How to create a single Identity Repository for contractors and vendors?

The biggest challenge any CISO faces is setting up Identity Governance framework for employees and non-employees. Streamlining identities across enterprises requires a single identity repository which is a daunting task considering today’s IT sprawl.

Every organization big or small has a human resource system(HRMS) that stores all the information for employees. HRMS exchanges information with the Identity Governance System and acts as the single souce of truth. However, contractors, vendors and temp employees present an interesting Identity Governance challenge as multiple sundry systems (databases, excel sheets, rosters) act as “authoritative sources”.

SecurEnds CEM SaaS product is being used by multiple customers to centralize the non-employee identities so their access can be provisioned, monitored and audited for SOX, HIPAA etc compliance. This non-employee identity repository contains data such as a first name, a last name, a phone number, group membership, e-mail address, manager etc. This centralized data allows for programmatic approach to access requests, entitlements assignment, periodic audits etc.

With SecurEnds CEM SaaS product admin can create a single record (above) or do a bulk import . In the above example admin will specify type of user to add and then pick appropriate data fields.

Recently, KuppingerCole Executive View has identified SecurEnds as a vendor to watch for its innovation and technology in the access governance market. “SecurEnds Credential Entitlement Management (CEM) is capable of managing access requests, access notifications, access reviews, and certifications. The report can be downloaded here : https://www.securends.com/kuppingercole-executive-view/