By: Matt Flynn
Thanks for weighing in Erik! Are you saying that the provisioning systems themselves provide sufficient non-repudiable evidence that the access rights stored in the connected systems is totally within...
View ArticleBy: Erik
Matt - Reconciliation is a detective control, not a preventative one. The goal is to detect when the other controls have failed and to detect that quickly. How quickly? This generally depends on the...
View ArticleBy: Dan Houser
Matt, Whoa — if you find a system that can guarantee 100% accuracy with all provisioning activities, buy it (and buy the company!!). I have designed systems that ensure that no one can mess with the...
View ArticleBy: Matt Flynn
I’m not claiming that one system can do 100% of anything. But, we can get closer to 100% by adding on to what provisioning already does for us. All I’m saying is that I believe there are holes in what...
View ArticleClik here to view.
By: Erik
Matt - I think we are closing in on violent agreement Reconciliation can add tremendous value to the provision solution, if tight management of “privilege drift” is risk appropriate. And of course, the...
View Article
