Featured Identity and Access Management Articles

Below are links to identity and access management (IAM) articles and news analysis provided by Identity Management Institute which highlight the emerging issues facing the IAM industry and solutions available to IAM professionals. Please subscribe to the Identity Management Journal to receive periodic updates and announcements.

Identity Theft Company Certification

Identity theft companies are encouraged to undergo a voluntary product certification process in order to showcase their services and the “Certified Product” badge. The certification report will answers many of consumers’ questions upfront and help gain their trust.

Improving Security to Future-Proof Enterprise Cloud Environments

Monitoring the trends in cloud security can guide enterprises to best practices for protecting users, identities and data in the cloud. Preparing in advance for changes in cloud use and technology equips businesses to handle attacks and avoid catastrophic breaches.

IAM Best Practices in Changing Environments

When planning for the future, identity management professionals must consider continuing changes in data privacy and security regulations and take into account the evolving nature of enterprise systems.

Complex Cyberattacks Require Improved Security

In light of frequent and complex cyberattacks, predictions for the coming years suggest an aggressive and proactive approach to security is necessary to manage network access.

Security and Privacy Risks of Biometric Authentication

Businesses considering biometric authentication as part of their strategy must consider the potential security and privacy risks of biometric authentication. What can businesses do to protect biometric data going into 2020?

Brazilian General Data Protection Law

Organizations need to understand the impact of the Brazilian General Data Protection Law or LGPD which is Lei Geral de Proteção de Dados in Portuguese in the context of current data protection regulations for compliance.

6 Reasons Why Data Privacy is Dead

Privacy has diminished due to the emergence of new technologies, users’ irresponsible attitudes, frequent data breaches, companies’ willingness to profit from data sharing, and government spying.

7 Password Attack Methods Hackers Use

In many cases, passwords can be guessed using common phrases such as “password”, other times, hackers may rely on one of the attack methods in this article.

2019 Could Be the “Worst Year” For Data Breaches – Can New IAM Trends Help?

With 2019 set to be one of the worst years in history for security incidents, IT and cybersecurity experts need to consider how new trends in identity and access management (IAM) may provide added protection for sensitive data against an ever-increasing range of security threats.

Ways to Learn Cyber Security

The shortage of qualified cybersecurity professionals must come as a good news to new entrants and those in related technology fields to learn cyber security.

Lack of Knowledge and Training Threatens Healthcare Security

Although healthcare organizations handle a great deal of highly sensitive personal information, new reports show a troubling lack of awareness and training in the areas of security regulation and policies in U.S. and Canadian institutions.

Cyber Security Certifications

Cyber security professionals need to consider cyber security certifications to improve their skills, advance their career, and gain a competitive advantage. This article provides further details about various cyber security job titles and roles.

Edge Computing: More Secure, or a Security Nightmare?

Edge computing brings computer tasks closer to data sources, either enabling execution within devices themselves or outsourcing to local servers and data centers instead of central locations.

Overview and Benefits of IT Security Courses

IT security courses are essential for students and employees whether they help manage a security program or must apply security when using and handling systems.

Using Mobile Device Management for Secure Network Access

MDM acts as an important component of mobility management and is quickly becoming a necessary companion to identity and access management (IAM) for businesses where BYOD is a necessity or remote employees make up a significant portion of the workforce.

Can Better Access Management Solve Healthcare Cybersecurity Challenges?

Protected Health Information (PHI) consisting of personal details, medical histories and other health related data is highly attractive to hackers, but many healthcare organizations lack the robust security protocols required to guard against cyberattacks and need help implementing better access controls.

Emerging Security Threats and Technological Innovations

This article highlights the latest events and trends to demonstrate how emerging threats and technological innovations are changing the security landscape.

API Security and IAM Risks

Application Programming Interface (API) gives access to valuable information and this article provides an overview of the API security and IAM risks as well as ways to mitigate the risks.

Identity and Access Management for Cloud Security

Identity and Access Management (IAM) is considered one of the most effective ways to provide cloud security. This article analyzes why the Identity and Access Management domain is the most significant control for data security in cloud environments.

Facing the Unique Security Challenges of a Remote Workforce

Companies offering remote work opportunities in response to the growing demand face security challenges unique to managing a mobile workforce and must respond accordingly to prevent unauthorized network access.

Vendor-Neutral and Vendor-Specific Certification Benefits and Differences

When it comes to professional IAM certifications, many members of Identity Management Institute (IMI) ask themselves which IAM certification they must pursue for career growth and learning. Another important question that they pose themselves is what are the differences and benefits of vendor-neutral versus vendor-specific certification?

Is Facebook’s Libra Currency the Next Threat to Privacy?

Facebook’s announcement of its upcoming cryptocurrency launch is making some lawmakers and security experts uneasy. Dubbed “Libra” and slated to debut in 2020, the currency has the potential to threaten privacy on a global scale unless regulatory action is taken to minimize the risks to consumers’ data and identities.

Top Security Concerns of Blockchain-as-a-Service (BaaS)

As with all “as-a-service” offerings, the responsibility for security in Blockchain-as-a-Service (BaaS) falls to the provider. Businesses considering BaaS must evaluate the potential known vulnerabilities of BaaS providers and how blockchain vulnerabilities could affect their security.

Challenges in IAM Practices and Cybersecurity Standards

Cybersecurity remains a top concern for anyone handling sensitive information, but recent incidents and study results indicate an alarming lack of understanding regarding the importance of access control and unified security management.

Exploring the Implications of the Blockchain for Healthcare Data Security

Emerging blockchain technology may offer a solution to healthcare’s biggest security challenges. Features such as decentralized storage, cryptography and smart contracts provide a framework for organizations to improve data protection while maintaining accuracy and preventing unauthorized access to or alteration of patient information.

Security Risks of Increasing Enterprise Voice-Enabled IoT Adoption

Voice-enabled internet of things (IoT) technology presents certain security risks with the increasing use of in-home smart speakers and other enterprise devices.

Identity and Access Management Jobs and Career Path

Technical IAM experts need to understand the risks in order to design better products and non-technical IAM specialists need to understand best practices in order manage systems and projects, or improve processes to counter the emerging threats.

Biometric Authentication: Safe Solution or Major Security Risk?

Often used alone or as part of multi-factor authentication protocols, biometric data is seen as a more secure alternative to traditional passwords. However, concerns about potential vulnerabilities are beginning to arise as the use of biometrics becomes more prevalent.

What Can We Learn From Massive Data Breaches?

Despite increased efforts to improve security and prevent hacking, major sites continue to become the targets of global hackers. What do these breaches teach us about modern cybersecurity, and what can be done to minimize future risks?

How KYC Affects Customer Identity Management

Among regulations is the “know your customer” (KYC) process, which may directly affect how institutions handle identity management.

Is AI the Future of Cybersecurity for Businesses?

AI represents the next frontier in security and access management and Artificial Intelligence will transform cybersecurity as the industry confronts threats.

CIPA Certification: What It Is, and Why You Should Pursue It

The Certified Identity Protection Advisor (CIPA) designation is for professionals who educate, guide, and support consumers with their identity theft solutions.

Trends, Breaches, and the Changing Face of IAM

Evolving cybersecurity concerns impact every organization handling sensitive personal data. The latest trends in identity and access management (IAM) point toward a cloud-based future where the concept of a “user” becomes more and more flexible.

Identity and Access Management Standards

Common identity and access management standards handle user requests for access to data or applications and deliver responses based on the information a user provides. Get the the list of common IAM protocols.

Employee Errors Cause Most Data Breaches

Employees often fall victim to phishing and social engineering attacks which result in compromised system access. Employee errors cause most data breaches.

Facing the Unique Challenges of Customer IAM

Companies dealing with consumers face challenges in the area of identity management which requires a balanced approach on data security and user experience.

Decentralization and the Blockchain: A Smarter Approach to Identity Theft Protection?

Blockchain technology could improve identity management through identity decentralization with a single, user-controlled set of integrated identifiers to help prevent identity theft.

Biometric Trends and the Next Generation of IAM

Biometrics are growing in popularity as an alternative to less secure forms of authentication and are gaining wider acceptance among consumers and employees.

The Evolution of Identity and Access Management

Understanding what the future holds makes it possible to implement proactive defenses against potential breaches, stay ahead of new hacking tactics and preserve the integrity of complex modern systems.

Digital Twin Technology Benefits and Challenges

IT professionals must be aware of the potential digital twin technology benefits and challenges and its security risks so that companies can benefit from the technology without placing systems, products or end users at risk.

Should You Be Worried About Hivenets?

The very same artificial intelligence (AI) tools companies use to improve their business can enable hackers to increase the reach and magnitude of breaches. Hivenets are one of the most potentially devastating developments to arise from the malicious implementation of AI.

Why We Should Be Concerned About Crime-as-a-Service

This business of selling the tools of the cybercrime trade, dubbed crime-as-a-service (CaaS), should be on the radar of every IT and cybersecurity professional.

Why Employees Need Cybersecurity Training

The increasing number of cyber attacks and lack of solutions such as zero-day vulnerabilities are some of the reasons why employees need cybersecurity training to improve counter measures, reduce the risk, and minimize the damage.

Using Artificial Intelligence in Cybersecurity

By incorporating and using Artificial Intelligence in cybersecurity products, the industry is aiming for faster and more accurate decisions making regarding threats and data breach incidents.

Access Management, Breach Detection and Privacy Regulations

Trends in access management, breach detection and privacy regulations affect IT and cybersecurity professionals across industries. Here’s what you need to know to help your business or organization stay on top of emerging threats and meet changing compliance requirements.

State Sponsored Cyber Warfare

State sponsored hacking and state sponsored cyber attacks affect targeted countries and their people in many ways including loss of privacy, data theft, weakened national security, and infrastructure shutdown.

The Rise of Mobile Biometrics

The current move toward passwordless authentication requires innovative access solutions, and mobile biometrics is emerging as one potential option to address the vulnerabilities associated with traditional login methods.

Identity and Access Management ROI

Although initial IAM implementation requires investing time in assessments and audits, purchasing new tools and infrastructure, and reworking security policies and procedures, the identity and access management ROI and operational benefits of an IAM solution are worth the effort.

5 Identity and Access Management Best Practices

Identity and access management (IAM) is a critical component of a successful protocol and requires the implementation of best practices to maintain the integrity of user and device identities.

Identity Management Consultant Tasks and Duties

This article describes the identity and access management job duties and tasks. Identity management professionals must consider these IAM skills in the resumes.

Future Trends in Digital Identity Management

Adopting a “zero trust” model is one of the future trends in digital identity management in which insiders and outsiders are treated as equal levels of risk.

Federated Identity Management Challenges

Adoption of federated identities is increasing among businesses and can have particular benefits at the enterprise level. By creating one central identity to access all network applications, companies simplify workflows and remove barriers to productivity. However, a unique set of security challenges must be met when using federated identity technologies.

Identifying, Managing and Preventing Access Creep

Privilege or access creep is a system security risk which occurs when employees accumulate more access rights than are required to perform their job tasks.

Your IAM Strategy is Terrible, and Hackers Love It

Continued reliance on outdated IAM methods is one of the biggest problems with system security. This article explores the latest threats and IAM solutions.

The Deep Trouble with Deepfakes

Improvements in artificial technology (AI) and machine learning (ML) could soon make flawless deepfake videos that can potentially undermine security everywhere.

Managing Vendor Onboarding Challenges

To keep your company data safe, it’s essential to follow a consistent process for managing vendor onboarding challenges and their access during the partnership.

Identity and Access Management in Cloud Platforms

As more businesses invest in cloud platforms, it will be increasingly necessary for executives and their IT departments to develop appropriate identity and access management (IAM) policies designed to address the emerging concerns.

Sarbanes Oxley Access Management Requirements

Sarbanes Oxley (SOX) may necessitate changes in identity and access management (IAM) policies to ensure your company is meeting the requirements related to financial records integrity and reporting.

Malware Remains Most Popular Attack Method

Malware is still the most popular form of cyberattack and can be used to steal credentials for use in more sophisticated or extensive breaches.

Mitigating the Growing Risk of Identity Theft

Business owners must recognize the growing identity theft threat to their companies, employees and customers and take steps to mitigate the risks and ensure personal data stays out of the hands of malicious third parties.

Artificial Intelligence in Information Security

Information security teams should leverage Artificial Intelligence (AI) and Machine Learning (ML) assets because they are better at detecting unusual behavior anywhere on a system and can trigger immediate responses to arrest a threat before it turns into a full-blown breach.

It’s Time to Put the Nail in the Coffin of Knowledge-Based Authentication

The public records used as the basis for dynamic KBA are like an open book to anyone who knows the types of information necessary to answer common security questions. With increasing breaches, it may be time to consider adopting a better method.

Understanding the Future of Identity Governance: The Advent of the Cloud

A new generation of identity and access management (IAM) practices is emerging to handle growing security concerns. Although many businesses already use a form of identity governance and administration (IGA) to handle the details of IAM, it’s time to consider following the cloud trend and adopting cloud-based IGA for better administration of identities and permissions.

Adopting Multi Factor Authentication

If you’re currently using passwords or any other single-factor authentication method, switching to multi-factor authentication (MFA) may be the logical next step to boost data security.

Managing Temporary Worker Access

Hiring temporary employees and contract workers can be helpful when you need to outsource a business task no one on your permanent staff has the time or abilities to address, but this approach has risks when it comes to data security.

Call Center Employee Fraud Training

Incidents of call center fraud are on the rise according to various call center fraud reports. This is partly due to the migration of scammers from online channels, where breaches are becoming more difficult to commit, to the largely unprotected and vulnerable environment of call centers.

The Evolution of Authentication

The increasing complexity of systems is leading to a need for more secure authentication methods. Although passwords are a ubiquitous form of verification, allowing users to access applications and perform actions within a system, there have always been problems with this method which raise the password-less solutions.

Biometric Authentication Challenges

The security industry recognizes that most system hacks occur due to poor password management as many people use weak passwords or the same password to access multiple accounts. That said, the security industry is offering other solutions like biometric authentication to improve security, but will they?

Employee Offboarding: 6 Essentials to Keep Your System Safe

Companies failing to follow proper employee offboarding measures are at risk for data loss, cyberattacks and other malicious activities. Regardless of the reason for an employee’s exit, offboarding is an essential part of the transition process. Protect your system and all sensitive data with these six critical identity management procedures.

The Role of Identity Management in Data Governance

Because data governance is mainly about data and access management, the identity and access management team ensures accountability through the implementation and documentation of certain security protocols. Learn about data governance.

In the Ever-Changing IoT Landscape, Things Now Have Identities

With the number of connected IoT devices set to reach 75 billion by 2025, having a strong identity and access management (IAM) policy is more important than ever to deal with identity of things (IDoT) and internet of identities (IoI).

6 Best Practices for Managing the Identity Lifecycle

With constant changes in technology and the dynamic nature of employees’ access needs in the modern workplace, it’s essential to follow these Identity and Access Management best practices throughout the employee lifecycle.

Privileged Account Management (PAM)

As the number of systems, users, and data grows, the need for a robust identity and access management solutions and experts becomes even more important to manage accounts and their access. Specifically, privileged accounts which offer the highest level of access to a system are prime hacking targets.

Identity and Access Management Protocols

Identity and Access Management (IAM) protocols are designed specifically for the transfer of authentication information and consist of a series of messages in a preset sequence designed to protect data as it travels through networks or between servers.

Credit Report Review Guide

Careful monitoring of credit reports can alert consumers to fraudulent activities or inaccuracies in records potentially indicating identity theft. The review and error correction process can also help improve the credit score.

Self Driving Car Security

The self driving car security has clearly become a priority for car manufacturers, car owners, lawmakers and regulators as tech giants from Apple to Google to Tesla throw their considerable weight behind fully autonomous vehicles which are expected to hit the market very soon.

Internet of Things Security

As the number of connected devices in homes, offices, public institutions and industrial frameworks increases, so does the need for better Internet of Things security. Each new IoT device and network introduces more points of vulnerability, and it’s time for cybersecurity experts to update their skills to meet and counter the latest threats.

Access Certification

Access certification is the validation of access rights within systems which is a mandatory process for compliance and security risk management. Access certification can be a very daunting process for some organizations with dispersed systems, workforce, and partners. This article discusses the certification process and solutions.

Distributed Information Security Management Model (DISMM)

Information security is the responsibility of everyone in any organization. Distributed Information Security Management Model or DISMM ensures security accountability across the enterprise.

Identity Theft Certifications Explained

Identity theft certifications issued by Identity Management Institute offer professional credibility, knowledge, employment opportunity, and career advancement. Learn about their scope and differences.

Identity Theft Prevention Program Certification

Identity Management Institute offers an Identity Theft Prevention Program certification service as part of its global and independent solutions.

General Data Protection Regulation (GDPR)

This article serves as a high level overview of the GDPR and its key requirements that companies will need to comply with and ensure their proper implementation to meet their compliance obligations.

Self Service Identity and Access Management

Self service identity and access management is increasingly embraced by users and companies and it is a matter of time before it’s widely adopted due to the many benefits it offers.

Identity and Access Management Vendor List

The Identity and Access Management vendor list includes strong contenders in the IAM technology and software space.

Identity and Access Management Solutions Providers

Identity and Access Management solutions providers offer various IAM solutions to help businesses manage user identities and their access to systems securely. This page lists all major identity and access management companies in the technology space.

Identity and Access Management Certifications

The fastest growing professional certifications in cyber security are the Identity and Access Management certifications which have received industry attention. Learn more about IAM certifications.

The Principle of Least Privilege

When someone’s access is beyond that person’s required access to perform their job duties, then that access is considered to be beyond the principle of least privilege.

AAA Identity and Access Management Model

The AAA identity and access management model is a framework which is embedded into the digital identity and access management world to manage access to assets and maintain system security.

The Future of Identity and Access Management

The future of identity and access management will include technological innovation to address the security and interoperability of increasing connected devices.

Identity and Access Management Market Analysis

This identity and access management market analysis highlights the fast growth of the IAM market and drivers which fuel demand for identity and access management solutions.

Employee Password Risks and Password Alternatives

According to a few research studies, stolen employee access password is by far the leading cause of system hacking cases and data breach incidents.

Why Identity and Access Management Matters

There are five main reasons why identity and access management matters most in cyber security and data protection.

The Future of Cybersecurity

The future of cybersecurity is as clear as it is obscure. This article discusses factors affecting cybersecurity such as threats, expanding risks, and shortages in cybersecurity talents.

Global Cybersecurity Expert Shortages

It is estimated that the global cybersecurity expert shortages will be around 1.5 million by 2020. Learn about how to become a cybersecurity expert and fill the gap in a growing job market.

New Cybersecurity Challenges

Due to the global Internet connectivity of many devices and networks, the computer security risk landscape has expanded and includes many new cybersecurity challenges.

Identity of Things (IDoT)

As we embrace the Internet of Things (IoT) which refers to all smart and Internet enabled devices, we have to collaborate to address the growing the risks of Identity of Things (IDoT).

Identity and Access Management Objectives

The high level identity and access management objectives include cyber security, access management, fraud prevention, and compliance.