What is certification? What are the certifications in SailPoint?

What is certification? What are the certifications in SailPoint?

In SailPoint IdentityIQ, certification is a process used to review and verify the accuracy and compliance of access controls within an organization. It is the process by which an individual is recognized as having attained a certain level of knowledge or skill in a particular area or field. Certifications can be obtained by passing an examination or meeting other criteria set by a certifying organization or body. The purpose of certification is to ensure that only authorized individuals have access to sensitive information and systems and that all access privileges are properly assigned and reviewed on a regular basis.

In SailPoint IdentityIQ, certification is performed by authorized users, such as security administrators or managers, who are responsible for reviewing access requests and verifying that they meet the organization's security policies and standards. The certification process involves reviewing access requests, identifying and mitigating potential security risks, and documenting the results of the review.

SailPoint IdentityIQ provides a robust certification framework that enables organizations to automate and streamline their certification processes. The platform provides a range of certification options, including manual and automated certifications, that can be tailored to meet the needs of different organizations. Additionally, SailPoint IdentityIQ provides real-time reporting and tracking capabilities to help organizations monitor the progress of their certification initiatives and ensure that they are effectively mitigating security risks.

The certifications in SailPoint are:

1. Manager Certifications — certify that your direct reports have the entitlements they need to do their job and only the entitlements they need to do their job.
2. Application Owner Certifications — certify that all identities accessing applications for which you are responsible have the proper entitlements.
3. Entitlement Owner Certifications — certify that all identities accessing entitlements for which you are responsible are correct.
4. Advanced Certifications — certify that all identities included in the population associated with that Advanced Certification have the correct entitlements and roles.
5. Account Group Certifications — certify that account groups /application objects for which you are responsible have the proper permissions or the proper group membership. Account groups that do not have owners assigned are certified by the owner of the application on which they reside.
6. Role Certifications — certify that the roles for which you are responsible are composed of the proper roles and entitlements or that the roles are assigned to the correct identities.
7. Identity Certifications — certify the entitlement information for the identities selected from the Identity Risk Score, Identity Search Results, or Policy Violation pages, usually for at-risk users.
8. Event-Based Certifications — certify the entitlement information for the identities selected based on events detected within IdentityIQ.