Enterprise Security Management(E-SRM)
Abstract
Enterprise Security Management (E-SRM) is an emerging domain wherein different products like Identity Management and Access Management Tools are being developed each day. In US, regulations like SOX compliance are propelling IT organizations to adhere to several compliance. As part of these regulations, business enterprises are upgrading their IT Systems. One of the emerging areas is Identity Management. Companies like Oracle, Sun Microsystems, Novell and Sailpoint are heavily investing into Identity Management Solutions e.g., Oracle Identity Management Suite etc. Professionals need to learn the tool and have a combination of compliance and security testing to be able to carry out testing this niche area. It would involve test optimization techniques like test case optimization and test data optimization. There needs to be a test strategy of generic work flows and specific functional work flows which would aid in the complete coverage.The most importantly it be emergence of a new testing technology like E-SRM Testing (Enterprise Security Risk Management Testing) which does not fall directly either into Compliance testing nor security testing bracket. The products in this domain range from Oracle Identity Manager, Oracle Role Manager, Sailpoint Identity IQ, Sun Identity Manager and Role Manager and Novell Identity Management Solutions. The solutions basically focus towards role based identity management within an organization.
