Understanding JML Process in IGA
The attached is a diagram of an Identity Governance Framework (IGF). An IGF is a set of policies and processes that helps organizations manage user access to IT systems and resources.
The diagram shows a number of different components of an IGF, including:
- Identity Lifecycle Management (JML) Process: This is the process of managing user identities throughout their lifecycle with the organization, from onboarding to offboarding.
- Entitlement Catalogue: This is a repository of all the different permissions and privileges that users can be granted.
- Roles: These are groups of permissions that are assigned to users based on their job function.
- Access Certification: This is the process of regularly reviewing user access to ensure that it is still appropriate.
- Provisioning and Deprovisioning: This is the process of granting and removing access to systems and resources when users join or leave the organization, or change roles.
The IGF helps organizations to ensure that users have the least privilege necessary to do their jobs. This helps to reduce the risk of security breaches and data leaks.
Here are some of the benefits of using an IGF:
- Improved security: By ensuring that users only have the access they need, IGFs can help to reduce the risk of security breaches.
- Reduced compliance risk: IGFs can help organizations to comply with data privacy regulations such as GDPR.
- Improved efficiency: IGFs can help to automate the process of provisioning and deprovisioning user access, which can save time and money.
In the broader context of IGA processes, "JML" stands for "Joiners, Movers, and Leavers," which represents a set of common processes related to managing user identities within an organization:
1. Joiners: The process of onboarding new users or employees into the organization's systems and granting them appropriate access rights and permissions.
2. Movers: Managing changes to user roles, responsibilities, or access privileges due to internal role changes, promotions, or transfers within the organization.
3. Leavers: The process of offboarding users or employees who are leaving the organization, including revoking their access rights and removing them from relevant systems and applications.
These JML processes are fundamental components of identity lifecycle management within an organization and are crucial for maintaining security, compliance, and efficiency in managing user access.