Customer Identity & Access Management
Considering how hip this domain is, I’ll have to admit that I don’t like the name Customer Identity & Access Management (CIAM). Almost makes it sound dull and boring. Call it what you may, though, CIAM is an integral part of managing customers’ digital journey. Whether you’re a Chief Digital Officer looking at transformation projects; a CIO looking to modernize your infrastructure; a COO looking to improve your company’s operations; a CISO concerned with data breaches; a Product Manager or Architect looking to build new products; or even a consumer who just wants to know what’s happening behind the scenes when you’re interacting with brands; you’ve got to learn what CIAM is. So let’s dive straight into it.
CIAM has been around for ages
As a concept, CIAM isn’t new at all. Recall the earliest website where you might have made an “account” years ago. Maybe it was your AOL account or your Yahoo! account or your Hotmail account. Fast-forward almost three decades, and now we have the more familiar Facebook account, Snapchat account, or even your LinkedIn account that you’re using to read this blog. All these “accounts” form the basis of customer identity and access management, where you (the customer) create your account to access some form of online service. Here is how this age-old process looks like, not just for sign-up, but all the way from sign-up, to someone using a service, and to finally either close the account or flourish into an advocate for this service:
Though the term wasn’t coined back then, it was CIAM features that allowed these online service providers to manage this process or lifecycle. Managing this process was somewhat easier back then – both for the users (consumers) and the brands offering those services. For consumers, there were barely 2 or 3 of such services to deal with, so remembering the username and password (user credentials) was pretty easy. For brands, the number of users weren’t significantly high, and even if they were, most users were very homogeneous due to the simplicity of online services being offered. This is why it was easy to build simplistic CIAM capabilities into those web applications. CIAM, therefore, existed without anyone even knowing that it did!
So why the hype now
A couple of decades later, the dynamics have changed drastically. Smartphones, apps, self-serving kiosks, ATM machines, wearable devices and the likes, as new channels of interaction; and the pervasiveness of the Internet (broadband, WiFi, LTE, 5G etc.) has much to contribute to that. The number of these online service providers (or in modern lingo “digitally native products”) has grown exponentially, paving the way for instant delivery of online or digital services. What does this mean for consumers and for the brands?
For Consumers
For Brands (Enterprises)
领英推荐
One other significant dynamic cuts across the consumer and enterprise realm – privacy and consent management. The influx of data gathered through these brand-consumer interactions creates its set of opportunities and dilemma (read in more detail in my blog Customer Identity – a dilemma, an opportunity). Consumers expect all the benefits of digital interactions, but they also expect brands to fully respect their personal data’s privacy. Most regulatory bodies agree, and now enterprises must also adhere to multiple data privacy regulations to avoid the risk of hefty fines in the case of a data breach or even misuse of data.
These new dynamics aren’t just affecting a specific industry or segment. The business drivers might be nuanced, but every industry is experiencing these new realities. While the evolving consumer behavior is one of the key drivers, the onus for managing this new consumer-brand interaction and the onus for overcoming the subsequent obstacles for enabling those interactions lies with the enterprises. The following illustration gives an overview of the three core business drivers; and how different factors in different industry segments are motivating enterprises to look at modern CIAM solutions.
Incumbent businesses like banks, insurance companies, telecom operators might have very different motivations compared to a neobank, a Fintech or a digital telco, but they all need to rely on CIAM to build that unique, tailored and secure user experience for their constituency of users.
Here’s how
When you start looking at capabilities and features, it starts becoming familiar territory for those familiar with the Identity & Access Management for the workforce/employees. Before looking at features, think back about “CIAM” being a poor representation of this domain. CIAM solutions don’t just help you manage the identities of customers/consumers (B2C), but also partners, suppliers, agents, brokers, gig-workers or any external identity (B2B) for that matter! Though not an exhaustive list, here’s a list of few key features of a CIAM solution.
There is so much more to a CIAM solution, but even this small subset of features can give you an indication of how CIAM is intricately tied with the whole user journey orchestration. It’ll also create doubts or questions. CIAM does hinge on the borderlines of workforce IAM, and also sometimes fills the gaps of a CRM (Customer Relationship Management) system. But let’s park that discussion for now. If you want to learn more about CIAM features, click the image below to learn more about the features offered by the OneWelcome Identity Platform.
CIAM is one of the fastest growing sub-segments in the broader Identity & Access Management space. It solves problems of scale, extensibility and availability that a legacy workforce IAM solution cannot address. It moves the static way of saving data in CRMs to a very dynamic and modern way of managing data and identity relationships that enrich analytics. But most importantly, it acts as a glue or an orchestrator between many different systems, making it an integral part of any transformation project that aims to reimagine consumer experience in the nascent digital ecosystem. I’d probably rename CIAM to CIO (Customer Identity Orchestration) to better reflect this capability, or even EIO (External Identity Orchestration), to better reflect the user constituencies it serves. While we take time to deliberate on that thought, I’ve recently seen our new OneWelcome colleagues rightly point out, CIAM is the cooler side of IAM! Maybe that’s what the ‘C’ should actually stand for – “Cooler” Identity & Access Management.
DISCLAIMER:?All the cool views presented in this post are my own, and do not necessarily reflect the views of my past or present employers.
Partnering with IT Leaders to help enhance and secure the experience of their employees, customers and business partners | Arizona | Thales Cloud Security
2 年Great post Haider Iqbal. Very insightful way to breakdown CIAM! #thalescloudsecurity #ciam #iam
Delivering data & cybersecurity related services and solutions | 25+ yrs experience.
2 年What a great post Haider. Thanks for sharing Steve
Passionate about Product Marketing I Positioning, messaging, content strategy, competitive analysis, feature prioritization and external communications for global cyber security solutions
2 年Haider -Can't agree more that the role that CIAM plays in driving online and digital business is huge. So its really exciting that we'll now be able to help our existing and new customers manage and protect external identities as well as employee identities.
Advising Enterprises on Customer Identity Access Management for B2C and B2B
2 年“CIAM = Cool Identity and Access Management”, it is the foundation for digital business. I like it!
Awesome news!