Security, Productivity, and Compliance: Your Three IAM Challenges

July 18th, 2019   |     |  product and technology, security & compliance

If your company is anything like the thousands of companies we’re working with, there’s more of everything. More cloud apps, more devices, and more users.

In a study we conducted, 94 percent of Chief Information Officers believe the tech stack will be more complex in the future, with more apps, data, devices, and transactions (source: “The Future of Identity and Access Management: A CIO Survey,” Pulse Q&A, January 2019).

The customers we work with generally divide the challenges they’re facing into three categories: security challenges, productivity challenges (for both IT staff and the general employee population), and compliance challenges.

Security Challenges

Your Firewall is useless in the cloud.
Anyone can try and sign into your cloud apps. And they do…

Growing Cybercrime
On a typical day, 20%+ of login attempts in Office 365 is malicious activity from China. In the past six months, we have seen malicious Office 365 login activity from over 250,000 Chinese IP addresses.

Password Spray Attacks Near Impossible to Prevent
We see few-minute bursts of login attempts with the same common password from over 70 different countries - and then those IPs go silent.

Every Consumer Breach Should Concern You
Employees reuse the same passwords at home and work. When Marriot gets hacked, work passwords may be included in the leak.

Contractors Are a Liability
As they move from company to company, they use the same passwords, putting your data at risk.

Employees Are Busy or Don’t Care
You can’t force people to have better password practices. Eliminating passwords with SAML is the only way to solve the password problem.

Productivity Challenges

Time Wasted Resetting Passwords
Up to 50% or more of help desk tickets are related to password reset. This is either handled internally by a helpdesk or outsourced to a support vendor. The cost of each ticket ranges from $5 to $50.

Time Wasted Signing In
Users are forced to keep track of dozens of URLs, usernames, passwords, and secret questions.

Resistance to Cloud Adoption
Users struggle to change behaviors and workflows when new apps are introduced.

IT Burdened with Slow IAM Tools & Workflows
• 51% of IT decision makers say that having too many identity systems is the primary identity and access management (IAM) challenge they face.
• IT wastes hours on inefficient operations for onboarding new employees, rolling out applications, and offboarding departing employees.

Legacy Systems Resource-Intensive & Antiquated
• Legacy access systems cost precious IT budget. They’re complex, decentralized, and ill-equipped to address the continued growth of cloud application.

Painful Onboarding and Provisioning
• We’ve heard our customers tell us: “You know what a pain it is to set up new hires, because of the number of tools and apps and access and permissions. It used to consume half, if not the whole Friday, before the new hires started for 3 or 4 people on my team to provision new hires.”

Compliance Challenges

Pass Audits, Meet Compliance Regulations
Companies that are public or in regulated industries need to meet internal and external auditor requirements and enforce controls from compliance frameworks.

Fragmented and Decentralized Reports
Many companies have to piece together reports and audit trails across multiple disparate systems.

How OneLogin Single Sign-On Can Help You Conquer Identity Chaos

OneLogin is an access management platform that helps thousands of businesses unify all existing user directories and improves security and productivity.

OneLogin protects all apps behind a secure Single Sign-On (SSO) and Multi-Factor Authentication (MFA), simplifies the user experience to access all apps on any device, eliminates up to 50% of helpdesk tickets with self-service password reset, and accelerates onboarding and offboarding.

Learn more on how to conquer identity chaos.

About the Author

Michael Gleason currently serves as OneLogin’s Director of Product Marketing. With a background in taking inventive IT & security offerings to market, Michael has held strategic go-to-market roles within the Cisco Cloud Security Group, CloudLock (acquired by Cisco), and SSH Communications Security.

View all posts by Michael Gleason

About the Author

Michael Gleason currently serves as OneLogin’s Director of Product Marketing. With a background in taking inventive IT & security offerings to market, Michael has held strategic go-to-market roles within the Cisco Cloud Security Group, CloudLock (acquired by Cisco), and SSH Communications Security.

View all posts by Michael Gleason

Secure all your apps, users, and devices