Changing regulatory requirements, increased attack surfaces and a need to more efficiently deliver access to the business are putting pressure on many organizations, to reduce their overall risk exposure The foundation of any risk management program is the ability to monitor, identify, assess and treat risks consistently across the organization.
The systems and processes utilized by the Identity and Access Management (IAM) team can reduce risks associated with regulatory / corporate compliance and security incidents. From a compliance perspective, IAM systems and processes can attest to access controls, to restrict access to authorized users and to manage access based on business roles. Additionally, these systems can help security analysts answer questions around appropriateness of user access during the investigation process with identity context and intelligence.
This white paper explores scenarios in which RSA Archer and RSA Via Lifecycle and Governance (RSA Via L&G) solutions can be used together to provide higher levels of visibility and analysis, to effectively investigate security incidents and to manage the identity life cycle based on risk.