Особливості управління правами користувачів у корпоративних IT-системах

Abstract

Today, there is no workplace at any enterprise where employees don’t use information technol-ogies. Automation provided by information technologies has already covered all the aspects of company’s activity: document flow, accounting, warehouse accounting, financial accounting, analytical accounting, and enterprise management. To work efficiently, employees need access to systems the use of which is required by their positions. The management and control of user accounts in corporate IT systems are serious tasks for the IT department or information security service. Since the systems are weakly integrated with each other, each of them requires a sepa-rate configuration of user accounts and corresponding access rights. The main directions in the management of access to corporate IT systems are the identification of accounts, the manage-ment of user accounts, and compliance with the requirements of authorized access rights. The modern concept of work with corporate systems consists in the formation of a service model based on the used IT systems. From the point of view of the service model, the company pro-vides an employee with a certain service based on the existing corporate systems. The organiza-tion of the effective management of user rights in corporate IT systems requires automation. A step forward in access management automation is the creation of self-service portals, where employees can familiarize themselves with the list of corporate services available to them and request access to them in the automated mode. The automation of the process of giving and changing user accounts in the corporate IT systems allows you to reduce the time it takes to cre-ate or change access rights, create prerequisites for controlling access rights to systems, and in-crease the efficiency of the IT department as a whole.