Posts

Showing posts from May, 2024

Identity & Access Management (IAM) in the Banking Industry

  Identity  & Access  Management  (IAM)    1. Introduction 1.1 Purpose This Identity  & Access  Management  (IAM)  framework  is  designed  to  establish  standardized  policies, procedures and controls for managing user access to various applications within any organization. The framework  aims  to  ensure  the  confidentiality,  integrity  and  availability  of those  applications while maintaining compliance with regulatory requirements. 1.2 Scope This  framework  covers  all aspects of  user  access,  including  onboarding, modifying, role-based  access control, periodic reviews and offboarding, across all applications within an organization. 1.3 Objectives • Ensure data confidentiality and integrity. • Implementation of Principle of Least Privilege (POLP) and Segregation of Duties (SoD)....