Access Management

Access management is the process of granting authorized users the right to use a service, while preventing access to non-authorized users. It has also been referred to as rights management or identity management in different organizations. The purpose of access management is to provide the right for users to be able to use a service or group of services. It is therefore the execution of policies and actions that are defined in the information security management

Access management is effectively the execution of the policies in information security management. It enables the organization to manage the confidentiality, availability and integrity of the organization’s data and intellectual property. It ensures that users are given the right to use a service, but it does not ensure that this access is available at all agreed times this is provided by availability management.

Access management is a process that is executed by all technical and application management functions, and is usually not a separate function. However, there is likely to be a single control point of coordination, usually in IT operations management or on the service desk. Access management can be initiated by a service request.