Identity GRC works in a PDCA (Plan-Do-Check-Act) approach as a control solution and helps you manage risks, entitlements and exceptions in a comprehensive and structured way.

Using Identity GRC provides:

• Automation of low-value operations (such as data feed and aggregation, reconciliation and report generation)
• Highlighting of risks, compliance gaps and history
• A 360° vision on users, entitlements and applications to be able to answer questions such as: Who is doing what? Who/could access what? Did the number of gaps increase or decrease? Which departments are the most concerned?

When used for forensic investigations, Identity GRC makes it possible to browse history data in the Entitlement Ledger. Stakeholders can have a 360° view of identities, accounts, entitlements, applications, organizations, businesses and processes and generate reports.

Acting like a Time Machine, Identity GRC allows you to restore the company’s situation at any time in the past and:

• Browse data
• Know who could access what and sort the result by identity, account, application or entitlement
• Know how the company was organized
• Recreate managers’ organizations
• Browse businesses
• Discover which accounts were used, by whom and to access which applications.

Identity GRC is the ideal solution to complete your SIEM (Security Information and Event Management) system: you can browse entitlements data and put information into context.

For instance: identity who had the required permission —> retrieve account information (Login…) —> check which accounts were used and when. Then, using the detailed access log, you can inspect the activity of the accounts you shortlisted in the previous step using Identity GRC.

Next: Benefits