training

The increasing number of cyber attacks and lack of solutions such as zero-day vulnerabilities are some of the reasons why employees need cybersecurity training to improve counter measures, reduce the risk, and minimize the damage.

Using Artificial Intelligence in Cybersecurity

By incorporating and using Artificial Intelligence in cybersecurity products, the industry is aiming for faster and more accurate decisions making regarding threats and data breach incidents.

Access Management, Breach Detection and Privacy Regulations

Trends in access management, breach detection and privacy regulations affect IT and cybersecurity professionals across industries. Here’s what you need to know to help your business or organization stay on top of emerging threats and meet changing compliance requirements.

State Sponsored Cyber Warfare

State sponsored hacking and state sponsored cyber attacks affect targeted countries and their people in many ways including loss of privacy, data theft, weakened national security, and infrastructure shutdown.

The Rise of Mobile Biometrics

The current move toward passwordless authentication requires innovative access solutions, and mobile biometrics is emerging as one potential option to address the vulnerabilities associated with traditional login methods.

Identity and Access Management ROI

Although initial IAM implementation requires investing time in assessments and audits, purchasing new tools and infrastructure, and reworking security policies and procedures, the identity and access management ROI and operational benefits of an IAM solution are worth the effort.

Identity Management Consultant Tasks and Duties

This article describes the identity and access management job duties and tasks. Identity management professionals must consider these IAM skills in the resumes.

Future Trends in Digital Identity Management

Adopting a “zero trust” model is one of the future trends in digital identity management in which insiders and outsiders are treated as equal levels of risk.

Federated Identity Management Challenges

Adoption of federated identities is increasing among businesses and can have particular benefits at the enterprise level. By creating one central identity to access all network applications, companies simplify workflows and remove barriers to productivity. However, a unique set of security challenges must be met when using federated identity technologies.

Identifying, Managing and Preventing Access Creep

Privilege or access creep is a system security risk which occurs when employees accumulate more access rights than are required to perform their job tasks.

Your IAM Strategy is Terrible, and Hackers Love It

Continued reliance on outdated IAM methods is one of the biggest problems with system security. This article explores the latest threats and IAM solutions.

The Deep Trouble with Deepfakes

Improvements in artificial technology (AI) and machine learning (ML) could soon make flawless deepfake videos that can potentially undermine security everywhere.

Managing Vendor Onboarding Challenges

To keep your company data safe, it’s essential to follow a consistent process for managing vendor onboarding challenges and their access during the partnership.

Identity and Access Management in Cloud Platforms

As more businesses invest in cloud platforms, it will be increasingly necessary for executives and their IT departments to develop appropriate identity and access management (IAM) policies designed to address the emerging concerns.

Sarbanes Oxley Access Management Requirements

Sarbanes Oxley (SOX) may necessitate changes in identity and access management (IAM) policies to ensure your company is meeting the requirements related to financial records integrity and reporting.

Malware Remains Most Popular Attack Method

Malware is still the most popular form of cyberattack and can be used to steal credentials for use in more sophisticated or extensive breaches.

Mitigating the Growing Risk of Identity Theft

Business owners must recognize the growing identity theft threat to their companies, employees and customers and take steps to mitigate the risks and ensure personal data stays out of the hands of malicious third parties.

Artificial Intelligence in Information Security

Information security teams should leverage Artificial Intelligence (AI) and Machine Learning (ML) assets because they are better at detecting unusual behavior anywhere on a system and can trigger immediate responses to arrest a threat before it turns into a full-blown breach.

It’s Time to Put the Nail in the Coffin of Knowledge-Based Authentication

The public records used as the basis for dynamic KBA are like an open book to anyone who knows the types of information necessary to answer common security questions. With increasing breaches, it may be time to consider adopting a better method.

Understanding the Future of Identity Governance: The Advent of the Cloud

A new generation of identity and access management (IAM) practices is emerging to handle growing security concerns. Although many businesses already use a form of identity governance and administration (IGA) to handle the details of IAM, it’s time to consider following the cloud trend and adopting cloud-based IGA for better administration of identities and permissions.

Adopting Multi Factor Authentication

If you’re currently using passwords or any other single-factor authentication method, switching to multi-factor authentication (MFA) may be the logical next step to boost data security.

Managing Temporary Worker Access

Hiring temporary employees and contract workers can be helpful when you need to outsource a business task no one on your permanent staff has the time or abilities to address, but this approach has risks when it comes to data security.

Call Center Employee Fraud Training

Incidents of call center fraud are on the rise according to various call center fraud reports. This is partly due to the migration of scammers from online channels, where breaches are becoming more difficult to commit, to the largely unprotected and vulnerable environment of call centers.

The Evolution of Authentication

The increasing complexity of systems is leading to a need for more secure authentication methods. Although passwords are a ubiquitous form of verification, allowing users to access applications and perform actions within a system, there have always been problems with this method which raise the password-less solutions.

Biometric Authentication Challenges

The security industry recognizes that most system hacks occur due to poor password management as many people use weak passwords or the same password to access multiple accounts. That said, the security industry is offering other solutions like biometric authentication to improve security, but will they?

Employee Offboarding: 6 Essentials to Keep Your System Safe

Companies failing to follow proper employee offboarding measures are at risk for data loss, cyberattacks and other malicious activities. Regardless of the reason for an employee’s exit, offboarding is an essential part of the transition process. Protect your system and all sensitive data with these six critical identity management procedures.

The Role of Identity Management in Data Governance

Because data governance is mainly about data and access management, the identity and access management team ensures accountability through the implementation and documentation of certain security protocols. Learn about data governance.

In the Ever-Changing IoT Landscape, Things Now Have Identities

With the number of connected IoT devices set to reach 75 billion by 2025, having a strong identity and access management (IAM) policy is more important than ever to deal with identity of things (IDoT) and internet of identities (IoI).

6 Best Practices for Managing the Identity Lifecycle

With constant changes in technology and the dynamic nature of employees’ access needs in the modern workplace, it’s essential to follow these Identity and Access Management best practices throughout the employee lifecycle.

Identity and Access Management Protocols

Identity and Access Management (IAM) protocols are designed specifically for the transfer of authentication information and consist of a series of messages in a preset sequence designed to protect data as it travels through networks or between servers.

Credit Report Review Guide

Careful monitoring of credit reports can alert consumers to fraudulent activities or inaccuracies in records potentially indicating identity theft. The review and error correction process can also help improve the credit score.

Self Driving Car Security

The self driving car security has clearly become a priority for car manufacturers, car owners, lawmakers and regulators as tech giants from Apple to Google to Tesla throw their considerable weight behind fully autonomous vehicles which are expected to hit the market very soon.

Internet of Things Security

As the number of connected devices in homes, offices, public institutions and industrial frameworks increases, so does the need for better Internet of Things security. Each new IoT device and network introduces more points of vulnerability, and it’s time for cybersecurity experts to update their skills to meet and counter the latest threats.

Access Certification

Access certification is the validation of access rights within systems which is a mandatory process for compliance and security risk management. Access certification can be a very daunting process for some organizations with dispersed systems, workforce, and partners. This article discusses the certification process and solutions.

Distributed Information Security Management Model (DISMM)

Information security is the responsibility of everyone in any organization. Distributed Information Security Management Model or DISMM ensures security accountability across the enterprise.

Identity Theft Certifications Explained

Identity theft certifications issued by Identity Management Institute offer professional credibility, knowledge, employment opportunity, and career advancement. Learn about their scope and differences.

Identity Theft Prevention Program Certification

Identity Management Institute offers an Identity Theft Prevention Program certification service as part of its global and independent solutions.

General Data Protection Regulation (GDPR)

This article serves as a high level overview of the GDPR and its key requirements that companies will need to comply with and ensure their proper implementation to meet their compliance obligations.

Self Service Identity and Access Management

Self service identity and access management is increasingly embraced by users and companies and it is a matter of time before it’s widely adopted due to the many benefits it offers.

Identity and Access Management Vendor List

The Identity and Access Management vendor list includes strong contenders in the IAM technology and software space.

Identity and Access Management Solutions Providers

Identity and Access Management solutions providers offer various IAM solutions to help businesses manage user identities and their access to systems securely. This page lists all major identity and access management companies in the technology space.

Identity and Access Management Certifications

The fastest growing professional certifications in cyber security are the Identity and Access Management certifications which have received industry attention. Learn more about IAM certifications.

The Principle of Least Privilege

When someone’s access is beyond that person’s required access to perform their job duties, then that access is considered to be beyond the principle of least privilege.

AAA Identity and Access Management Model

The AAA identity and access management model is a framework which is embedded into the digital identity and access management world to manage access to assets and maintain system security.

The Future of Identity and Access Management

The future of identity and access management will include technological innovation to address the security and interoperability of increasing connected devices.

Identity and Access Management Market Analysis

This identity and access management market analysis highlights the fast growth of the IAM market and drivers which fuel demand for identity and access management solutions.

Identity Management Blog and Newsletter

The free articles on this identity management blog are original  identity and access management articles which are accessed by thousands of monthly global readers through Identity Management Journal.

Employee Password Risks and Password Alternatives

According to a few research studies, stolen employee access password is by far the leading cause of system hacking cases and data breach incidents.

The Future of Cybersecurity

The future of cybersecurity is as clear as it is obscure. This article discusses factors affecting cybersecurity such as threats, expanding risks, and shortages in cybersecurity talents.

Global Cybersecurity Expert Shortages

It is estimated that the global cybersecurity expert shortages will be around 1.5 million by 2020. Learn about how to become a cybersecurity expert and fill the gap in a growing job market.

New Cybersecurity Challenges

Due to the global Internet connectivity of many devices and networks, the computer security risk landscape has expanded and includes many new cybersecurity challenges.