Learning about Policy Based Access Control (PBAC)

Inadequate controls in IAM processes and technology can lead to breaches, loss of data, and regulatory/compliance issues. Policy Based Access Control (PBAC) offers an advanced framework to centrally manage permissions and provide assurance for the enterprise in a scalable solution. The first step in maturing your IAM program is assessing your needs and identifying the scenarios where PBAC can help automate risk mitigation. Key areas: a) Authorization – given a validated identity, provide access approval b) PBAC supports a ‘zero trust’ approach – re-authenticate before granting approval, each time c) Learn about dynamic Policies that incorporate context such as location, time, behavior, etc. to make authorization decisions