IAM Lifecycle

Phase
Description
Tooling / Process

Provisioning

Identity is created, access rights assigned

HR triggers joiner process → IAM tool provisions based on role

Access Requests

Request for new access/change

ServiceNow/Jira ticket with dual approval

Access Reviews

Scheduled & event-based reviews

Automated reports sent to data/system owners quarterly

De-provisioning

Access is revoked upon role change or exit

Exit checklist linked with HR system, auto-sync with IAM

Monitoring & Auditing

Ongoing tracking of activity

SIEM + IAM logs, reviewed by SecOps with 2nd line review

PreviousCore IAM Principles (Aligned with NIST AC and FCA)NextIAM Tools and Technologies

Last updated