Traditionally, each time a company wished to add a productivity tool, employee benefit, or management tool to their application suite, they searched for best of breed software and then installed that software on their internal networks. This creates an ever increasing burden and expense on internal Information Technology (IT) resources to maintain and upgrade all these offerings. With the advent of the Cloud and Software as a Service (SaaS). Companies increasingly outsource these functions to on-line service providers. Employees then access the services via browsers. This is a cost effective approach but leads to productivity and security considerations.
Cloud based system such as payroll, health benefits, workforce management, and recruiting all contain sensitive employee information. When employees have individual accounts on each of these systems, it becomes very difficult to enforce typical corporate policies related to user management including:
- Password policies – how often a password should be changed, minimum password strength, etc.
- Termination policies – company and government regulations dictate that when employees leave the company, there access from corporate systems must be immediately revoked.
- Credential protection policies – Employee passwords must be protected from unauthorized interception and viewing. This is very difficult to enforce and prove, when employees have ids and password on dozens of system maintained by dozens of companies.