top of page

Haidion IAM Advisory

We can analyze the your current IAM architecture and processes. Where needed, we can assist in creating the needed IAM architecture and processes in order to establish a well-functioning IAM capability.

Haidion IAM Advisory covers the following topics.

Current and target state analysis

  • Identify, capture and process IAM requirements in a meaningful and actionable way

  • Describe Customer’s current IAM state in relevant detail

  • Create and maintain suitable and relevant architectural descriptions for current and/or future states, e.g.

    • Process models

    • Activity diagrams

    • Event state diagrams (e.g. identity, account and entitlement lifecycle diagrams)

    • Data models

    • Data flow diagrams

    • Use Case diagrams and Use Case descriptions

    • Stakeholders mappings

  • Perform Gap Analysis to identify IAM development scope and roadmap

  • Define needed Functional and Data Architecture capability

  • Establish methods and practices to maintain (and enhance) capabilities

Technical IAM architecture design

  • Analyse the current technical IAM architecture

  • Create IAM architecture vision together with the customer and establish a architectural roadmap

    • Monolithic vs. (micro)services architectures

    • On-premise vs. cloud

    • Standardized vs. vendor lock-in

    • Performance, availability

    • Disaster Recovery, Business Continuity

    • Compliance, Reporting

  • Understand the whole IAM context and the architecturally significant requirements

  • Document, communicate, and represent the IAM architecture

  • Coach the customer to make viable architectural decisions

  • Oversee and contribute to IAM system construction based on the architecture

  • Validate that the IAM implementation conforms to the architecture

IAM Capabilities

  • Access Management

    • Authentication (Risk-based, MFA)

    • Authorization

    • Access Policies

    • RBAC, ABAC

  • Identity Management

    • Identity lifecycle

    • Identity repositories & directories (LDAP)

    • Identity data sources

    • Identity Provisioning

  • Identity Federation

    • Federated SSO

    • Trust relationships (IdPs and SPs, Identity brokers)

    • API protection (API Gateway trusting 1-N IdPs)

Haidion IAM Advisory can be combined with other Haidion IAM services:

bottom of page