Category Archives: Access Risk Management

How to identify and measure IT access risks

Comments Off on How to identify and measure IT access risks

IT Risk Identification with Access Intelligence – Why you can’t do without it

Before access risks can be avoided, reduced or managed, they must first be identified. While this may seem trivial, it is a complex task in terms of permission management. Detecting and assessing risks among the enormous amounts of data that continuously accrue in the access management environment is a lot like finding the proverbial needle in the haystack. With a growing number of users, roles and IT systems – all of which must be granted permissions – the sheer number of risk opportunities rises exponentially.

A company with 5,000 employees and only 50 IT systems with ten permission groups each, for example, has over 2.5 million permission-granting possibilities, each of which may represent a high or low risk for the company. In light of this, the task of identifying all the existing risks from these permissions, assessing their effects and defining appropriate measures seems hopeless.

Tags: |

Investigate and track access right changes with Garancy Time Traveler

Comments Off on Investigate and track access right changes with Garancy Time Traveler

Better protection against insider attacks

Garancy Time Traveler

Benefits of the Garancy Time Traveler

With the release of Garancy Access Intelligence Manager 2.1., we will offer a new add-on, the Garancy Time Traveler. The solution enables companies to analyze all changes to access rights for corporate data and applications at any time. As it continuously logs all changes to access rights, the Garancy Time Traveler allows users to check access rights for any point in time and within any timeframe.

This enables them to detect potential risks in good time and prevent them impacting the business. Using the Garancy Time Traveler helps companies to significantly reduce the risk of fraud and data theft by insiders. However, should a case of fraud or data breach occur, the tool includes extensively detailed forensic analyses with which users can pinpoint its source.

Tags: |

IAM data historization – a compliance necessity

Comments Off on IAM data historization – a compliance necessity

With the growing spread and availability of IAM systems, auditors are getting more and more demanding concerning their expectations for powerful analytic capabilities regarding the IAM data historization. Over the last decade, most IAM systems were implemented because of the dreaded question ‘Who is allowed to do what in your organization?’

Tags: | |

Planning an Access Risk Management System

Comments Off on Planning an Access Risk Management System
Sample of Analysis

Sample of Analysis

Managing access permissions is an increasingly important part of successful risk management. The potential risk to corporate IT increases with every access authorization and every user account. When people dealing with risk management include permission structures in their work, they can significantly reduce IT risk potential and therefore strategic and operational risk too.

So what do you need to consider when planning, implementing and deploying an access risk management system.

Tags: | |