Economics of Identity and Access Management: Providing Decision Support for Investments

Marco Casassa Mont, Yolanta Beresnevichiene, David J. Pym, Simon Shiu

Research output: Chapter in Book/Report/Conference proceedingPublished conference contribution

2 Citations (Scopus)


Identity and Access Management (IAM) is a key enabler of enterprise businesses: it supports automation, security enforcement and compliance. However, most enterprises struggle with their Identity and Access Management strategy. Discussions on IAM primarily focus at the IT operational level, rather than targeting strategic decision makers' issues, at the business level. Organisations are experiencing an increasing number of internal and external threats and risks: there is scarcity of resources and budget to address them all. Decision makers (e.g. CIOs, CISOs) need to prioritise their choices and motivate their requests for investments. This applies for investments in IAM vs. other possible security or business investments that could be made by the organisation. In this context, a range of possible IAM investment options has an effect on multiple strategic outcomes of interest, such as assurance, agility, security, compliance, productivity and empowerment. We have developed a repeatable approach and methodology to help organisations work through this complex problem space and determine an appropriate strategy, by providing them with decision support capabilities. The proposed approach, validated in collaboration with Security & IAM experts, couples economic modeling, enabling decision makers to explore their preferences between the different outcomes, with system modeling & simulations to predict the consequences (likely outcomes) associated with different investment choices and map them against decision makers' preferences to identify the most suitable options. We illustrate how this methodology has been applied in an IAM case study, in a business-driven context with core enterprise services. This work is in progress. We discuss current results and next steps.
Original languageEnglish
Title of host publicationNetwork Operations and Management Symposium Workshops (NOMS Wksps), 2010 IEEE/IFIP
Place of PublicationLos Alamitos, CA, USA
PublisherIEEE Press
Pages134 - 141
ISBN (Print)978-1424460373
Publication statusPublished - 17 Jun 2010
Event5th IFIP/IEEE International Workshop on Business-driven IT Management (BDIM 2010) - Osaka, Japan
Duration: 19 Apr 201019 Apr 2010


Conference5th IFIP/IEEE International Workshop on Business-driven IT Management (BDIM 2010)


  • business process re-engineering
  • decision support systems
  • investment
  • IAM
  • identity analytics
  • simulation
  • strategic preferences
  • security
  • modelling


Dive into the research topics of 'Economics of Identity and Access Management: Providing Decision Support for Investments'. Together they form a unique fingerprint.

Cite this