Identity & Access Management (IAM) Domain
This domain deals with the method to determine the identity of the entity and then access the permissions. This domain covers 13 percent of the CISSP certification exam.
Identity and access management (IAM) is often the first line of defense between adversaries and sensitive information. The purpose of access management is to allow authorized users access to appropriate data and deny unauthorized users to access confidential data.
In fact, The IAM domain subdivided into two interrelated management activities:
- Identity management
- Access management
Security experts must fully understand identity and access management concepts (like control types and authentication, authorization, and accounting), system access controls (such as identification and authentication techniques, methodologies and implementation, and methods of attack), and data access.