Reduce SLAs – Make it easier to get access to lower-risk resources by establishing risk-driven policies and workflows. This involves classification of applications and resources, establishing risk based on user type and contextual risk scoring. You can use intelligent risk scoring – based on usage data, behavioral analytics, and peer group analysis – to optimize access certification, requests, role management, and other access management assignments and processes.
Use ABAC – Using birthright and user update rules that leverage attribute-based access control (ABAC) tools and time-based access allow you to manage access more precisely. These tools incorporate intelligent analytics to create attributes such as user, object, action, or environment characteristics and dictate how a role can operate.
Control Enforcement – Set up technical controls to enforce your policies rather than putting enforcement solely in the hands of people. For example, if you have a rule that a person needs to have a specific license to request a certain access, you can set up and enforce those types of controls automatically.
Remove Human Error – Look for ways to increase the use of automation and machine learning. These will inherently reduce the risk of human error.