IAM (Identity and Access Management) refers to the complete system of processes, policies, and technologies you use to manage digital identities and their access rights. IAM covers the entire lifecycle: identity creation, permission assignment, periodic recertification, and deactivation upon departure. Core building blocks include directory services (LDAP, Active Directory), single sign-on, and multi-factor authentication. In your ISMS, IAM forms the foundation for the least-privilege principle and access traceability. Automated provisioning processes reduce errors and ensure that rights are revoked promptly when no longer needed.