White Papers for Sarbanes-Oxley (SOX)

Enterprise Roles-based Access Governance

Aveska

Although roles-based access control (RBAC)has been the subject of much interest in the past,experience
with it has been mostly disappointing.The challenge of discovering established roles,defining new
roles according to business need,connecting roles properly to the IT infrastructure,ensuring that they
meet all compliance requirements,and managing roles through their natural lifecycles has,until now,
proved to be too complicated and cumbersome to be practical. However,a new roles-based model of access governance has evolved that overcomes these problems with an approach that provides a bottom-up perspective of roles (the reality of current user access) and connects it to a top-down business perspective (how a role works in conjunction with a business process.)As a result,roles can now be implemented in a manner that both simplifies access control and makes access governance,risk management,and compliance easier.

View the White Paper

Share or bookmarklet this web page at: