{"id":4293,"date":"2019-03-06T16:07:25","date_gmt":"2019-03-06T20:07:25","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=4293"},"modified":"2019-03-20T12:42:15","modified_gmt":"2019-03-20T16:42:15","slug":"3-important-lessons-in-next-gen-access-management","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/","title":{"rendered":"3 Important Lessons in Next-Gen Access Management"},"content":{"rendered":"

\"3<\/p>\n

What should enterprises know about deploying and maintaining a next-gen access management solution<\/a>? What are the secret ingredients to identity security success in the modern era, so to speak? <\/span><\/p>\n

\t\t\t

\"Download<\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/p>\n

The editors at Solutions Review watched \u201cNext Gen Access and ZTX are a Must<\/a>,\u201d a collaborative webinar between Forrester Research and IDaaS solution provider Idaptive. The acronym ZTX here stands for \u201cZero Trust Extended.\u201d<\/span><\/p>\n

Andras Cser, VP Principal Analyst at Forrester and Corey Williams, VP of Product Marketing and Strategy at Idaptive share some of the most important lessons enterprises can learn about next-gen access management. Here are 3 of our favorites! <\/span><\/p>\n

Next-Gen Access Management Means More Than the User<\/b><\/h3>\n

Or to put it in more clear terms, authenticating the user constitutes only one part of next-gen access management. A user putting in their credentials should serve as the first step to their authentication, not the end all be all; the experts on the webinar argue <\/span>the device <\/span><\/i>the user logs in from should also undergo verification to ensure its legitimacy. <\/span><\/p>\n

For example, if an employee typically logins in from an iOS device and then suddenly requests access from a Windows device, that should merit more steps in their authentication process.<\/span><\/p>\n

Indeed, other subtle authentication factors should include the users\u2019 location, IP geolocation, their behavior as compared to their behavior baselines, the data to which they requested access, etc. These considerations are more important than ever with the rise of IoT, BYOD culture, and mobile device proliferation. \u00a0<\/span><\/p>\n

Furthermore, your next-gen access management solution should grant access based on known facts about the users and their device. The Principle of Least Privilege still applies; access to applications and services should require continual authentication and authorization. \u00a0\u00a0\u00a0<\/span><\/p>\n

Authentication Must Adapt to Risk<\/b><\/h3>\n

One of the most important features of a next-gen access management solution is risk-based authentication and access controls. Typically, risk-based authentication evaluates the user in context\u2014their device, their IP address, their session speed, the time of day of the request, etc. The system then provides a risk score based on these factors, which triggers a particular set of authentication and authorization requirements. <\/span><\/p>\n

The higher the risk score, the more authentication factors the system asks of the user before granting access. Risk-based authentication also constitutes the core of adaptive multifactor authentication and step-up authentication; these activate and demand more criteria when the user\u2019s behaviors steps outside their normal behaviors or when requesting access to sensitive material. <\/span><\/p>\n

Risk-based access provides visibility for the highest risk users, applications, and data traffic. Effective cybersecurity starts with visibility; you can\u2019t protect what you can\u2019t see, after all. \u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n

Governance May Be the Key<\/b><\/h3>\n

So much of next-gen access management<\/a> builds off the Principle of Least Privilege. At its heart, the Principle of Least Privilege says users should only have the access they absolutely need to perform their job duties. Nothing more. <\/span><\/p>\n

However, enforcing this principle can prove a headache when performed manually; employees may need special permissions to complete one-time projects. Additionally, they may need new permissions as they take on new roles and responsibilities within the enterprise. Even an employee leaving the business can present its own identity challenges. <\/span><\/p>\n

Therefore, identity governance and next-gen access management go hand-in-hand. The former provides automated role management, which automatically allocates specific privileges to employees with certain job titles. It also enforces temporary privileges and removes permissions during the offboarding process. <\/span><\/p>\n

Moreover, governing your users\u2019 identities facilitates periodic but regular recertification, which you should perform as part of your next-gen access management. This step helps prevent access creep and orphaned accounts from leaving your business vulnerable.<\/span><\/p>\n

<\/div>\n

Identity and access serve as hackers\u2019 top attack vector. According to Verizon, as high as 81% of breaches involve weak or stolen passwords. Ten times more breaches stem from identity issues than from other vulnerabilities. <\/span><\/p>\n

Properly deploying, and maintaining a next gen-access management solution goes a long way to preventing these crises. The lessons we describe above only scratch the surface of the webinar. You can check out the full \u201cNext Gen Access and ZTX <\/a>are a Must\u201d webinar by Forrester and Idaptive here.<\/span><\/p>\n
Widget not in any sidebars
\n","protected":false},"excerpt":{"rendered":"

What should enterprises know about deploying and maintaining a next-gen access management solution? What are the secret ingredients to identity security success in the modern era, so to speak? The editors at Solutions Review watched \u201cNext Gen Access and ZTX are a Must,\u201d a collaborative webinar between Forrester Research and IDaaS solution provider Idaptive. The […]<\/p>\n","protected":false},"author":41,"featured_media":3426,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[142,125,16,152,62,76,286,397,70,127,541,190,1083],"acf":[],"yoast_head":"\n3 Important Lessons in Next-Gen Access Management<\/title>\n<meta name=\"description\" content=\"What should enterprises know about deploying and maintaining a next-gen access management solution? Forrester and Idaptive weigh in.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/\",\"name\":\"3 Important Lessons in Next-Gen Access Management\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/08\/Mechanical-Eye-MOD.jpg\",\"datePublished\":\"2019-03-06T20:07:25+00:00\",\"dateModified\":\"2019-03-20T16:42:15+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"What should enterprises know about deploying and maintaining a next-gen access management solution? Forrester and Idaptive weigh in.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/08\/Mechanical-Eye-MOD.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/08\/Mechanical-Eye-MOD.jpg\",\"width\":800,\"height\":433,\"caption\":\"How to Protect Your Digital Identities from Phishing Attacks\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"3 Important Lessons in Next-Gen Access Management\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, & Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer's Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"3 Important Lessons in Next-Gen Access Management","description":"What should enterprises know about deploying and maintaining a next-gen access management solution? Forrester and Idaptive weigh in.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/","url":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/","name":"3 Important Lessons in Next-Gen Access Management","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/08\/Mechanical-Eye-MOD.jpg","datePublished":"2019-03-06T20:07:25+00:00","dateModified":"2019-03-20T16:42:15+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"What should enterprises know about deploying and maintaining a next-gen access management solution? Forrester and Idaptive weigh in.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/08\/Mechanical-Eye-MOD.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/08\/Mechanical-Eye-MOD.jpg","width":800,"height":433,"caption":"How to Protect Your Digital Identities from Phishing Attacks"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/3-important-lessons-in-next-gen-access-management\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"3 Important Lessons in Next-Gen Access Management"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, & Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer's Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4293"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=4293"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4293\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/3426"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=4293"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=4293"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=4293"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}