When talking about identity management, the term ‘roles’ will start entering your vocabulary. When dealing with identities in your organization, roles offer a lot of value. Let’s break down what a ‘role’ is, then have a look at some of the advantages they offer.
What is a Role?
Think of a role as a profile for a type of job. For an accountant, they would likely need access to accounting software and inventory systems, as well as more generic staff systems like a corporate intranet and time-sheeting software. These permissions form part of this role profile.
Another job type could be a graphic designer. They have different needs to the accountant and only need the general staff systems and graphic design software.
We create three roles in this scenario: the Accounting Role, the All Staff Role and the Graphic Designer Role.
All employees get the ‘All Staff’ role. Then, instead of manually assigning each individual application, system, or permission to the user, we simply assign the ‘role’ for their job. The employee then inherits all the access that is part of the role. If the employee changes roles, the old role access is automatically removed and the new role access is assigned.
Roles are a concept of the Assertiv identity management system. Our permission model complements a role structure to suit your organization. You can use Assertiv for free and learn first-hand how roles work.
Roles are a great way to enable a ‘least privilege’ model. Least privilege means to only allow someone the bare minimum and nothing more to do their job. In the old days, we saw a lot of people accrue unnecessary access over time, and this leads to worrying security risks.
Using roles makes the management of user access super-fast. Instead of assigning individual permissions to an employee (of which there could be many), you can assign a role (or roles) and let your identity management system do the rest. In the beginning, it may be difficult to build up these role profiles, but this is a valuable investment in your organization that will perpetually deliver savings.
Roles simplify the administration of your organization. System administrators are no longer setting up ad-hoc access in systems and pressure is taken off helpdesks and audit personnel tracking down why people have permissions that are not relevant to their jobs. Simply put, it becomes easier to understand the access requirements of employees as they move around your organization structure.
On-Boarding New Applications
Let’s say you have invested in a brand new application for your business. When you’re ready to roll it out to all the relevant staff, it is only a matter of modifying a role and adding the application. If you’re using a real-time, modern solution like Assertiv, all members of that role will instantly get access to the new application.
How do I start using roles?
Roles are part of Assertiv, a cloud-based, modern identity and access management solution. It is very easy to get started (in fact, it’s free) and you can start benefiting immediately. We are advocates for good management of your identities, and are confident that organizations of all sizes (not just the big ones!) can reap the rewards.