AWS’s shared responsibility model is the foundational agreement between the cloud service provider and its customers that defines the distribution of responsibilities associated with security and compliance. Ultimately, it is the responsibility of the organizations to secure their AWS cloud environment. Capital One breach of 2019 made headlines and drove…

Segregation of duties (SOD), also called separation of duties, refers to a set of preventive internal controls in a company’s compliance policy. Organizations require SoD controls to separate duties among more than one individual to complete tasks in a business process to mitigate the risk of fraud, waste, and error…

Identity Governance and Administration (IGA) is at the center of IT operations, enabling and securing digital identities for all users, applications and data. It allows businesses to provide automated access to an ever-growing number of technology assets while managing potential security and compliance risks. …

All publicly-traded companies are subject to the Sarbanes-Oxley (SOX) Act of 2002. For compliance, every company needs to ensure it is conducting periodic access reviews and certifications, maintaining segregation of duty (SOD), managing access rights for on-boarding, off-boarding, and role changes. …

What is it? Gartner defines CIEM as identity-centric SaaS solution focused on managing entitlements and data governance in today’s hybrid and multi cloud IaaS set-up. Gartner predicts CIEM offers significant advantage over an individual IaaS’s proprietary identity solution. Workloads have been running in the cloud since the last decade or so. AWS, GCP…

Azure AD is a highly-available and highly-scalable identity management service for small and large organizations. It enables organizations to use their corporate credentials to authenticate to new or existing applications, factoring out the authentication process and eliminating the need for many different identities. …

Compliance policies need to keep up with the cyber criminals. Regulatory demands on companies are growing which in turn drives audit. Compliance audit makes IT staff nervous. You always hear of an audit as a fire drill for the IT team. If you are a typical enterprise, you probably have…

Digital transformation is not a flash cut. Many organizations continue to maintain on-premise infrastructure while utilizing one or more cloud providers. This adds a different level of complexity for any Identity Access Management solutions. Okta has emerged as the most viable alternate to Microsoft Azure for access management. It offers…