Comments on: Communicating IAM Value: The Brutal Truths http://blogs.gartner.com/earl-perkins/2009/08/28/communicating-iam-value-the-brutal-truths/ A member of the Gartner Blog Network Thu, 13 Oct 2011 10:48:50 +0000 hourly 1 http://wordpress.org/?v=3.0.4 By: Access Certification CBT/video for non-IT folks « Identity Sander http://blogs.gartner.com/earl-perkins/2009/08/28/communicating-iam-value-the-brutal-truths/comment-page-1/#comment-234 Access Certification CBT/video for non-IT folks « Identity Sander Thu, 19 Nov 2009 20:28:41 +0000 http://blogs.gartner.com/earl-perkins/?p=108#comment-234 [...] Access Certification CBT/video for non-IT folks I’m always in catch up mode with my reading. I finally got to Ian Glazer’s “Access Certification and Entitlement Management” on a plane to California. If you are in the market for access certification, trying to understand how to construct and approach to managing entitlements or just want to understand the moving parts of access in any reasonably complex organization, then this is a must read. What got me thinking most was the tone of the paper. Essentially it boils down to the good advice to make sure you define boundaries for tasks well and get the people from the business who should own the information to become the owners by the end of the process. Ian also encourages you to use whatever resources you can, even if they make strange bedfellows. It reminded me very much (and I’m going to mix analyst firms here so forgive me) of Earl Perkin’s thoughts about making the auditor your friend and making sure you “care, but not too much”, which he communicated at the Gartner IAM Summit last week (and blogged about previously as well). [...] [...] Access Certification CBT/video for non-IT folks I’m always in catch up mode with my reading. I finally got to Ian Glazer’s “Access Certification and Entitlement Management” on a plane to California. If you are in the market for access certification, trying to understand how to construct and approach to managing entitlements or just want to understand the moving parts of access in any reasonably complex organization, then this is a must read. What got me thinking most was the tone of the paper. Essentially it boils down to the good advice to make sure you define boundaries for tasks well and get the people from the business who should own the information to become the owners by the end of the process. Ian also encourages you to use whatever resources you can, even if they make strange bedfellows. It reminded me very much (and I’m going to mix analyst firms here so forgive me) of Earl Perkin’s thoughts about making the auditor your friend and making sure you “care, but not too much”, which he communicated at the Gartner IAM Summit last week (and blogged about previously as well). [...]

]]> By: Ed King http://blogs.gartner.com/earl-perkins/2009/08/28/communicating-iam-value-the-brutal-truths/comment-page-1/#comment-101 Ed King Sat, 29 Aug 2009 06:44:38 +0000 http://blogs.gartner.com/earl-perkins/?p=108#comment-101 Earl, #3 - #5 is just classic. Love it. IdM or security in general is only interesting to the business if it is relevant to the business. To really sell security projects, proof it either: 1. improves profitability or improves ability to achieve mission (for a non-profit) 2. reduce risk of non-operation (a.k.a. stop making profit or deliver against mission) If it weren't for improving profitability or avoid risk of being shut down, no business would give a hoot about security. Ed Earl,

#3 – #5 is just classic. Love it. IdM or security in general is only interesting to the business if it is relevant to the business. To really sell security projects, proof it either:
1. improves profitability or improves ability to achieve mission (for a non-profit)
2. reduce risk of non-operation (a.k.a. stop making profit or deliver against mission)

If it weren’t for improving profitability or avoid risk of being shut down, no business would give a hoot about security.

Ed

]]>