As a result of our work the first year, audit findings declined to a single finding – and by 2021, were further reduced to zero. Since the beginning of the identity and access management implementation, millions of user roles have been recertified and user separations have been automated for over 100 enterprise applications and thousands of roles.
The IGA and PAM integration continues as additional provisioning functionality is built into the identity lifecycle. The new capabilities allow the platform to support thousands of privileged users and requires minimal intervention or manual processes from operations staff. Connections improve as upgrades are made and security, performance and feature enhancements are added. As the solution evolves, there is also greater integration with enterprise policies, such as password rotations and user separations.
Today, government is facing an increased risk from more sophisticated cyberattacks and widespread compromise of credentials. The EY Zero Trust security model validates and enforces the cybersecurity concept of “never trust, always verify.” Our team is helping federal agencies by providing Zero Trust services to support access workflows and operational policies that will improve the security to agency assets and result in cost savings and greater efficiencies.