Identity & Access Management (IAM) in the Banking Industry
Comprehensive Identity and Access Management (IAM) Framework [ Author : Rinu Jacob (CIST, CIGE)] Abstract This paper presents a comprehensive Identity and Access Management (IAM) framework aimed at establishing standardized policies, procedures and controls for managing user access across organizational applications. The framework emphasizes the importance of confidentiality, integrity and availability of applications, while ensuring compliance with regulatory requirements. Key components include role-based access control, the principle of least privilege, segregation of duties and the implementation of multi-factor authentication. Additionally, the framework outlines processes for user access lifecycle management, monitoring, auditing, training and continuous improvement. 1. Introduction 1.1 Purpose The purpose of the IAM framework is to establish standardized policies, procedures and controls for managing user access to various applications w...