Three steps to building identity-driven security

They say that the weakest link in your agency is its employees. Identity-driven security is a modern approach that allows agencies to strengthen security at the individual user level.

Such a granular approach allows apps, data and devices to be protected uniformly across your organisation, a report by Microsoft explains.

Each employee is given a single common identity which helps control and understand who has access to what, through an approached called risk-based conditional access. There are three key steps agencies can take to an build identity-driven security strategy:

• Protect user credentials
• Use behavioural analytics to detect threats early
• Get visibility into app and data use

With the rise of digital IDs for citizens, governments are already looking at an identity-driven approach to public service delivery. The same level should be applied to security too. If you would like to learn more about identity-driven security from Microsoft, download the full report. below.