Resources for Sarbanes-Oxley (SOX)

Enterprise role management: Trends and best practices

searchsecurity.techtarget.com

Enterprise role management (ERM) goes beyond the basic process of simply assigning user IDs and passwords; it's about putting users into manageable groups, each with specific access rights.

ERM is based partly on the principle of role-based access control (RBAC), where access is granted not only based on an individual's unique access rights, but also on those of the group to which the individual belongs. This sounds a lot like ordinary access control even at the most basic operating system level -- even Active Directory and LDAP can aggregate users into groups -- but unlike those, ERM isn't tied to a single platform, and it operates at a higher level than a single system.

In some cases ERM is based on RBAC, but it can go beyond RBAC to encompass the entire enterprise, spanning multiple business units, functional areas and geographies within a single company. It can shift roles and groups to meet changes in the structure of users as the company grows both internally and through acquisition.

View the Resource

Share or bookmarklet this web page at: