How has the evolution of RBAC improved the management of entitlements?
RBAC has evolved from the identity and access arena over the last three years and has brought with it some very exciting developments. The most significant change is that it has moved the management of entitlements out of the realm of the IT department and into the business. With RBAC, user permissions are now based on an individual’s role as opposed to a group. Each role comes with predefined permissions as agreed by the business, which means an individual is only given entitlements according to their immediate job function. What’s the benefit of moving ownership of entitlements into the business? There are a number of very significant benefits – namely security, efficiency, agility and compliance. Because access privileges are assigned to a role, it significantly reduces the risk of inappropriate privileges or the ability to aggregate entitlements as job functions change. It also means that when a user steps into a new role they have immediate access to the correct systems and applic
