Overall Satisfaction with IdentityIQ
I implement SailPoint IdentityIQ for enterprises who are looking to manage their overall risk posture, typically across the most sensitive parts of their organizations; The main business problems the solution address is around proactive access management. In an organization where you have hundreds (or some cases) thousands of users constantly joining, leaving or moving within the company to take on complex projects, IT has the burden to assure that users have the application access required to do their jobs. Imagine orgs that have multiple roles, job functions, geographies, and regulations; accurately granting access and limiting access can be a major undertaking and IIQ helps to manage the complexity of that entire process, which is what is referred to as identity lifecyle management.
- Providing accurate visibility enterprise-wide to who has access to what applications and data, across the entire organization.
- Seamless automatic provisioning of access based on matrix defined job roles and job functions , simplifying the provisioning process.
- An elegant interface to manage certifications and to limit access as customers change their job functions or projects (typically within 12-24 months).
- Technical adoption requires a high level of training and experience by the implementing teams.
- SailPoint and partners offers very good training courses which I think are very good. An area of improvement can be in providing cloud VMs that users can work with to learn the IIQ tool more effectively at their own pace.
- For projects Ive been involved in the ROI has been very good. Customers can measure, they can improve their risk posture and their risk appetite, making better decisions.
- No negative impact, it only helps businesses improve. Adopting the solution sometimes comes with negative feedback from some; the solution does call for many (good) changes and it tends to push the envelope a bit which might be perceived as a negative. Customers should stay the course and take it step by step.
All these products are really good at some key areas. They are all different and solve different parts of the puzzle. IIQ is more of a centric focal point that manages and maintains access in a vendor-agnostic way. It helps bridge the gap at the identity layer for different vendor applications, allowing you to keep your flavor of solutions and have them communicate at the identity context.
If you are holding customer information, then you need IIQ or some kind of identity management system. While smaller companies can live without it, as you grow and add new applications, regions and offerings to your customers, it is critical to manage access to customer and operational data. Business data today is very much similar to capital, and you want to properly manage who access to your capital resources demonstrating prudence and vigilance to customers.