As organizations grow and extend into new business models, so does the challenge of managing identities and access privileges. The Gartner IAM Summit, which was held from March 16 to March 17 in London, allowed customers and vendors alike to get together and discuss new advancements, challenges and trends in identity and access management (IAM). The conference had many overall messages, but the IBM team noticed three key themes in particular: Governance is now mainstream, authentication is now a feature rather than its own market and there is now a rising interest in consumer identity.

Governance Is Now Mainstream

It is no secret that the identity governance market has been growing as more decision-makers discover the benefits of policy-led entitlements management, access recertifications, user reporting and dashboards and other capabilities. In fact, in December 2013, Gartner created a new Magic Quadrant for identity governance and administration (IGA) to focus on this important segment of security.

Many of the customers at the Gartner event may have had an IAM solution in place but were looking to learn about identity governance solutions. The advancement of identity governance was on full display at the IAM summit, with many engaging conversations and sessions surrounding it. The conference sessions varied from “The One Trick That Will Improve Your IGA Tool Deployments” to “Achieving Success With Role Management.” And, of course, Gartner presented its new 2015 IGA Magic Quadrant, in which IBM is now ranked a leader.

Authentication Has Become a Feature and Is No Longer Its Own Market

In the past, authentication had a stronghold in its own market within IAM. One of the key trends is that authentication is moving toward being a feature — rather than a standalone solution — in the IAM space. All-in-one software-as-a-service applications and integrated IAM solutions have made authentication and access management more consumable for clients. Going forward, legacy administration solutions will be used to augment an identity-as-a-service or Web access management solution. Based on IBM’s experience at the Gartner conference, it seems vendors are now moving toward an integrated approach where authentication is built into those delivery methods.

The Rise in Interest for Consumer Identity

Consumer identity is an area in which IBM saw increased interest. Organizations concentrate on managing the identities of their employees, contractors, partners and other users. However, managing the identities of consumers is a growing concern. Consumer identity brings new questions to mind and poses new challenges for the teams responsible for managing identities. If you are a bank or a startup that has been managing employee identities for decades, how do you now manage the identities of your consumers? As customers use more and more Web applications, how do the security requirements change? Do you use the same identity management solutions you have been using or try different ones? These are the types of consumer identity questions clients and vendors are trying to solve.

The biggest takeaway from the IAM summit was that everybody understands how important it is to manage identities.

More from CISO

Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about

4 min read - At a brunch roundtable, one of the many informal events held during the RSA Conference 2024 (RSAC), the conversation turned to the most popular trends and themes at this year’s events. There was no disagreement in what people presenting sessions or companies on the Expo show floor were talking about: RSAC 2024 is all about artificial intelligence (or as one CISO said, “It’s not RSAC; it’s RSAI”). The chatter around AI shouldn’t have been a surprise to anyone who attended…

Why security orchestration, automation and response (SOAR) is fundamental to a security platform

3 min read - Security teams today are facing increased challenges due to the remote and hybrid workforce expansion in the wake of COVID-19. Teams that were already struggling with too many tools and too much data are finding it even more difficult to collaborate and communicate as employees have moved to a virtual security operations center (SOC) model while addressing an increasing number of threats.  Disconnected teams accelerate the need for an open and connected platform approach to security . Adopting this type of…

The evolution of a CISO: How the role has changed

3 min read - In many organizations, the Chief Information Security Officer (CISO) focuses mainly — and sometimes exclusively — on cybersecurity. However, with today’s sophisticated threats and evolving threat landscape, businesses are shifting many roles’ responsibilities, and expanding the CISO’s role is at the forefront of those changes. According to Gartner, regulatory pressure and attack surface expansion will result in 45% of CISOs’ remits expanding beyond cybersecurity by 2027.With the scope of a CISO’s responsibilities changing so quickly, how will the role adapt…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today