Home > Information Security Magazine > Features > Marriage of Convenience
EMAIL THIS LICENSING & REPRINTS
Information Security Magazine

  CURRENT ISSUE  
  FEATURES  
  COLUMNS  
  HOT PICK & PRODUCT REVIEWS  
  ARCHIVES  
  SUBSCRIBE/RENEW  
  

Marriage of Convenience
by Mark Diodati
Issue: Sep 2007
printer-friendly
licensing & reprints
< PREV PAGE   |   1  |   2  |   3  |   4  |   5  |   6  |   7  |   NEXT PAGE  >

8 Convergence Tips
Take these steps for a successful marriage of physical and IT security.
By Mark Diodati

  1. Look before you leap
    Due to the complexity of integrating heterogeneous systems, reorganizing the organization's physical and IT security teams, upgrading physical access systems and reissuing credentials, PL convergence is an ongoing process and can take at least several years to complete. Survey the organizational environment, inventory your systems, and evaluate the benefits of convergence with a healthy sense of skepticism before you consider this effort.


  2. Aim for a single authenticator system
    Many of the benefits of PL convergence result from providing a single authenticator, which enhances usability and reduces management complexity. Before beginning a convergence project, consider reducing the number of authenticators and physical access systems. This reduction may require the replacement of older physical access technologies, including those components at each door. However, multi-technology door readers and smart cards can ease the transition to a single technology.


  3. Invest in a smart card
    management system (CMS) A smart card management system is all but a requirement, unless you want to place significant burden on your users and administrators. Smart card personalization can be achieved without a CMS, but the process is manually intensive--for example, asking users to manually enroll for an X.509 certificate.


  4. Bring the team together
    Many companies with successful PL convergence deployments have shifted the responsibility for physical and IT security to a single organization, which ensures that the two security teams cooperate and work toward the same goal. Oftentimes, these integrated organizations report to a common leader such as the CSO.


  5. Integrate with identity management systems
    Identity management systems can provide enhanced usability, timely and efficient control of the user identity lifecycle across heterogeneous applications, and ease compliance. Most of the goals of PL convergence relate to identity management, so it makes sense for organizations to integrate the convergence effort into the larger identity management fabric.

    Provisioning systems can help automate the identity lifecycle: new hires, departmental changes, terminations. Without integrating the CMS and provisioning systems, the organization opts to maintain two distinct islands of identity, each with a separate set of management processes.
< PREV PAGE   |   1  |   2  |   3  |   4  |   5  |   6  |   7  |   NEXT PAGE  >





TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineWebcastsWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Advanced Search | Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts