Identity and Access Management Conceptual Framework for Sri Lanka

Abstract

The thesis underscores the critical role of Identity Access Management (IAM) in Sri Lanka's rapidly advancing digital landscape. The surge in technological development and digital reliance necessitates a tailored IAM framework, considering the nation's distinct sociocultural, economic, and technological milieu. The research commences with an in-depth analysis of global and regional IAM frameworks, shaping a conceptual framework modified to address Sri Lanka's unique challenges. To ensure alignment with legal and regulatory requirements, the framework undergoes iterative refinement through consultations with experts, policymakers, and stakeholders from diverse sectors. While emphasizing cutting-edge technologies, the IAM framework acknowledges and addresses privacy concerns, cultural nuances, and digital literacy limitations prevalent in Sri Lanka. A user-centric approach is adopted to balance security, convenience, and inclusivity for a population with varying digital experiences. Pilot implementations in selected public and private organizations validate the framework's efficacy, with key performance indicators including security posture, user experience, compliance adherence, and resource utilization. The findings contribute significantly to the creation of an IAM strategy tailored for Sri Lanka, promoting digital resilience, robust data protection, and effective access control across sectors. This thesis serves as a timely and vital resource in the expanding field of IAM, guiding Sri Lanka through the evolving digital landscape securely and inclusively. Positioned as a reference manual, it aids decision-makers, businesses, and security experts in adopting an IAM system that reflects the country's specific needs while adhering to international best practices. Ultimately, the research encourages digital resilience, safeguards personal information, and fosters digital inclusion in Sri Lanka.