Protiviti Home About Us | Contact Us
Search
 
|Government Challenges |Solutions |Contracts |
 
Home > Protiviti Government Services > Government Challenges > Identity Management
 
 
  Identity Management   
  Identity Management is the process of managing the lifecycle of a user such as assigning a User ID to new employees and giving them access to certain applications; or deleting the user's ID and access rights when they are no longer employed with the organization. The process involves creation, authentication, management, and revocation of individuals' access rights to computer systems and applications. Some of the immediate challenges faced when developing Identity Management strategies and processes are complexity, consistency and efficiency. These challenges increase as the number of users and systems grow. It is critical that the strategies take into account the following elements:
  1. All potential access requirements (systems, applications, facilities)
  2. All potential users (temporary employees, interns, etc.)
  3. Current user ID and access procedures for existing systems
  4. Unique, secure, and consistent User Identification and password format schema that can be adapted to existing systems
  5. Access control (which users should be given access to what applications)
  6. Consistent and efficient authentication processes
  7. Stringent monitoring procedures to ensure compliance with standards and procedures
A key objective of Identity Management is to provide protection against security breaches. The challenge extends beyond system security to developing processes and to authenticating a user's identity and access privileges in person. For example, it is essential to authenticate the identity and roles of the first responders at the scene of a disaster (e.g. terrorist attack).

In response to the Homeland Security Presidential Directive 12 (HSPD-12), the National Institute of Standards and Technology initiated the development and use of Personal Identity Verification (PIV) cards1, a common identification credential. The PIV card provides a secure and reliable form of identification for federal employees and contractors to gain both logical and physical access to federally controlled facilities and information systems.

It is more important now than ever to have confidence in your agency's ability to control access to resources, applications and facilities. Meeting these critical Identity Management needs presents unparalleled challenges as agencies seek to integrate security and compliance across enterprise environments and develop new security protocols within constrained budgets.

Protiviti Related Solutions:
  1. Governance, Risk & Compliance Services
    - OMB A-123 - Internal Controls
    - OMB A-130 - FISMA
  2. Identity & Access Management 
  3. Information Assurance

1 About Personal Identity Verification (PIV) of Federal Employees and Contractors 		 
     
   
 
 
Terms of Use | Privacy Policy | Customer Service
© 2010 Protiviti Inc. All Rights Reserved.