Identity And Access Management
Identity and Access Management (IAM) is the framework of policies, processes, and technologies organizations use to ensure the right individuals and systems have the appropriate access to resources, and nothing more.
16 resources across 2 libraries
Glossary Terms(14)
Zero Trust Architecture
Zero Trust Architecture is a security model built on the principle of "never trust, always verify" — no user, device, or network segment is trusted by default,…
AWS IAM
AWS IAM (Identity and Access Management) is Amazon Web Services' service for securely controlling access to AWS resources, letting administrators define users,…
Google Cloud IAM
Google Cloud IAM (Identity and Access Management) is Google Cloud Platform's service for controlling who has what access to which resources, using roles that b…
Okta
Okta is a cloud-based identity and access management platform that provides single sign-on, multi-factor authentication, and user lifecycle management to help…
OneLogin
OneLogin is a cloud-based identity and access management platform offering single sign-on, multi-factor authentication, and user provisioning to help organizat…
Ping Identity
Ping Identity is an identity and access management company offering enterprise-grade single sign-on, multi-factor authentication, and identity orchestration so…
NIST Cybersecurity Framework
The NIST Cybersecurity Framework (CSF) is a voluntary framework developed by the U.S. National Institute of Standards and Technology that helps organizations m…
ISO 27001
ISO 27001 is an international standard that specifies requirements for establishing, implementing, maintaining, and continually improving an Information Securi…
SOC 2
SOC 2 (System and Organization Controls 2) is an auditing standard developed by the AICPA that evaluates how well a service organization's controls protect cus…
Data Loss Prevention (DLP)
Data Loss Prevention (DLP) refers to tools and practices designed to detect and prevent sensitive data from being leaked, exfiltrated, or shared outside of an…
Security Token Service
A Security Token Service (STS) is a web service that issues, validates, and exchanges security tokens — such as temporary credentials or identity assertions —…
Identity and Access Management (IAM)
Identity and Access Management (IAM) is the framework of policies, processes, and technologies organizations use to ensure the right individuals and systems ha…
Privileged Access Management (PAM)
Privileged Access Management (PAM) is a set of security practices and tools focused specifically on controlling, monitoring, and securing accounts with elevate…
Secrets Management
Secrets management is the practice of securely storing, distributing, rotating, and auditing sensitive credentials — such as API keys, passwords, and certifica…
Interview Questions(2)
What is Zero Trust Networking?
Zero Trust Networking is a security model built on the principle "never trust, always verify" — no device, user, or service is implicitly trusted just because…
How Do You Manage SSH Keys Securely in a DevOps Team?
Secure SSH key management means generating a unique asymmetric key pair per engineer (never sharing private keys), distributing only public keys to servers via…