Report: Mitigating Information Risk Through Identity & Access Management (Strategic Focus) TOC

Overview
- Catalyst
- Summary
Key Messages
- The ID&AM opportunity is set to grow significantly across all segments
- Reducing the complexity of ID&AM will create broader opportunities for vendors
- A succession of data loss incidents has highlighted the need for better access monitoring
- Compliance is important, but business concerns such as efficiency trump it
Table of Contents
Table of figures
Table of tables
Market Opportunity
- The ID&AM opportunity is set to grow significantly across all segments
- Increasing operational efficiency while reducing risk will be a key customer requirement
- Retail banking leads in the penetration of ID&AM but other sectors are catching up quickly
- Reducing the complexity of ID&AM will create broader opportunities for vendors
  - Simplification will help ID&AM technology to spread beyond its traditional markets
Technology Evolution
- Vendors will offer stronger auditing and greater monitoring capabilities
- A succession of data loss incidents has highlighted the need for better access monitoring
- Enterprise role management will allow more granular access management
- The access component of ID&AM will be increasingly integrated into applications
- SOA will influence the way ID&AM solutions are designed and implemented
- Broader and more innovative strong authentication will emerge in the market
Customer Impact
- SSO solutions can provide a significant boost to security while reducing costs
- Combining SSO with strong authentication will provide the best of both worlds
- Enterprise risk management will enable better automation for identity provisioning
- A more secure infrastructure will result in an increased focus on policy and auditing
- The adoption of SOA-enabled ID&AM is a limited but important trend
Competitive Landscape
- IT Infrastructure vendors will increase their influence over ID&AM through convergence
- Different classes of vendors will persist due to the market' s complexity and heterogeneity
- The market is rapidly reaching a high degree of consolidation
Go to Market
- New approaches to ID&AM will help customize the technology to suit SMEs
- End-users require services capabilities to deal with the complexity of ID&AM technology
- ID&AM is horizontal but there is value in adapting messaging to vertical requirements
- Recommendations
  - Formulate your marketing messages in terms of business goals and risk management
  - Open standards and interoperability will remain key selling points
  - Continued innovation is an absolute necessity, especially around strong authentication
  - Services are an integral part of the delivery of ID&AM and should be treated as such
APPENDIX
- Definitions
- Methodology
- Further reading
- Ask the analyst
- Data monitor consulting
- Disclaimer
List of Tables
- Table 1: The market opportunity for identity and access management solutions, 2006-2012
- Table 2: ID&AM penetration across vertical markets
- Table 3: Reported breaches of sensitive data, 2004-2008
- Table 4: Average number of passwords per employee in the enterprise
- Table 5: Objectives behind IT investments in the enterprise
List of Figures
- Figure 1: All ID&AM segments represent promising long-term revenue opportunities
- Figure 2: Retail banking leads in the penetration of ID&AM but other sectors will grow at a higher rate
- Figure 3: High-profile incidents of data loss have highlighted the threat and increased awareness of it
- Figure 4: The average employee frequently uses over six passwords to do his job
- Figure 5: Only 21% of respondents in a recent survey expressed confidence in password authentication
- Figure 6: Capabilities of ID&AM vendors vary significantly, with infrastructure vendors dominating overall
- Figure 7: Objectives behind IT investments in the enterprise