Identity Collaboration

Background image

The Failure of Linear Processes for Non-Employees

One of the most important areas in IAM that distinguishes third-party users from employees is the onboarding process. While the onboarding process for employees is tied to a centralized system of record, like a HRIS, this process is often not applicable for third party users.

The simple solution for some organizations is to just add third-party users to their HRIS. There are however, obvious flaws with this strategy which range from the basic – it is not feasible for information about third-party, non-employee users to be gathered in a linear process as it is for employees; to the more problematic – adding third-party, non-employees to HRIS can expose the organization to misclassification and co-employment litigation while at the same time incurring high HRIS costs (up to $200USD per record).

What’s needed is an authoritative source of third-party data that takes into consideration the unique needs of third-party users and facilitates collaborative information gathering that includes internal and external sources, ongoing risk assessments, revalidation, and timely offboarding processes.

Onboarding Third-Party, Non-Employees With and Without SecZetta

 

 

SecZetta Can Help

SecZetta’s Third-Party Identity Risk solution features a Collaboration Hub which includes a comprehensive set of capabilities that facilitate the collection of information needed about the third-party users from both sources inside and outside the organization.  While this information is critical during the onboarding process, it is important  that it be collected throughout the lifecycle of the third-party 

The Collaboration Hub features external portals that can be deployed to allow both internal sponsors and external sources including the third-party’s employer and the third party themselves to input data needed to make well-informed access decisions.  The Collaboration Hub offers a variety of simultaneous portals that can be configured to meet the unique needs of different third-party, non-employee groups (by role, department, location, skillset, vendor, etc.). These user-configurable portals enable organizations to drive collaborative and continuous non-employee data collection from both internal and external resources. 

Key to the success of the Collaboration Hub, is its no-code based design which empowers users to customize portals and workflows without the need for professional services or technical resource support. The Collaboration Hub also provides a portal for self-service or third party delegated administration of identity lifecycle process. Non-employees and third-party delegated admins can regularly validate identity relationships to ensure access is being governed effectively. 

On Demand Demo: Third-Party Onboarding Made Easy

See how easy it is for internal sponsors and external delegates to collaborate to onboard a new contractor with SecZetta.

The Collaboration Hub enables proactive maintenance of existing profiles, including:

  • Third Party Delegated Administration

    Third party delegated administrators can be assigned to execute processes such as onboarding, updating, or terminating identities. Bringing third parties into the process alleviates the arduous task of identity administration by the organization, while maintaining oversight and governance

  • Third Party Delegated Validation

    Control the risk associated with ineffective offboarding by requiring your vendor to attest to the relationship and/or employment status of a non-employee resource 

  • Self-Service Registration

    Take the burden of collecting accurate information off your business users and administrators by allowing non-employees to provide and maintain their own identity data. Allows for the attachment of documents and for the acceptance of corporate policies. 

  • Self-Certification

    Empower non-employees to self-certify their relationship through controlled email verification by allowing only validated vendor email domains when they register 

  • Standards Based Authentication

    Supports authentication using ldapoauth, and samlAn ldap directory is included out of the box, but easily attaches to existing directories. 

Identity Gap in Third Party Risk Management white paper

Download our white paper to learn: Signs that may indicate a failing approach to third-party identity management and insights and best practices into successful third-party identity management.

Download Now