Reduce Business Risks with Digital Identity Management
The advent of the Internet has thrown open many possibilities which were not even dreamt of in the earlier
times. From the way we communicate to the way we do business, the Internet has definitely brought about
remarkable changes. The Internet today connects millions of users and serves multitude of purposes and with
the evolution of the social web and mobile technology, the need for having digital identities have become
more than necessary.
Though digital identity helps in better opportunities, faster services and smarter decisions, lack of proper
digital identity management can bring into fore privacy and compliance issues. In today’s world where
personal data is currency, people need to be very careful when managing their digital identities. For instance,
take the case of business enterprises having a large user base and application base. Provisioning new users,
de-provisioning users, identifying which users have access to which resource are some of the activities that
take place almost on a regular basis. In such a scenario, an oversight can result in cyber criminals taking
advantage of the situation.
With new technology such as social media, mobile and cloud technologies making it easy to leak data,
enterprises have no other choice but to take data protection initiatives as recent laws and regulations
including privacy regulations and regulatory compliance rules have made it compulsory for enterprises to
ensure data security on all fronts.
One way of ensuring proper identity and access management is to collaborate with a provider of data
protection services. Given below are the offerings of a best of the breed service provider-
* Provides a complete offering that includes designing of data-centric policies, data classification, data flow
analysis, fine-tuning, consequence management and tools like data loss prevention (DLP), information rights
management (IRM/ERM) etc.
* Offers a few accelerators including an automated data flow analysis and repository, a health check
assessment tool and data classification tool.
Take the case of a bank with a customer base of over 2 million. It had implemented a leading DLP solution to
protect sensitive data and to deter people from leaking sensitive data. However, lack of a strong governance
and incident management process and business aligned rules hampered the effectiveness of the project. The
bank collaborated with a leading solution provider, who using its data protection solution performed data
flow assessment, designed the DLP rules, implemented and tested them for accuracy. They also developed
the governance and incident management process for consistency that helped in detecting, analyzing,
escalating and closing incidents to ensure deterrence and compliance. This helped the bank to reduce the
number of false positives and thereby ensured discipline in the handling of sensitive data.
Thus, implementing an effective data protection policy can help enterprises to carry on their businesses with