Eventually consistent entity resolution

What is claimed is: 1. A computer-implementable method for resolving an identity of an entity, comprising: parsing entity identifier information from a plurality of distributed data sources, the parsing generating a plurality of entity identifier elements from the entity identifier information; normalizing an entity identifier element of the plurality of entity identifier elements to provide a normalized entity identifier element; associating the normalized entity identifier element with the entity to resolve the identity of the entity; and, performing an eventually consistent entity resolution operation, the eventually consistent entity resolution operation updating distributed data associated with the entity, distributed data corresponding to entity identifiers impacted by subsequent changes to entity mappings being updated by the eventually consistent entity resolution operation to reflect a more recent entity mapping, the eventually consistent entity resolution operation returning a last updated resolution of an identity of a particular entity when no new updates are made to information associated with resolution of the identity of the particular entity. 2. The method of claim 1 , further comprising: performing a denormalization operation on a resolved entity identifier element, the denormalization operation providing a denormalized entity identifier element; and wherein the eventually consistent resolution operation uses the denormalized entity identifier element. 3. The method of claim 1 , wherein: resolving the identity of the entity is with respect to a particular security related event. 4. The method of claim 1 , wherein: the entity identifier information comprises at least one of a user identification factor, a user identifier factor, location data, information associated with an endpoint device, information associated with an edge device, information associated with an internal network, information associated with an external network and information associated with a resource entity. 5. The method of claim 1 , wherein: the entity identifier element has an associated entity identifier type; and, the associated entity identifier type comprises a representation of a particular attribute associated with an entity identifier element. 6. The method of claim 1 , wherein: the entity identifier element has an associated entity identifier type; the entity identifier element type comprises at least one of a simple mail transfer protocol (SMTP) address type, an exchange address type and an inferred type; and, normalizing the entity identifier element is specific to the entity identifier element type. 7. A system comprising: a processor; a data bus coupled to the processor; and a non-transitory, computer-readable storage medium embodying computer program code for resolving an identity of an entity, the non-transitory, computer-readable storage medium being coupled to the data bus, the computer program code interacting with a plurality of computer operations and comprising instructions executable by the processor and configured for: parsing entity identifier information from a plurality of distributed data sources, the parsing generating a plurality of entity identifier elements from the entity identifier information; normalizing an entity identifier element of the plurality of entity identifier elements to provide a normalized entity identifier element; associating the normalized entity identifier element with the entity to resolve the identity of the entity; and, performing an eventually consistent entity resolution operation, the eventually consistent entity resolution operation updating distributed data associated with the entity, distributed data corresponding to entity identifiers impacted by subsequent changes to entity mappings being updated by the eventually consistent entity resolution operation to reflect a more recent entity mapping, the eventually consistent entity resolution operation returning a last updated resolution of an identity of a particular entity when no new updates are made to information associated with resolution of the identity of the particular entity. 8. The system of claim 7 , wherein the instructions executable by the processor are further configured for: performing a denormalization operation on a resolved entity identifier element, the denormalization operation providing a denormalized entity identifier element; and wherein the eventually consistent resolution operation uses the denormalized entity identifier element. 9. The system of claim 7 , wherein: resolving the identity of the entity is with respect to a particular security related event. 10. The system of claim 7 , wherein: the entity identifier information comprises at least one of a user identification factor, a user identifier factor, location data, information associated with an endpoint device, information associated with an edge device, information associated with an internal network, information associated with an external network and information associated with a resource entity. 11. The system of claim 7 , wherein: the entity identifier element has an associated entity identifier type; and, the associated entity identifier type comprises a representation of a particular attribute associated with an entity identifier element. 12. The system of claim 7 , wherein: the entity identifier element has an associated entity identifier type; the entity identifier element type comprises at least one of a simple mail transfer protocol (SMTP) address type, an exchange address type and an inferred type; and, normalizing the entity identifier element is specific to the entity identifier element type. 13. A non-transitory, computer-readable storage medium embodying computer program code for resolving an identity of an entity, the computer program code comprising computer executable instructions configured for: parsing entity identifier information from a plurality of distributed data sources, the parsing generating a plurality of entity identifier elements from the entity identifier information; normalizing an entity identifier element of the plurality of entity identifier elements to provide a normalized entity identifier element; associating the normalized entity identifier element with the entity to resolve the identity of the entity; and, performing an eventually consistent entity resolution operation, the eventually consistent entity resolution operation updating distributed data associated with the entity, distributed data corresponding to entity identifiers impacted by subsequent changes to entity mappings being updated by the eventually consistent event entity resolution operation to reflect a more recent entity mapping, the eventually consistent entity resolution operation returning a last updated resolution of an identity of a particular entity when no new updates are made to information associated with resolution of the identity of the particular entity. 14. The non-transitory, computer-readable storage medium of claim 13 , wherein the computer executable instructions are further configured for: performing a denormalization operation on a resolved entity identifier element, the denormalization operation providing a denormalized entity identifier element; and wherein the eventually consistent resolution operation uses the denormalized entity identifier element. 15. The non-transitory, computer-readable storage medium of claim 13 , wherein: resolving the identity of the entity is with respect to a particular security related event. 16. The non-transito