Conceptually, identity governance can be defined as the rule of the rulers. In the business world, governance is the process by which authority is conferred on management, by which they make the rules, and, those rules are enforced and modified. Thus, understanding governance requires an identification of both the rulers and the rules, as well as the various processes by which they are selected, defined, and linked together within an organization.
Good governance is in general participatory, transparent and accountable. It is also effective and equitable and promotes the rule of law. Good governance ensures that priorities are based on broad consensus within the enterprise to meet the needs of all parties including consumers, customers, regulators, shareholders, and auditors fairly, effectively, and efficiently.
Identity Governance Overview
Identity governance is an organization’s overarching set of rules which proposes a management decision making process and accountability for achieving business goals while managing identity risks.
Identity Governance Framework
Identity governance framework refers to the organization’s proposed governance lifecycle designed to support the organization’s identity governance efforts including governing bodies and their responsibilities, rules, and processes for managing identity data and related risks.
Good governance is concerned with the highest level of structure for decision making, control, and accountability. It directs and controls management actions to ensure everyone in the organization follows a standard and transparent decision-making process in the interest of all parties involved. Identity governance supports the security objectives of the organization and the privacy rights of users.
The following is a list of governance objectives:
- Improve decision making to achieve business goals
- Streamline processes (automate, centralize, etc.)
- Standardize (efficiency, consistency, error reduction)
- Reduce cost
- Identify and mitigate risks
- Increase enterprise value
- Meet internal and external requirements
- Empower management and staff
- Ensure security, privacy, and compliance
- Maintain identity data integrity
The Certified Identity Governance Expert (CIGE)® professional designation is the first and leading registered governance certification designed to promote a lifecycle framework for the authority of the identity management field and related functions.
CIGE professionals are capable of defining and effectively communicating why identity governance is critical for their organizations. They understand good governance benefits and can see the big picture as well as the evolving identity risk landscape. They are also capable of proposing and implementing an identity governance lifecycle framework which helps their organizations meet the established identity management objectives.
CIGE Critical Risk Domains™
The following Critical Risk Domains (CRDs) define the specific knowledge areas and skills that CIGE professionals need to become certified:
- Identity and Access Management Lifecycle
- Strategy, Roadmap, Framework, and Planning
- Roles, Responsibilities, and Accountability
- Program, Policies, and Procedures
- Risk Management and Internal Controls
- Funding, Resource Allocation, and ROI
- Independent Audits, Monitoring, and, Performance Measurement
Who should become a CIGE
Executives and corporate officers who set the rules for identity and access management within organizations where identity data is collected, maintained, processed, and shared can benefit by becoming a Certified Identity Governance Expert®. The CIGE designation is a registered program which demonstrate the knowledge and skills of the IMI members who hold the designation. It is awarded to experienced and educated professionals who set the rules at the highest levels of their organizations to guide and support management for addressing the growing societal and organizational concerns regarding identity data including privacy, security, regulatory and contractual compliance, customer expectations, identification and authentication, as well as efficient IT and access management processes.
Currently, interested and qualified members may become a CIGE® without an examination if they meet the requirements set forth in the CIGE application.
IMI uses PayPal and other third party credit card processors to request and receive international credit card payments after applications are received. Alternatively, candidates may mail a cashier’s or company check.