4. Nobody is monitoring cloud-based applications to make sure access is current. As employees' roles in the company change, their access to information should change, too. A classic problem is entitlement sprawl, where people keep getting access to new information when they are transferred or promoted but nothing gets taken away. IAM solutions can identify employees with excessive access.
5. You're losing accounts to the new employer of a salesperson who left your company. Lighthouse Security Group said one of its customers noticed that it was losing accounts to a key salesperson who had been fired. This salesperson was never removed from Salesforce and was using proprietary data stored there to harvest the company's clients.
IAM vendors say they can solve all five of these problems due to integration with the most popular cloud applications.
Dave Fowler, COO at Courion, explains how IAM tools work for both network-based and cloud-based applications: "We mine the HR system for employee information that will trigger a process to automatically bring a person onboard and give them rights. Automatically, this user might get an e-mail account and an Active Directory entry. Then a request gets sent to their manager, who clicks on the different applications to grant access rights. When the approvals are done, the employee is provisioned automatically. We log everything, and we know who gets access to what. We use the same workflow for on-boarding and off-boarding."
Read more about infrastructure management in Network World's Infrastructure Management section.