Digital Identity Risk Management (DIRM) – Step 3: Select Initial Assurance Levels and Baseline Controls
The next step in DIRM is selecting initial assurance levels. Organizations must align Identity (IAL), Authentication (AAL), and Federation (FAL) levels to the potential impact of identity failures. Low, moderate, and high-impact guides ensure assurance levels are applied, ensuring proofing, authentication, and federation controls are strong enough to mitigate risk while avoiding unnecessary complexity.
Check out this infographic for an overview of DIRM – Step 3: Select Initial Assurance Levels and Baseline Controls.
Gabriel Magarino
Gabriel Magarino – Senior Security Manager | IAM Evangelist - Experienced leader with over 20 years in the IT and cybersecurity industry, specializing in Identity & Access Management. Expert in Okta, One Identity, SailPoint (IdentityIQ & IdentityNow), OneLogin, Delinea, and CyberArk. Passionate about exploring IAM and emerging technologies, coaching, and training IAM teams. Holds a Master’s in Computer Science and multiple certifications, including Okta Professional & Administration, One Identity Architect & Instructor, SailPoint Identity Now, ITIL, Scrum Master, among others. Currently pursuing a PhD with a focus on Computer Science and Artificial Intelligence.