https://sinetris.info/tags/access-requests/Recent content in Access Requests on Sinetris's viewpointsSine Die theme for Hugoenduilio@sinetris.info (Duilio Ruggiero)Mon, 15 Jul 2024 16:27:00 GMThttps://sinetris.info/topics/iam/iga/access-management/Mon, 15 Jul 2024 16:27:00 GMThttps://sinetris.info/topics/iam/iga/access-management/<h2 id="why-you-need-access-management">Why you need access management</h2> <p>Some important points are:</p> <ul> <li> <p>It allows to properly document granted access history for auditing and security purposes</p> <ul> <li>Who had access to a specific system, what kind of access, why, at any point in time</li> <li>What did they access, when, and why (via integration with SIEM systems)</li> <li>When they are doing operations on a system, this allow to check if they are allowed</li> </ul> </li> <li> <p>Monitor drifting between desired state and actual state and what caused it</p> </li> <li> <p>Keeping track of users accesses allow to better refine them</p> <ul> <li> <p>Did they had granted more access than needed for their work?</p> <blockquote> <p>Grant them access based on principle of least privilege</p> </blockquote> </li> </ul> </li> </ul> <div>[Truncated]</div>