Term · 9. Business Processes & Methodology
Role Lifecycle Management RLM
Definition
Discipline of designing, approving, deploying, certifying, modifying, and retiring roles throughout their useful life. Includes role mining (discover candidate roles), role approval (business + security sign-off), assignment rules, periodic certification, modification tracking, and retirement when no longer needed.
- Application
- Operationalized in IGA platforms via role catalog with full lifecycle workflow. Best practice: documented role owners, role definitions in business language, version control on role changes, audit trail of role modifications.
Related terms
-
Birthright (BR)
Baseline access granted automatically to every identity of a specific type — typically minimal access required to functi …
-
Delegated Administration (DA)
Permission model where administrators delegate specific management functions to other users within scoped boundaries — t …
-
Role Assignment (RA)
Specific instance of assigning a role to an identity — captures who, when, why, with what expiration. Direct (manually r …
-
Role Creation
Process of defining a new role in the role catalog — naming, description, business owner, included entitlements, approva …
-
Role Management
Operational discipline of maintaining the role catalog — creating new roles, modifying existing roles, retiring obsolete …
-
Role Mining (RM)
Analytical process of discovering role patterns by analyzing existing access data — clustering users with similar entitl …