Get the Identity Security Outlook Report

Glossary


  • images/What-is-Break-Glass-Access.png

    What Is Break-Glass Access?

    Break-glass access or emergency access is a mechanism for allowing designated users to elevate their access rights by bypassing normal access controls. Learn about break-glass access, its benefits, and its common use cases.

  • images/copy-of-c1-resource-graphics-1.png

    What Is Identity Security?

    Secure your enterprise with expert insights into identity security, including processes, use cases, and practical steps to protect against identity breaches.

  • images/What-is-a-CIP.png

    What Is a Converged Identity Platform (CIP)?

    A converged identity platform (CIP) helps organizations manage and secure user identities across various channels, devices, and applications. Learn how CIPs help address the cybersecurity challenges of today's increasingly complex identity landscapes.

  • images/what-is-IGA-vs-PAM.png

    What Is Identity Governance and Administration (IGA) vs. Privileged Access Management (PAM)?

    Identity Governance and Administration (IGA) and Privileged Access Management (PAM) are two critical components of identity security. While they are closely related, understanding their distinct roles and applications is crucial to building robust security programs.

  • images/copy-of-c1-resource-graphics-19.png

    What Are Provisioning and Deprovisioning?

    Provisioning and deprovisioning are critical for enhancing your security posture and safeguarding of confidential information. Get it done with this guide.

  • images/What-is-RBAC.png

    What Is Role-Based Access Control (RBAC)?

    Role-based access control (RBAC) is an identity and access management (IAM) control method for managing and granting user permissions based on an end user’s role within a team or organization. Learn how RBAC can help teams implement the principle of least privilege access.

  • images/What-is-HIPAA.png

    What Is HIPAA?

    The Health Insurance and Portability Accountability Act (HIPAA) is a federal law enacted to develop national standards that protect sensitive patient health information. Learn about the safeguards HIPAA compliant organizations must implement and how strong access controls can help protect patient data.

  • images/What-is-CIEM.png

    What Is Cloud Infrastructure Entitlement Management (CIEM)?

    Cloud Infrastructure Entitlement Management (CIEM) is a cloud security framework focused on managing and securing cloud identities within an organization's cloud infrastructure. Learn common CIEM use cases and what to look for in CIEM solutions

  • images/11-best-access-governance-2.png

    11 Best Access Governance Software for Identity Management in 2024 [+User Feedback]

    Looking for an access governance software to tighten up your organization's security posture? We've got you covered in this expert buyer's guide.

  • images/What-is-single-sign-on-sso.png

    What Is Single Sign-On (SSO)?

    Single sign-on (SSO) allows organizations to authenticate and grant access to users across numerous applications using a single set of credentials. Learn how SSO works and why it's an important access management tool.

  • images/What-is-JIT-access.png

    What Is Just-in-Time (JIT) Access?

    Just-in-time (JIT) access is a security practice for granting access to applications or systems. Learn how JIT access works and its use cases, benefits, and types.

  • images/What-is-SoD.png

    What Is Separation of Duties (SoD)?

    Separation of duties (SoD), also sometimes referred to as segregation of duties, is the principle that no user should be given a combination of privileges that would allow them to misuse a system on their own. Learn why SoD is an important cybersecurity and compliance practice.

  • images/What-is-an-IdP.png

    What Is an Identity Provider (IdP)?

    An identity provider (IdP) stores, maintains, and manages digital user identities and ensures users are authenticated before getting access to an organization's resources. Learn why IdPs are an important foundation for effective identity security.

  • images/What-is-shadow-IT(1).png

    What Is Shadow IT?

    Shadow IT refers to the use of applications, infrastructure, and even hardware without the approval of an organization's IT and security teams. Learn how to proactively protect against the risks posed by shadow IT.

  • images/what-is-10.png

    What Is ISO 27001?

    Learn all about ISO 27001 certification and how it can improve your organization's reputation and instill confidence in your security practices for stakeholders such as customers, partners, and regulators.

  • images/what-is-8.png

    What Is GLBA?

    The Gramm-Leach-Bliley Act (GLBA) is a US federal law that, when enforced, ensures customers' information privacy and security. Complying with GLBA's requirements, financial institutions can minimize security risk while also enhancing customer trust and confidence.

  • images/copy-of-c1-resource-graphics-33.png

    What Are Time-Based Access Controls?

    Time-based access controls restrict access to critical resources, which increases an organization's security posture by reducing its attack surface area. Learn more about time-based access controls and their importance.

  • images/what-is-6.png

    What Is NIST?

    The National Institute of Standards and Technology (NIST) plays a crucial role in cyber and information security, but what exactly is it and what role does it play? Learn all about NIST and how following NIST guidelines is a security best practice here.

  • images/what-is-7.png

    What Is Temporary Elevated Access?

    Temporary elevated access refers to granting users temporary privileges outside the standard access scope. It is a security best practice, enabling organizations to enhance security, maintain compliance, and minimize risks.

  • images/copy-of-c1-resource-graphics-28.png

    What Is FedRAMP?

    The FedRAMP framework is a government program that provides a standardized approach for assessing, authorizing, and monitoring the security of cloud service providers (CSPs) used by federal agencies. Learn all about FedRAMP and its importance.

  • images/copy-of-c1-resource-graphics-25.png

    Why Migrate from Birthright to Just-in-Time (JIT) Access?

    Birthright access is a commonplace but unsafe security practice. More and more companies are shifting away from birthright access and migrating to a just-in-time (JIT) access model. Learn about the differences and why JIT access is a security best practice.

  • images/copy-of-c1-resource-graphics-24.png

    What Is HITRUST?

    HITRUST is a certification framework for managing and protecting sensitive healthcare information and is a security and compliance best practice for the healthcare industry. Learn more about the benefits of HITRUST.

  • images/copy-of-c1-resource-graphics-23.png

    What Is IAM?

    Identity and Access Management (IAM) is a security best practice that increases security posture through defining and enforcing access controls. Learn more about the benefits of IAM here.

  • images/what-is-4.png

    What Is Privileged Access Management (PAM)?

    Privileged access management (PAM) is a security best practice that helps organizations protect their sensitive data and critical systems by controlling access to privileged accounts. Learn more about PAM and how it can help improve your security posture.

  • images/what-is-3.png

    What Is Birthright Access?

    Birthright access is a commonplace practice that can open the door to security breaches and other malicious activity. Learn more about how to decrease birthright access and improve your security posture.

  • images/what-is-2.png

    What Is SAML vs SCIM?

    SAML and SCIM are both best practice security protocols that help to ensure the safety of users and systems that contain the most sensitive information. Learn more about the differences between SAML and SCIM here.

  • images/copy-of-c1-resource-graphics-20.png

    What Is the Difference Between SOX and SOC Compliance?

    SOX and SOC 2 compliance initiatives are similar yet distinctly different aspects of access control regulations. Learn more about each and the differences between the two.

  • images/what-is.png

    What Are Orphaned Accounts?

    Orphaned accounts pose a significant security risk for both individuals and organizations as they are easily targeted by attackers. Learn more about how orphaned accounts occur and how to manage them to increase your security posture here.

  • images/what-is-1.png

    What Is Authentication vs. Authorization?

    Authentication and authorization are commonly used—and commonly confused—identity security terms. Learn about the similarities and differences between authorization and authentication.

  • images/copy-of-c1-resource-graphics-12.png

    What Is Zero Standing Privileges (ZSP)?

    The practice of enforcing zero standing privileges (ZSP) can reduce the risk of security breaches and help keep sensitive resources and data safe. Learn more about how reducing and managing standing privilege can improve your security posture.

  • images/copy-of-c1-resource-graphics-10.png

    What Are Access Requests?

    Access requests play a key role in achieving security objectives and in the safety of sensitive data. Learn more about how access requests can keep you more secure through the prevention of unwanted users gaining access.

  • images/copy-of-c1-resource-graphics-6.png

    What Are Access Controls?

    Access controls are an essential part of securing data spread throughout an organization's numerous apps and systems. Learn more about types of access controls and the importance of their implementation.

  • images/copy-of-c1-resource-graphics-3.png

    What Is Zero Trust?

    Learn more about the importance of zero trust as a security framework to ensure the security of your most sensitive information and resources.

  • images/copy-of-c1-resource-graphics-2.png

    What Are User Access Reviews (UARs)?

    User access reviews (UARs) are a security and compliance tool used to enhance security through assessing privilege. Learn how they can prevent security breaches and ensure that users retain the appropriate levels of access.

  • images/copy-of-c1-resource-graphics-7.png

    What Are Entitlements?

    An entitlement is the ability for a user to do something within an app—whether it is a permission, a role, a setting, or an admin, depending on the app’s definition.

  • images/copy-of-c1-resource-graphics-30.png

    Least Privilege Access vs. Zero Trust

    Least privilege principles and zero trust are two cybersecurity frameworks that focus on how to get the strongest security without hindering workforce productivity.

  • images/copy-of-c1-resource-graphics-32.png

    Identity Management vs. Identity Security

    Organizations are struggling to manage all the identities attached to their infrastructure. See how deploying IAM and investing in identity security tools can help.

  • images/copy-of-c1-resource-graphics-31.png

    How to Stay Compliant with User Access Reviews

    Learn best practices for running user access reviews that keep your organization secure and compliant.

  • images/copy-of-c1-resource-graphics-27.png

    What Is Identity Governance?

    Identity governance is the policy-based orchestration between identity management and access control. It ensures that identities are properly and securely connected to IT resources.

  • images/copy-of-c1-resource-graphics-26.png

    What Is Least Privilege?

    Least privilege is an approach to identity security that ensures users only have access to what they need and no more. Learn the benefits of this approach and how to implement it.

images/newsletter-3.png

Stay in touch

The best way to keep up with identity security tips, guides, and industry best practices.