Kevin Kruse, IAM Lead at Santander Consumer Bank Nordic, is one of the speakers at the Identity & Access Management conference. He has written an article on disrupting and challenging IAM best practices.
Standardization, best practices, market standard
You hear this often, and only a few would ever dispute the logic and the recommendations of following these, when implementing an IAM system. However, we must wonder and ask ourselves, how these evolves and changes over time, if they are not disputed, and if there is no one to descent them? How did automated Joiner-mover-leaver with feed from a HR system, become the best practice in the first place? Someone must have challenged the former best practices and proven that it worked better. And are best practices always best practices everywhere? Is the world never going to change?
Best practices dictate certain things today. Well, I claim that for example automating your joiner-mover-leaver process directly in to your IAM system, for automatic provisioning and deprovisioning, without going through a layer of intelligence first, is a classic example of best practices which works in small and medium organizations only, and only if they have one HR system.
Is there a best practice for role engineering? Does the vendor claim that there is such thing as exact science for role engineering? Role engineering is not one truth. It is not exact science. There are multiple ways to engage it, and they can be combined in any way you like.
Do not be afraid of challenging best practices where this makes sense
Not only does technology and concepts change rapidly, but also compliance requirements and new realities. Best practice is a great guideline when starting on a blank sheet of paper and starts designing. However, when digging deeper and analyzing the infrastructure, organization, enterprise landscape and policies, then strictly following best practice without applying some common sense, will be devastating for your business.
Do you want to hear more from Kevin Kruse?
At the Identity & Access Management conference you can hear more from Kevin Kruse and many others on different IAM matters.
Read more about the conference here and sign up for the conference here.
