This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
This Website Uses Cookies
By closing this message or continuing to use our site, you agree to our cookie policy. Learn More
This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • Home
  • News
    • Security Newswire
    • Technologies
    • Security Blog
    • Newsletter
    • Web Exclusives
  • Columns
    • Career Intelligence
    • Security Talk
    • The Corner Office
    • Leadership & Management
    • Cyber Tactics
    • Overseas and Secure
    • The Risk Matrix
  • Management
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • More
  • Physical
    • Access Management
    • Video Surveillance
    • Identity Management
    • More
  • Cyber
  • Sectors
    • Education: University
    • Hospitals & Medical Centers
    • Critical Infrastructure
    • More
  • Exclusives
    • Security 500 Report
    • Most Influential People in Security
    • Top Guard and Security Officer Companies
    • The Security Leadership Issue
    • Annual Innovations, Technology, & Services Report
  • Events
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
    • Security 500 West
  • Resources
    • The Magazine
      • This Month's Issue
      • Digital Edition
      • Archives
      • Professional Security Canada
    • Videos
      • ISC West 2019
    • Photo Galleries
    • Polls
    • Classifieds & Job Listings
    • White Papers
    • Mobile App
    • Store
    • Sponsor Insights
    • Continuing Education
  • InfoCenters
    • Break-in Prevention
    • Building AppSec in Enterprises
    • Video Management Systems
  • Contact
    • Editorial Guidelines
  • Advertise
Home » Survey Reveals Need for Real-Time Identity and Access Intelligence
Access Management

Survey Reveals Need for Real-Time Identity and Access Intelligence

Generic Image for Access Management
February 7, 2012
KEYWORDS access management / IT security
Reprints
No Comments

A survey of IT managers shows gaps in access risk management programs, but also reveals that IT managers are very aware of their needs and what they have to do to address them.

When asked to define risks to their organization, the majority of IT managers define their top risks as the potential loss of sensitive data, corporate reputation, intellectual property or revenue. Yet only 12 percent conduct reviews more than monthly to certify that user access poses no risk to those assets. They also struggle with the challenge of identifying what their biggest access risks are and the need to develop and execute processes specifically aimed at managing them. More than 60 percent of IT managers review user access privileges only four times per year or less, and those reviews only ensure companies are observing security and audit best practices. They’re not focused on identifying new or growing areas of access risk from internal users abusing privileges. With internal and external threats to data multiplying quickly, such infrequent reviews aren’t keeping pace with the growth of user access risk levels.

The survey was conducted by Courion Corporation, a provider of identity and access management for access risk.

The survey respondents were keenly aware of the need to do things differently. More than half of the respondents – 52 percent – would like to use near-real-time graphical profiles to help manage the most critical risks to corporate information, but 53 percent of them lack visibility into the access risk management data they need to create such profiles.

Lack of data access also prevents IT managers from identifying associations and patterns of user access that violate company policies, or could enable users to circumvent internal controls. Nearly 60 percent of those polled say they can’t compile the data for that kind of analysis from their existing identity and access management (IAM) systems. Many of those who do use IAM data to manage risk must compile it manually, which is time-consuming and does not provide a business context for evaluating user access risk.

“The survey results show a lot of gaps in access risk management programs, but they also show that IT managers are very aware of their needs and what they have to do to address them,” said Dave Fowler, Courion’s chief operating officer. “Their greatest need is for more intelligence about their access risk – insight into which users have access to what vital information, who they are and what they’re doing with this access.”

Among the survey’s other findings:

  • Real-time views of identity and access management activities would help almost 70 percent of respondents identify and monitor potential access risks;
  • Fewer than 10 percent feared losing their jobs because of a serious data breach caused by inappropriate user access;
  • More than 60 percent cannot review user access privileges to certify that they align with the users’ roles, corporate policies or regulatory requirements.

To review the complete survey results, contact Courion at info@courion.com

Subscribe to Security Magazine

Related Articles

Survey Reveals Time to Identify Advanced Threats is 98 Days for Financial Services Firms, 197 Days for Retail

Global Cybersecurity Awareness Survey Reveals 33 Percent of U.S. Respondents Have Experienced Identity Theft

Related Products

Risk Analysis and the Security Survey, 4th Edition

Related Events

Harness Real-time Public Information to Improve Active Shooter Response

You must login or register in order to post a comment.

Report Abusive Comment

Subscribe For Free!
  • Print & Digital Edition Subscriptions
  • Security eNewsletter & Other eNews Alerts
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

cybersecurity breach

The Top 12 Data Breaches of 2019

ransomware-enews

British American Tobacco Suffers Data Breach and Ransomware Attack

Dispelling the Dangerous Myth of Data Breach Fatigue; cyber security news

Major Retailer Macy's Is Hacked

server room, cybersecurity, penetration testing,

Explained: Firewalls, Vulnerability Scans and Penetration Tests

cyber network

How to Achieve Cybersecurity with Patience, Love and Bribery

SEC2019_Everbridge_1119_360x184customcontent

Events

December 17, 2019

Conducting a Workplace Violence Threat Analysis and Developing a Response Plan

There are few situations a security professional will face that is more serious than a potential workplace violence threat. Every security professional knows and understands that all employers have a legal, ethical and moral duty to take reasonable steps to prevent and respond to threats of violence in their workplace.
January 23, 2020

The Value of a Unified Approach to Critical Event Management

From extreme weather to cyberattacks to workplace violence, every organization will experience at least one, if not multiple, critical events per year. And in today’s interconnected digital and physical world, the cascading safety, brand, and revenue impacts of critical events are more severe.
View All Submit An Event

Poll

Emergency Communications

What does your enterprise use to communicate emergencies to company employees?
View Results Poll Archive

Products

Effective Security Management, 6th Edition

Effective Security Management, 6th Edition

 Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics. 

See More Products
SEC500_250x180 clear

Security Magazine

SEC-December-2019-Cover_144px

2019 December

This month, Security magazine brings you the 2019 Guarding Report, featuring David Komendat, Boeing CSO, and many other public safety leaders to discuss threats and solutions for 2020 and security officer training. Also, we highlight Hector Rodriguez, Director of Public Safety and Security at Marymount California University, CCPA regulations, NIST standards, VMS and much more.

View More Create Account
  • More
    • Market Research
    • Custom Content & Marketing Services
    • Security Group
    • Editorial Guidelines
    • Privacy Policy
    • Survey And Sample
  • Want More
    • Subscribe
    • Connect
    • Partners

Copyright ©2019. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing