Problem solve Get help with specific problems with your technologies, process and projects.

Employee information security awareness training for new IAM systems

When an enterprise gets new IAM systems, training employees on how to interact with the technology is one of the most important aspects of deployment. Learn how to implement employee information security awareness training for new IAM systems and technologies cost effectively using a third-party source.

Our enterprise recently implemented LDAP in concert with SiteMinder technology. I need to get employees up to speed on the new system as quickly as possible. How do you recommend doing this?
As with any new security initiative, it's important that the user community understand not only how to use the new systems and technologies, but also why they've been implemented. Often, the most cost-effective way to do this is by using a third party specializing in training, specifically information security training, if possible. A good training company will offer several training options, including Web-based and in person. The company should also be able to customize the modules for different user populations and departments in your enterprise, track participation, and be globally positioned if needed.A couple of the possible options available include SafeLight Security Advisors Inc. or Vigilar Inc.

Because implementing a Web access control product like SiteMinder often means fewer privileges, not more, you should also make sure that the helpdesk is aware of this change and there are clearly documented processes for users requesting access to intranet sites. You may be able to create dynamic roles based on LDAP attributes, but you should be prepared for the eventuality of users losing access to an online resource needed for their work. If he or she is aware and well-trained on how the system works, the resource owner should be able to work with the SiteMinder administrators to implement the proper controls in a timely manner.

For more information:

This was last published in January 2009

Dig Deeper on Security Awareness Training and Internal Threats-Information

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.