Information security to us is about managing who can have access to what and why that is. IAM, Identity and Access Management, is often seen as the single profession to manage this who, what and why.
Our Perspective on Identity & Access Management
We believe otherwise. Managing identities and managing access cover lots of ground in different domains.
Identity management is all about automating joiner, mover, and leaver processes in an identity lifecycle. It is about workforce management, customers and consumers, things, every single object or service that may need to get access to whatever needs to be secured.
Access management is different. Access management is all about handing out the keys to the castle. But who is allowed to hand out the keys, and to what part of the castle? And why would anyone hand out the keys?