Risk Management in Information Security: A Case Study in IAM
An operational risk management framework should live at the core of every effective information security program and strategy. Rather than security professionals scrambling to secure every application and system with the highest grade of technologies and drowning their resources, risk management enables better decision making - focusing on an organization's most valuable investments and providing strategic guidance on how to protect those.
As IAM surges as a must-have for security programs and compliance alike, using a risk management approach to understand the inherent and residual risks of these solutions can help to better assess the impact on your organization's overall password hygiene and security posture.
Join Gerald Beuchelt, Chief Information Security Officer at LogMeIn, and Kayla Williams, GRC Director at LogMeIn, as they share their insights and risk models of 3 case studies: Password Management, SSO with IDaaS, and SSO with MFA. In this session, they'll also cover:
- Leveraging risk management as a means to guide security activity and investment
- Applying risk assessments to concrete examples in the IAM space
- How you can benefit from outsourcing your password management to SaaS and enabling MFA and a centralized SSO
- A forward-facing look of IAM technology and their associated risks