InfoSec or also known as Information Security is making a platform for the prevention of unauthorized access, use, disclosure, disruption, modification, inspection, recording or destruction of information. This security is regardless of the data, whether physical or electronic. The prime focus of Information Security is confidentiality, integrity and the availability of data. It is made possible through a multi-step risk management process that helps identify assets, threat sources, vulnerabilities, potential impacts, and possible controls, followed by assessment of the effectiveness of the risk management plan.
Identity and Access Management falls within the scope of Information Security. Identity management, is also known as identity and access management (IAM)is in Information Security, the one that "enables the right individuals to access the right resources at the right times and for the right reasons". It largely caters to the need for an appropriate access to resources across the growing, non-homogenous technology environments and to meet increasingly many requirements of the industry.