Security Encyclopedia

Identity Governance

Identity governance provides organizations with visibility and control over identity and access life cycles across multiple systems. The goal of identity governance is to help customers understand how people, applications, data, and devices are linked together in order to determine who has access to what, the potential risks that it poses, and also the ability to take action when policy violations are identified.

Specifically, identity governance and administration gives admins and the enterprise itself a way to establish role-based access for activities aligned with the specific role a user has. The reason it goes beyond the mere assigning of roles is identity governance and administration tools monitor permissions users have, and revoke unnecessary ones if discovered, through automation. This greatly assists with administration in terms Human Resources that would be needed; it also helps with compliance as the analysis feeds into he collection of data that help gain an understanding of risk.

SailPoint, ForgeRock, Okta, and Ping Identity are recognized names in identity governance and administration.

Example:

“As part of our initiative to modernize our identity management systems, our IT team deployed SailPoint for Identity Governance.”