A successfully managed Identity Access Management (IAM) Program must meet many needs. It is more than a project - as it touches multiple processes and business functions and may involve numerous stakeholders.
Forming an Identity Governance Board will help you achieve best-of-class results within your industry.
Purpose
The purpose of the Identity Governance Board is to form a partnership to provide leadership and guidance for the Identity Governance program in three main areas:
- Set the mission for compliance and security needs
- Strengthen relationships among the business and stakeholders
- Improve the security posture of the enterprise
Forming an Identity Governance Board
- Define Executive Sponsors who will
- Provide executive support
- Sponsor the business case
- Expedite the approval to proceed
- Secure cross-functional involvement
- Monitor progress
- Break down barriers
- Be the cheerleader for the program
- Identify Stakeholders and enlist Steering Committee members from
- Identity & Access Management (IAM)
- Information Security
- Business Units
- Human Resources
- Finance
- Infrastructure
- Program Management Office (PMO)
- Audit & Compliance
- Legal
- and other as needed
Duties of the Identity Governance Board
- Establish the Business Case for IAM goals
- Prioritize objectives
- Establish accurate Reporting to ensure that decisions are based on the best possible information
- Identify risks and develop a mitigation plan
- Provide guidance concerning regulatory and privacy policies & procedures - as well as issue resolution
- The IGB “owns/defines” the Identity Data Model
- Responsible for identity data cleanup efforts and securing data
- Directs Business Process Definition efforts to move from as-is toward to-be.
- Enacts Role Modeling projects. Drives efforts for role standardization.