In a world defined by our use of technology, how we are identified digitally is important. Our digital identities and the credentials that protect them define how we work, interact with each other, access technology, execute transactions, and so much more.
For organizations, Identity and Access Management (IAM) “is the discipline that enables the right individuals to access the right resources at the right times for the right reasons,” according to Gartner. Weak or improper identity management increases risk. The vast majority of data breaches making headlines are the result of poor identity management. Twitter, Marriott, Nintendo…the list goes on. These breaches often leverage weak identity management, such as weak or previously compromised passwords, not leveraging multi-factor authentication and single sign-on or leaving standing privileges open.
For consumers, identity management is the discipline of protecting our personal digital identities as we communicate, shop, and transact our daily lives online. For individuals, poor password hygiene and careless online behavior can lead to compromised accounts or identity theft. These incidents occur when we use weak passwords, fail to enable two-factor authentication, or carelessly click on malicious links.
To reduce these risks requires four things:
- Understanding that identity management and security is a challenge that many people and organizations are failing at and that cyber-attackers exploit this fact.
- Awareness that we must do a better job managing and securing identities and the access granted with them.
- Utilizing technology solutions available to strengthen identity and access management.
- Follow the advice provided for individuals and organizations.
To learn more about this first ever Identity Management Day, visit the Identity Defined Security Alliance hosted in partnership with the National Cyber Security Alliance. If you need help creating or reinforcing your identity management processes, contact Xantrion.