Vincent Arnold

Audit and compliance professionals are frustrated with how their IT managers are handling identity and access controls.

Polled about their organization’s approaches to identity and access management, audit and compliance professionals in industry and government expressed a high level of frustration with how their IT and business management units are managing IAM.

Almost half (45 percent) of the 845 respondents questioned by the Ponemon Institute for the research study released today said their own organization does not effectively focus its IAM policies and controls on areas of business risk.

The compliance professionals, 68 percent of whom said IAM products were in use in their organizations, also expressed frustration that IT and business management groups weren’t collaborating well in deploying IAM.

“The compliance and audit folks think collaboration is important, but they acknowledge their companies’ shortfall in this area,” says Larry Ponemon, chairman and founder of the research firm, which focuses on privacy, data breach and security topics. The “Audit & Compliance Professionals: Survey on Identity Compliance” study released today by Ponemon was sponsored by SailPoint Technologies.

Full article and source:  PC World

This entry was posted on Tuesday, August 7th, 2007 at 4:18 pm and is filed under Information Security.