Joiner, mover, leaver (JML)
The identity lifecycle process covering account creation on hire (joiner), access changes during tenure (mover), and account revocation on exit (leaver).
In more detail
The JML framing covers the three states of an identity in the customer's environment. Joiner is the new-hire provisioning, mover is the access change on a role transition or transfer, and leaver is the offboarding revocation. The category is the single highest-volume IT ticket type in every organization we have looked at.
JML is the process. SCIM is one of the wire protocols that implements pieces of it. They are often confused. The process is bigger than the protocol; SCIM speaks to one downstream identity provider, while JML covers the full lifecycle across every connected system.
Where this shows up at Ceven
Ceven runs the JML lifecycle as one orchestrated workflow. Joiner fans out across fourteen connected systems in under thirty minutes, mover reconciles against the new role and removes stale grants, leaver fans out across the same fourteen systems in under sixty seconds with one hash-chained audit row per action.