Identity At The Center is all about identity security in the context of identity and access management (IAM). With a combined 30+ years of IAM experience, hosts Jim McDonald and Jeff Steadman bring you news and topics about the identity management industry. Do you know who has access to what? Broug…
The Identity At The Center podcast is an excellent source of information, recommendations, and discussion for anyone interested in Identity and Access Management (IAM). Hosted by industry experts and veterans who have planned, built, and run Identity Programs for global organizations, this podcast offers valuable insights into the world of IAM.
One of the best aspects of this podcast is the expertise and experience of the hosts. They provide in-depth knowledge and practical advice based on their years of working in the field. This makes the content highly relatable for those new to the IAM space or transitioning from other roles. The mix of business and technical content ensures that listeners get a well-rounded understanding of IAM programs.
Another great aspect of this podcast is its educational value. Each episode dives into different aspects of IAM, covering topics such as identity governance, access management, privileged access management, and more. The hosts bring on guests who are also industry experts to share their insights and experiences. This variety keeps the episodes fresh and engaging.
As with any podcast, there are a few potential downsides to consider. Firstly, some listeners might find that certain episodes assume a certain level of knowledge about IAM concepts. While most episodes do a good job at explaining key terms and concepts, new listeners may need to do some additional research to fully grasp certain discussions.
Additionally, while the technical content is valuable for those looking for detailed insights into IAM technologies and implementations, it may be overwhelming for those seeking more high-level discussions or strategic perspectives on IAM programs.
In conclusion, The Identity At The Center podcast is an invaluable resource for anyone interested in IAM. With its experienced hosts, educational content, and insightful discussions with industry experts/veterans, this podcast offers a wealth of information for both beginners and seasoned professionals in the field. Whether you're listening during your runs or dedicating time specifically to learn about IAM programs, this podcast promises both an enjoyable experience and valuable knowledge acquisition.
In this episode of Identity at the Center, Jeff Steadman and Jim McDonald are joined by Alejandro Leal, Senior Analyst at KuppingerCole, live from the EIC 2025 stage in Berlin, Germany.Alejandro delves into the critical distinctions between misinformation and disinformation, exploring their historical context and how they manifest in today's technological landscape, particularly within social media and legacy media. He discusses the intent behind disinformation, often aimed at creating chaos or confusion, versus misinformation, which can be an unintentional spread of false or inaccurate information.Chapters:00:00:00 Defining Misinformation vs. Disinformation & Historical Context00:02:00 Introduction at EIC 2025 & Guest Welcome00:06:14 The Role of Intent, Generative AI, and Countermeasures00:12:15 Impact of Mis/Disinformation on Business, Politics, and Philosophy00:16:02 How Mis/Disinformation Intersects with Identity Management00:18:07 Balancing Anonymity, Privacy, and Truthful Content Online00:23:09 Connecting to Digital Identity, Verification, and Potential Solutions (AI Labeling, VCs)00:26:45 AI Guardrails, Free Speech vs. Hate Speech, and Authenticity00:29:24 Worst-Case Scenarios and the Global Impact of Mis/Disinformation00:31:24 Actionable Advice: Responsibility and Critical Thinking00:35:38 Book Recommendation: "The Question Concerning Technology"00:39:31 Wrapping Up and Final ThoughtsConnect with Alejandro: https://www.linkedin.com/in/alejandro-leal-a127bb153/The Question Concerning Technology (essay): https://bpb-us-e2.wpmucdn.com/sites.uci.edu/dist/a/3282/files/2018/01/Heidegger_TheQuestionConcerningTechnology.pdfConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords:IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Alejandro Leal, KuppingerCole, EIC 2025, Misinformation, Disinformation, Identity and Access Management, IAM, Digital Identity, Cybersecurity, Tech Podcast, Technology Ethics, Generative AI, AI Ethics, Truth in Media, Social Media Responsibility, Privacy Rights, Verifiable Credentials, Critical Thinking Skills, Fake News, Online Safety, Political Disinformation, Business Reputation, Philosophical Tech Discussions, Martin Heidegger, The Question Concerning Technology.
In this episode of Identity at the Center, hosts Jeff Steadman and Jim McDonald are joined by Jerome Thorstenson, IAM Architect with Salling Group, live from EIC 2025 in Berlin! Jerome shares his insights on B2B identity, the challenges of managing access for a complex supply chain, and the importance of an identity-first approach.Discover how Salling Group, operating major labels like Target and Starbucks, handles identity for thousands of employees and external partners. Jerome dives into the complexities of balancing security, user experience, and the practicalities of implementing IGA and ABAC.From navigating the challenges of data quality and high employee turnover to the nuances of transitioning between IGA systems, this episode offers valuable insights for identity practitioners.Chapter Timestamps:00:00:00 - B2B Identity Challenges00:02:14 - Welcome to Identity at the Center from EIC 202500:04:14 - Jerome's Journey into Identity00:05:19 - Salling Group Overview00:06:57 - Securing B2B - Jerome's Presentation00:10:54 - Controlling Access in B2B00:11:41 - Identity as a Product00:14:51 - The Role of the IAM Practitioner00:16:31 - ABAC as a Game Changer00:21:00 - Language Considerations in a European Context00:22:33 - Employee Turnover Challenges00:25:07 - IGA Implementation Insights00:29:28 - Identity Fabric Discussion00:31:21 - Jerome's Caribbean Background00:34:06 - Wrap-up and Contact InformationConnect with Jerome: https://www.linkedin.com/in/jetdk/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords:IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, EIC 2025, B2B Identity, Identity First Security, IAM, Identity and Access Management, Supply Chain Security, IGA, ABAC, Attribute-Based Access Control, Role-Based Access Control, Identity Fabric, Digital Identity, Cybersecurity, Data Quality, Employee Turnover, Caribbean
This episode is sponsored by SlashID. Visit https://www.slashid.com/idac to learn more.In this sponsored episode of the Identity at the Center Podcast, hosts Jeff and Jim interview Vincenzo Iozzo, CEO of SlashID, to discuss the current landscape and innovations they are making in Identity and Access Management (IAM). Vincenzo, who has a background in offensive security and experience at CrowdStrike, explains how SlashID uses Large Language Models (LLMs) to enhance visibility and posture beyond traditional Identity Governance and Administration (IGA) and Privileged Access Management (PAM) tools. Slash ID focuses on real-time detection and response to identity-based threats, addressing gaps that compliance-driven IGA systems miss. The episode also covers the advantages of SlashID's platform, including monitoring privileged identities, automating policy generation for least privilege, and integrating with existing security infrastructure. The conversation delves into the challenges of identity-related breaches and the importance of balancing compliance with robust security measures. Vincenzo also shares his experiences from the offensive security world, including hacking competitions and the evolving threat landscape.Timestamps00:00 Introduction to Real-Time Identity Security01:20 Welcome to the Identity at the Center Podcast02:18 Meet Vincenzo Iozzo, CEO of SlashID02:37 Vincenzo's Journey into Digital Identity04:26 The Genesis of SlashID08:16 Challenges in Identity Governance and Administration (IGA)14:41 The Prevalence of Identity-Related Breaches19:06 Detection and Response Strategies24:30 Lifecycle Issues Detection26:11 Remediation Strategies28:57 Integration with Existing Tools30:27 Customer Success Metrics34:10 Setting Up and Deploying SlashID35:48 Live Demo Walkthrough41:48 Challenges in Cybersecurity45:16 Final Thoughts and Contact InformationConnect with Vincenzo: https://www.linkedin.com/in/vincenzoiozzo/Learn more about SlashID: https://www.slashid.com/idacConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this episode of Identity at the Center, hosts Jeff Steadman and Jim McDonald welcome back Henrique Teixeira, SVP of Strategy at Saviynt, for his third appearance on the show. Henrique dives deep into his transition from Gartner analyst to IAM vendor executive, sharing candid insights on career changes, identity security trends, and what it's like to travel the world advocating for better identity practices.The conversation ranges from AI's evolving role in IAM to the nuances of building a strong network and social media presence. Henrique also previews his upcoming podcast and makes compelling analogies between IAM and Formula One, stand-up comedy, and even Rob Zombie lyrics.Whether you're a seasoned identity professional or new to the space, this episode offers valuable takeaways on navigating the IAM landscape, tackling app onboarding, and preparing for the rise of AI agents.Timestamps:00:00 - Henrique on trends and AI as stand-up comedy02:08 - Jim & Jeff intro, shoutout to sponsors04:59 - Henrique joins and talks about conferences07:31 - Henrique's Gartner to Saviynt transition10:00 - Leadership, strategy, and parallels with Formula One16:07 - Building a network and making career shifts21:09 - Travel life and routines for road warriors26:00 - LinkedIn influence and organic community growth30:31 - IAM set pieces: From Rob Zombie to AI34:00 - Predictions and trends for 202639:00 - AI agents and the new identity security frontier45:18 - Revisiting IAM basics before jumping ahead50:15 - Identity security vs. traditional IAM definitions55:23 - Henrique teases upcoming Saviynt podcast58:45 - AI in music and creative tools for musiciansConnect with Henrique: https://www.linkedin.com/in/bernardes/Learn more about Saviynt: https://saviynt.com/Conference Discounts!Identiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords:Henrique Teixeira, Saviynt, Identity at the Center, IAM podcast, identity security, digital identity, cybersecurity trends, AI in IAM, agentic AI, post-cloud identity, LinkedIn IAM influencers, IAM career advice, Gartner alumni, IAM conferences, EIC 2025, Identitiverse, Rob Zombie IAM, application onboarding IAM, IGA strategy, identity trends 2026, IAM predictions
Eve Maler returns to Identity at the Center for her seventh episode, bringing her signature insight and humor to a deep conversation about the state of digital identity. Jeff and Jim explore the gap between lagging IAM programs and next-gen technologies with Eve, who dives into her research on non-human identities, the power of identity services as products, and how martech and adtech intersect with customer IAM. Plus, get a preview of her EIC talk and the latest on Identi-Squabble, the identity game show set for Identiverse. Don't miss this packed and playful discussion!Timestamps:00:00 - Assume breach, assume tracking02:03 - Jim's IAM theory and gap analysis10:00 - Identi-Squabble game show preview13:00 - Eve joins, talks SXSW experience18:00 - Non-traditional Venn diagrams & stakeholder models22:00 - Personhood credentials and digital death27:00 - MarTech, AdTech, and the identity connection35:00 - Consent is dead: what it means for IAM47:00 - Treating identity as a product50:00 - Identity's role in organizational silos53:00 - Identity Security: what is it really?59:00 - Is “identity” big enough to hold all these qualifiers?01:00:00 - Lighter note: would you rather meet past or future self?Connect with Eve: https://www.linkedin.com/in/evemaler/Venn Factory: https://www.vennfactory.com/Conference Discounts!Identiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords:Eve Maler, IAM, Identity at the Center, Identiverse, Identisquabble, Martech, Adtech, Personhood Credentials, Identity Security, Consent Management, Non-Human Identity, Identity as Product, Digital Identity, Venn Factory, Identity Governance, IAM Strategy, South by Southwest Identity, Privacy by Design
In this episode of the Identity at the Center Podcast, hosts Jeff and Jim discuss with Simon Moffatt, founder of The Cyber Hut and identity researcher, the integral role of identity in security, productivity, and online services. They dive into Simon's journey in the identity space, the importance of fresh analytical tools, and his new book, 'IAM at 2035,' which delves into the future of identity security. The discussion also covers AI's impact on consulting and identity, the importance of non-human identities being tied to carbon life forms, and potential scenarios of AI taking over various roles. The episode wraps up with a light-hearted chat about potential fictional writing endeavors.Timestamps00:00 The Importance of Identity in Technology01:53 Podcast Introduction and Listener Engagement04:57 Conference Announcements and Exciting Events07:47 Guest Introduction: Simon Moffatt10:34 Simon's Journey into Identity and Access Management17:22 The Cyber Hut and Emerging Technologies19:19 Content Creation and Writing Process23:30 The Analyst Brief Podcast25:50 Moffatt's Laws of Identity Security32:40 The Importance of Accountability in AI33:07 Autonomous Decision Making and Accountability35:11 AI's Impact on Jobs and Consulting37:14 The Future of AI and Human Creativity40:22 Challenges and Opportunities in AI43:32 Introducing the Book: IAM at 203556:59 Writing and Creativity: Fictional Ideas01:06:15 Conclusion and Final ThoughtsConnect with Simon: https://www.linkedin.com/in/simonmoffatt/The Cyber Hut: https://www.thecyberhut.com/IAM Radar: https://iamradar.thecyberhut.com/The Analyst Brief Podcast: https://creators.spotify.com/pod/profile/the-cyber-hut/IAM at 2035 Book: https://us.amazon.com/IAM-2035-Future-Identity-Security-ebook/dp/B0D2516SQPConference Discounts!European Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords:IAM, identity and access management, Simon Moffatt, The Cyber Hut, IAM at 2035, Moffatt Laws, digital identity, identity security, AI accountability, AI and identity, identity podcast, Jeff Steadman, Jim McDonald, identity at the center, IdentiSquabble, identity consulting, future of IAM, identity trends, identity conference
Sponsored by Veza. Visit veza.com/idac for more info.In this sponsored episode of the Identity at the Center Podcast, hosts Jeff and Jim welcome Tarun Thakur, the co-founder and CEO of Veza, and Phil Venables, a strategic security advisor with Google and board director for Veza. The discussion spans the critical role of identity security in modern organizations, the innovative solutions offered by Veza's Access Graph, and the challenges posed by both human and non-human identities. They delve into the evolving landscape of privilege access management (PAM), the transformative potential of AI in identity security, and actionable steps organizations can take to achieve least privilege and reduce risk. The episode also highlights Veza's recent $108 million Series D investment, underscoring its mission to build the next-generation identity platform.Chapters00:00 Understanding Privilege in Organizations02:10 Introduction to the Podcast03:13 Meet the Experts: Tarun and Phil03:46 Tarun's Journey into Identity05:24 Phil's Background in Identity08:35 The Vision and Differentiation of Veza11:38 Announcing Major Investments13:48 Challenges in Identity Security27:48 Challenges of Privilege Access Management28:09 The Evolution of Privilege Access30:25 Session Recording and Management in Modern Infrastructure33:17 The Role of Access Graph in Identity Management44:47 Leveraging AI in Identity Security52:50 Final Thoughts and Future DirectionsConnect with Tarun: https://www.linkedin.com/in/tarunthakur/Learn more about Veza: https://veza.com/idacConnect with Phil: https://www.linkedin.com/in/philvenables/Phil's Blog: https://www.philvenables.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.com
In this episode of the Identity at the Center podcast, hosts Jeff and Jim dive into the complexities and challenges of Identity and Access Management (IAM). They discuss the cumbersome user experience of Multi-Factor Authentication (MFA) setups, assess the value of IAM maturity programs, and highlight the changing landscape of authentication standards over time. Listener questions address topics such as the future of passwords, the importance of user experience, AI's impact on IAM, budget-conscious IAM strategies for smaller companies, and the dream guests for the show. The episode concludes with a lighter note on what superpowers an IAM superhero might have, emphasizing the role of clear communication in combating the confusion rampant in IAM.Timestamps00:00 The Hassles of Multi-Factor Authentication01:03 Welcome to the Identity at the Center Podcast01:18 The Value of IAM Maturity Assessments03:23 Evolving Standards in Authentication10:55 Upcoming Conferences and Events15:56 Listener Mailbag: IAM Questions Answered27:26 Replicating Manual Processes with Automation28:36 The Importance of User Experience in Automation29:51 Dynamic Access and Self-Service Models31:39 Strategic IAM Program Management33:03 AI's Impact on Identity Governance43:11 Building Strong IAM Programs on a Budget47:07 Dream Guests and IAM Superpowers54:22 Listener Questions and Wrap-UpConference Discounts!European Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
In this episode of the Identity at the Center Podcast, hosts Jeff and Jim enthusiastically announce that their podcast is now the official podcast of IDPro. Heather Flanagan, the Executive Director of IDPro, joins the discussion to share insights about the previous IDPro Show, the time and resource constraints of producing it, and the transition to making Identity at the Center the official IDPro podcast. They also discuss her global travels and participation in various identity-related conferences, including EIC and Identiverse. They also delve into the ID Pro's Slack community, the CIDPRO certification, and the Identity Salon initiative. The episode concludes with discussions about upcoming personal travel plans and their experiences in organizing and attending identity industry events.Chapters00:00 Exciting Announcement: Official Podcast of IDPro01:54 Introduction and Casual Banter03:23 Conference Season and Identity Beers06:39 Welcoming Heather Flanagan08:22 IDPro and Community Building15:05 The CIDPRO Certification19:59 The Identity Salon27:30 IDPro's Global Presence and Challenges28:54 IDPro at EIC: Workshops and Job Descriptions31:15 Addressing the Identity Talent Shortage33:14 The Origin and Culture of Identity Beers35:07 IDPro's Role at Identiverse38:55 The Rigors of the CIDPRO Exam40:26 Balancing Travel and Personal Life46:09 Vacation Planning Styles52:40 Closing Remarks and Future PlansConnect with Heather: https://www.linkedin.com/in/hlflanagan/Learn more about IDPro: https://idpro.org/The Identity Salon: https://theidentitysalon.com/Identibeer tracker - https://github.com/martin-sandren-conf/iamconfs/blob/main/Meetups_and_IdentiBeers_2025_springConference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
In this episode of Identity at the Center, Kristin Olsen, Director of Product Management for the guest travel experience at Alaska Airlines, shares insights into the evolving world of digital identity in the travel industry. Kristin discusses the vision for seamless travel using face or phone for identity verification, collaboration with TSA, and future trends like AI and mobile IDs. The conversation also delves into the challenges and opportunities of enhancing guest experience, risk management, and the importance of strong IAM practices. Stick around for a lighter note as Kristin reveals her background in improv comedy and how it has influenced her professional journey. Plus, don't miss exclusive conference codes for upcoming events!Chapters00:00 Introduction to Digital Identity in the Travel Industry01:26 Welcome to the Identity of the Center Podcast01:48 Discussing MFA and Adaptive Authentication07:23 Conference Announcements and Identity Beers12:23 Introducing Kristin Olsen from Alaska Airlines12:43 Kristin Olsen's Role and Insights on Digital Identity30:05 Engineering Excitement in the Airline Industry30:42 Enhancing Guest Experience with Technology33:03 Digital Identity and Day of Travel35:05 Future Trends in Identity Management44:27 The Role of AI in Product Management53:09 Kristin's Improv Comedy Background01:01:55 Wrapping Up and Final ThoughtsConnect with Kristin: https://www.linkedin.com/in/kristin-olsen-b252032/Conference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
Join Jeff and Jim in this episode of the Identity at the Center Podcast as they delve into the upcoming Identity Management Day 2025. Featuring guest Jeff Reich, Executive Director at the Identity Defined Security Alliance (IDSA), this episode unpacks the significance of non-human identities, AI in identity management, and the existential questions surrounding identity. The discussion covers upcoming events, awards, and what to expect from Identity Management Day, while also exploring the potential impact of Quantum Computing. Don't miss out on this in-depth conversation that combines humor with profound insights into the evolving landscape of identity management.Chapters00:00 Introduction and Identity Concerns01:30 AI and Podcasting01:59 AI Limitations and Future05:41 Conference Announcements07:30 Identity Management Day 202509:35 Global Identity Trends18:39 Existential Identity and AI27:29 The Concept of Identity in Technology28:05 Machine Identity and Its Implications29:30 Human vs. Machine Identity31:07 The Future of Identity with AI and Quantum Computing38:13 Identity Management Day Awards45:17 Fun and Lighthearted Discussion51:35 Conclusion and Final ThoughtsConnect with Jeff: https://www.linkedin.com/in/jreich/Learn more about the IDSA: https://www.idsalliance.org/Register for Identity Management Day 2025: https://www.accelevents.com/e/Identity-Management-Day-2025-Virtual-ConferenceConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords: Identity Management, AI, Non-Human Identities, Identity Defined Security Alliance, IDSA, Quantum Computing, Identity Management Day 2025, Identity at the Center Podcast.
Join AI Jeff and AI Jim on 'Identity at the Center' as they explore the most outrageous and entertaining innovations in identity and access management (IAM) for this special April Fools' episode. From 'Identity at the Center - After Dark' on Diz-Prime-flix to the rise of 'Carrier Pigeon Authentication,' this episode promises a wild ride through the absurdities of digital identity. Don't miss highlights like toaster authentication challenges, karaoke biometric logins, and the surreal 'Session_Expired' club experience. Stay secure and get ready to laugh out loud with the most bizarre IAM content you've ever seen!Chapters00:00:00 Welcome & Introduction00:01:00 Special Announcement: 'Identity at the Center - After Dark' on Diz-Prime-flix00:02:00 News: Biometric Authentication Requires Singing Karaoke00:03:00 Sponsor: SonataSecure - Musical Authentication00:04:00 Sponsor: WhisperGuard - Secure Messaging with AuraScan00:05:00 News: Identity Management Replaced by Carrier Pigeons & Caffeine Level Access Control00:06:00 Sponsor: Fortress of Fabulousness Firewall00:07:00 Sponsor: Zeus's Zero Trust Zenith00:08:00 News: Digital Certificates Require Imaginary Friend Permission & Interpretive Dance Passphrases00:09:00 Sponsor: EgoSphere - Decentralized Identity Platform00:10:00 Sponsor: RoleRescue - Rehabilitate RBAC Systems00:11:00 News: Sentient Corporate Directory 'Dirk' Playing Matchmaker00:12:00 Sponsor: Omni-Identity Nexus - Transdimensional Identity00:13:00 Sponsor: Packet Politeness Protocol00:14:00 News: Principle of Extreme Least Privilege (PELP) & Spirit Animal Check Authentication00:15:00 Sponsor: The Sentient Security Snail00:16:00 News: Quantum Entanglement Authentication & PAM Crowns00:17:00 News: Mandatory Offboarding Serenades00:18:00 Sponsor: AccessStream & Permission Patrol00:19:00 Sponsor: The Great Identity Governance Swamp Romp Webinar00:20:00 News: Fortune Cookie Authentication & Jim's Consciousness Theory00:21:00 City Correspondent Tyler: Session_Expired Club Entry Requirements00:22:00 City Correspondent Tyler: Explaining Human SAML Assertions00:23:00 City Correspondent Tyler: Human SAML Assertions & Club Details00:24:00 City Correspondent Tyler: Session_Expired Club Summary00:25:00 Closing Remarks & OutroConnect with us on LinkedIn:Real Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Real Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords: Identity and Access Management, digital identity, cybersecurity, AI Jeff, AI Jim, alternative realities, IAM news, April Fool's.
In this episode of the Identity at the Center Podcast, hosts Jeff and Jim delve into the intricacies of compliance, governance, and cybersecurity with special guest and colleague Kia Smith, a director in RSM's Security and Privacy Risk Consulting practice. They explore the foundational role of compliance activities such as Sarbanes-Oxley, the crucial need to align governance with security, and the rising complexity of regulatory environments driven by third-party dependencies. Kia provides valuable insights into the Cybersecurity Maturity Model Certification (CMMC) and its widespread implications for industries beyond defense. The discussion also touches upon the relevance of legal language in contracts to manage risk effectively, the role of AI in compliance frameworks, and the importance of continuous compliance validation.Chapters00:00 Understanding Compliance: Beyond Check-the-Box01:58 Introduction to the Podcast03:46 The Importance of a Well-Rounded Identity Professional06:38 Upcoming Conferences and Discount Codes08:51 Meet Our Guest: Kia Smith09:36 Kia's Journey from Law to Cybersecurity13:50 The Role of a Director in Consulting19:37 Compliance vs. Security: A Balanced Approach21:41 The Evolving Regulatory Landscape25:00 Managing Third-Party Risks32:21 Setting IAM Security Standards32:54 Cloud Service Offerings and FedRAMP34:07 Procurement and Security Collaboration34:45 Contractual Security Requirements35:24 Business Involvement in Security Decisions36:26 Reviewing Security Practices37:10 Governance and Risk Acceptance41:12 Impact of Regulations on Industries42:58 CMMC and Its Broad Implications51:30 AI in Compliance and Cybersecurity55:33 Pickle Pops and Lighthearted FarewellConnect with Kia: https://www.linkedin.com/in/kia-smith-mpp-cisa/Learn more about RSM's Digital Identity Consulting: https://rsmus.com/services/risk-fraud-cybersecurity/cybersecurity-business-vulnerability/identity-and-access.htmlConference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
This episode is sponsored by Permiso. Visit permiso.io/idac to learn more.In this sponsored episode of the Identity at the Center Podcast, hosts Jeff and Jim sit down with Paul Nguyen, co-founder and co-CEO of Permiso, to discuss the critical role of identity security in modern information security. Paul shares insights into the history of identity threats, the rise of identity-focused attacks like Scattered Spider and LLM Jacking, and the importance of real-time identity monitoring for both human and non-human identities across cloud and on-prem environments. The episode explores how Permiso is positioned in the market to provide comprehensive identity threat detection and response (ITDR) and identity security posture management (ISPM), offering advanced visibility and proactive measures against emerging threats.Chapters00:00 Introduction to Security Vendors00:50 Welcome to the Identity at the Center Podcast01:30 Sponsored Spotlight: Permiso02:14 Meet Paul Nguyen, Co-Founder of Permiso03:34 The Importance of Identity in Security05:35 Permiso's Unique Approach to Identity Security07:36 Real-Time Monitoring and Threat Detection09:23 Challenges and Solutions in Identity Security15:16 Modern Attacks and Identity Threats25:56 The Role of Honeypots in Security Research26:49 Challenges of Maintaining Security27:15 Honeypots and Breach Detection27:46 Dwell Time and Reconnaissance28:34 Password Complexity and Monitoring Gaps29:24 Roles and Responsibilities in Identity Security29:49 Unified Identity Security Teams30:57 Emerging Threats and Joint Efforts32:49 Permiso's Role in Identity Security34:10 Detection and Response Strategies36:11 Managing Identity Risks36:51 Combining Prevention and Detection39:44 Real-World Applications and Challenges51:17 Personal Insights and Final ThoughtsConnect with Paul: https://www.linkedin.com/in/paulnguyen/Learn more about Permiso: https://permiso.io/idacConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.com and watch at idacpodcast.tvKeywords:identity security, real-time monitoring, IAM, cybersecurity, identity exploitation, modern attacks, insider threats, honeypots, organizational structure, Non-Human Identities, Identity Security, Permiso, Risk Management, Insider Threat, Shadow IT, Identity Graph, ITDR, ISPM, Cybersecurity
In this episode of the Identity at the Center Podcast, Jeff and Jim discuss the upcoming European Identity and Cloud Conference (EIC) with Warwick Ashford, Senior Analyst at KuppingerCole Analysts. Warwick outlines the differences between digital identity and identity and access management (IAM), emphasizing the importance of managing non-human identities in today's digital world. The episode covers key themes for this year's EIC, including AI's role in cybersecurity, decentralized identity, identity ecosystems, and inclusivity. Warwick also highlights the extensive agenda comprising over 200 presentations, multiple workshops, and notable speakers from global standards bodies and cybersecurity experts. Tips for first-time attendees and the exciting social events, such as the Spree River cruises, are also discussed. Both in-person and virtual attendance options are available, ensuring no one misses out on the valuable insights and networking opportunities.Chapters00:00 Understanding Digital Identity vs. Identity and Access Management01:55 Welcome to the Identity at the Center Podcast02:03 Celebrating Milestones and Consistency03:54 Conference Discount Codes and Announcements07:13 Introducing Our Guest: Warwick Ashford07:33 Warwick's Journey into Cybersecurity and Identity11:59 The Importance of Managed Services in Cybersecurity13:34 Previewing the European Identity and Cloud Conference (EIC)16:03 Who Should Attend EIC and Why19:03 Main Themes and Tracks at EIC 202326:14 The Future of Identity Ecosystems31:59 Digital Credential Services Workshop32:22 Focus on Identity Fabrics32:52 Keynote Sessions and Presentations33:15 Involvement of Various Organizations33:56 Award Winners and Their Contributions35:34 Virtual Ticket Option and Its Benefits37:41 After Hours Events and Networking40:17 EIC Awards and Finalists42:06 Notable Speakers and Topics44:46 Tips for First Timers49:51 AI in Cybersecurity51:41 Digital Identity vs. Identity and Access Management57:07 Identity's Role in Cybersecurity01:00:13 Conclusion and Wrap-UpConnect with Warwick: https://www.linkedin.com/in/warwickashford/Conference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywordsIdentity, Cybersecurity, EIC, Managed Services, Decentralized Identity, Networking, Conferences, Identity Ecosystems, Workshops, Keynotes, EIC, digital identity, cybersecurity, virtual ticket, networking, awards, keynote speakers, AI, IAM, conference tips
In this episode of the Identity Center Podcast, Jim McDonald discusses policy enforcement, adaptive authentication, and fraud prevention with Patrick Harding, Chief Product Architect at Ping Identity. They delve into how policy enforcement can be managed locally to maintain performance for SaaS applications while ensuring greater flexibility using standards like AuthZEN. Jim and Patrick also cover the benefits and challenges of using SAML and OpenID Connect for single sign-on (SSO) and explore the future role of AI agents in identity and access management. Additionally, they provide valuable tips for attending identity-focused conferences in Berlin and Las Vegas.Chapters00:00 Introduction to Policy Enforcement01:29 Welcome to the Identity Center Podcast01:54 Conference Discount Codes03:03 Guest Introduction: Patrick Harding from Ping Identity03:54 Patrick's Journey into Identity06:56 Challenges in Adaptive Authentication10:50 SaaS Applications and Policy Enforcement21:18 Advanced Fraud Analytics29:23 Integrating On-Premise and Cloud Applications30:35 Effort and Challenges in Modernizing Applications31:22 The Shift to OpenID Connect32:22 SaaS Applications and Single Sign-On Costs33:52 AI Agents and Adaptive Authentication34:54 The Future of AI Agents in Business39:15 Delegation and Authentication for AI Agents43:46 The Impact of AI on Jobs and Efficiency47:11 Advice for Future Careers in a Tech-Driven World52:57 Conference Tips and Final ThoughtsConnect with Patrick: https://www.linkedin.com/in/pharding/Conference Discounts!European Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
In this episode of the Identity at the Center Podcast, Jeff and Jim tackle questions from listeners around the world, including: "What certifications or skills would you recommend focusing on in 2025?" "What are some of the most common mistakes companies make when rolling out MFA, and how can they avoid them?" and "How should small and mid-sized businesses approach IAM when they don't have the same resources as large enterprises?" Thanks to Ryan, Diego, and Omar for sending these in!Chapters00:00 The Unsustainable Strategy of Heroism01:48 Introducing the Identity at the Center Podcast02:04 Travel Tales and Tech Tips09:57 Listener Mailbag: Career Advice for IAM Professionals19:20 Global Listener Stats and MFA Rollout Mistakes24:30 Exploring MFA Options24:56 Common MFA Mistakes25:13 The Importance of Coverage25:44 Humorous Interlude26:00 Understanding MFA Factors26:29 Avoiding Knowledge-Based Authentication26:50 Self-Serve MFA Resets27:31 Productizing IAM28:35 Listener Question: SMB IAM Strategies31:35 Balancing Security Investments32:07 Staffing and Technology Considerations35:54 The Role of Cyber Insurance43:10 Historical Figure Swap47:10 Wrapping Up and Listener AppreciationConference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
This episode is sponsored by Beyond Identity. Visit https://www.beyondidentity.com/idac to learn more.In this sponsored episode of the Identity at the Center podcast, Jeff and Jim host Sarah Cecchetti, Director of Product Strategy at Beyond Identity. They discuss the transition away from password-based systems to more secure, passwordless authentication methods. Sarah explains the unique differentiators of Beyond Identity, their integration with security tools, and how they leverage cryptographic keys stored in device secure enclaves. The conversation covers user resistance to biometrics, deployment strategies, and the importance of shared security signals. Sarah also shares personal anecdotes about her backpacking trip across Spain and informs listeners about upcoming events like BeyondCon, featuring live demos and a private performance of Broadway hits.Chapters00:00 Introduction to Passwordless Authentication00:34 What Makes Beyond Identity Unique?01:35 Welcome to the Identity at the Center Podcast02:01 Introduction of Sarah Cecchetti03:04 Beyond Identity's Approach to Authentication09:31 Balancing Security and Usability16:00 Use Cases and Customer Success Stories19:15 Technical Insights and Future Directions24:32 Understanding Customer Policy Changes24:48 Real-World Scenarios of Shared Signals25:10 Implementing Shared Signals in Security27:47 Policy Simulation and Auditing28:31 Addressing Identity-Based Threats29:57 The Future of Passwordless Security33:56 Challenges in Identity Deployment37:49 BeyondCon and Industry Events41:12 Personal Adventures and Reflections46:42 Final Thoughts and FarewellConnect with Sarah: https://www.linkedin.com/in/sarahcecchetti/Learn more about Beyond Identity: https://www.beyondidentity.com/idacBeyond Con: https://insights.beyondidentity.com/beyondcon-west-2025/aboutConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
Get an insider's look at Identiverse with special guest Andi Hindle, the conference chair, on this episode of 'Identity at the Center.' Andi joins Jeff and Jim to discuss the upcoming Identiverse 2025 in Las Vegas, highlighting key sessions, workshops, and keynote speakers. They explore the significance of industry conferences, delve into non-human identities, and more. Plus, tips for maximizing your conference experience and enjoying Las Vegas!Chapters00:00 Engaging with Industry Experts01:26 Welcome to the Identity at the Center Podcast01:38 Morning Banter and LinkedIn Insights02:13 Gartner's Framework on Non-Human Identities06:14 Conferences and Networking Opportunities06:43 Upcoming Identity and Cloud Conferences08:42 Identiverse 2025 Preview with Andi Hindle15:53 The Importance of New Voices in Identity20:44 Navigating the Identiverse Agenda36:19 AI Experimentation and Side Projects37:12 Pre-Registration and Conference Workshops39:44 Key Workshop Topics and Industry Trends48:00 Keynote Speakers and Main Stage Highlights54:33 After Hours and Networking Events58:07 Exploring Las Vegas: Tips and Recommendations01:08:32 Final Thoughts and Wrap-UpConnect with Andi: https://www.linkedin.com/in/ahindleIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Conference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
In this episode of the Identity as a Center podcast, Jeff and Jim interview Andrew Cameron, Technical Fellow in Identity and Access Management at General Motors. The discussion covers the importance of speed and security in mission-critical automotive applications, the evolution and impact of identity standards, and the integration of modern identity solutions in vehicles. Andrew also shares insights on the challenges of customer identity management, the complexity of B2B environments, and the role of AI in the future of identity. The conversation touches on GM's move towards passkeys, the centralized management of customer profiles, and the rise of car accounts.Chapters00:00 Introduction to Mission-Critical Identity02:03 Welcome to the Identity as a Center Podcast02:20 The Value of IDPro Membership06:18 Upcoming Conferences and Discount Codes11:39 Introducing Andrew Cameron from General Motors12:26 Andrew Cameron's Journey in Identity17:22 The Evolution of Identity Standards19:09 Adopting Passwordless Authentication at GM23:10 Challenges and Benefits of Passwordless Adoption24:55 Role and Responsibilities of a Technical Fellow28:32 Customer Identity Management at GM30:00 Establishing a Scalable Authentication Platform31:09 Centralizing Profile Information32:05 Challenges and Benefits of Centralized Profiles33:18 Mentorship and Collaboration in Tech34:50 Complexities of B2B Identity Management38:56 Global Privacy and Language Challenges41:32 Enhancing Vehicle User Experience with Identity46:50 Speed and Security in Vehicle Identity Systems53:52 Future of AI in Automotive Industry57:28 Detroit Pride and Personal Insights01:02:20 Conclusion and Final ThoughtsConnect with Andrew: https://www.linkedin.com/in/kandrewcameron/Conference Discounts!Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
This episode is sponsored by IAMONES. Visit https://iamones.ai/idac to learn more.In this sponsored episode of the Identity at the Center podcast, Jim welcomes Andrea Rossi from IAMONES, an innovative conversational identity governance platform. They discuss the revolutionary approach IAMONES takes in simplifying identity and access management (IAM) using large language models (LLM). Andrea explains how IAMONES aims to eliminate the need for complex roles and middle layers by providing business users with direct and comprehensible access to system functions. The discussion dives into the practical applications of LLM in enhancing existing IAM systems, particularly focusing on making permissions and entitlements more understandable and manageable for business users, auditors, and administrators. The episode also highlights the ease of integrating IAMONES with existing identity infrastructures and offers insights into reducing the burden of maintaining multilingual UIs. Tune in to learn more about the potential of AI in transforming IAM.Chapters00:00 Introduction to Simplifying Access Management02:11 Welcome to the Identity at the Center Podcast02:23 Sponsor Spotlight: Andrea Rossi from IAMONES05:04 The Story Behind the Name 'IAMONES'08:16 Conversational Identity and Large Language Models12:35 Revolutionizing IGA with AI17:22 The Future of AI in Identity Management23:08 Enhancing IGA Configuration with Natural Language31:37 Understanding Outcomes in Identity Governance32:09 The Shift from RBAC to PBAC33:35 Challenges with Role Explosion34:02 Introducing Temporal Identity Graph35:27 Simplifying Access for Business Users39:36 Ensuring Proper Data Visibility46:06 Implementing the Identity Gateway48:45 Customer Feedback and Success Metrics52:07 Future of AI in Identity Management56:21 Travel Tips for Visiting ItalyConnect with Andrea: https://www.linkedin.com/in/arossi67Learn more about IAMONES: https://iamones.ai/idacRamones - Blitzkrieg Bop (Official Music Video): https://www.youtube.com/watch?v=268C3N2dDYkMicrosoft's Satya Nadella on the evolution of SaaS: https://www.youtube.com/watch?v=a_RjOhCkhvQ&t=22sConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
Join Jeff and Jim on the Identity at the Center podcast as they speak with Matt Franko, Principal at RSM, about the critical role of identity in cybersecurity. Matt discusses how risk management and digital identity intersect, providing insights into top attack vectors like phishing and weak passwords. They delve into the importance of strong identity practices and share real-world examples of risk scenarios. The episode also touches on the organizational structure of IAM, the significance of user awareness, and the potential of AI and cloud in enhancing security. As a special treat, Matt shares his passion for coaching youth sports, highlighting the values and lessons learned from the field.Chapters00:00 Simplifying Tech for Executives00:46 Top Attack Vectors in Cybersecurity02:07 Podcast Introduction and Big News02:34 CyberArk Acquires Zilla Security04:25 Guest Introduction: Matt Franko07:05 Matt's Journey into Cybersecurity12:28 Understanding Cyber Strategy14:06 Risk Management in Digital Identity26:29 The Role of Identity in Cybersecurity31:29 Buzzwords and Trends in Cybersecurity36:51 The Risk of Excessive Access38:33 Minimizing the Attack Surface39:37 The Holy Wars of Identity Management40:02 Where Should IAM Reside?41:08 The Importance of Leadership in IAM43:38 Shared Ownership Model in IAM47:52 The Role of the CISO56:05 Coaching and Leadership in Sports01:08:00 Closing Thoughts and FarewellConnect with Matt: https://www.linkedin.com/in/matthew-franko-20b6bb7/Learn more about RSM: https://rsmus.com/services/risk-fraud-cybersecurity/cybersecurity-business-vulnerability/identity-and-access.html?cmpid=ola:45559-idac:bb01Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
In this episode of the Identity at the Center Podcast, hosts Jeff and Jim dive deep into group management, AI, and organizational governance with David Johnson, Principal PM Architect at Microsoft. Join the conversation as David shares his extensive experience managing Microsoft 365, Entra, and SharePoint permissions, and provides best practices for guest management and labeling sensitive data. David also discusses how these paradigms shift with the introduction of AI-driven tools like Copilot. Tune in to understand the essential steps to secure your IT infrastructure and ensure efficient data management.Chapters00:00 Introduction to AI and Permissions00:29 Reflecting on SharePoint Innovations00:59 Group Membership Management01:49 Podcast Introduction and Baseball Talk04:25 Upcoming Conferences and Discount Codes08:19 Interview with David Johnson12:40 Managing Microsoft 365 Groups24:29 Understanding Guest Invitations in Microsoft Environments25:09 Defining Guests and Their Access26:45 Common Mistakes in Guest Setup28:22 Lifecycle Management for Guests29:53 Delegated Authority and Guest Management32:28 SharePoint and Teams Integration38:50 Future Trends in Identity and Access Management43:29 Reflections on Microsoft Leadership45:16 Personal Insights and Travel Tips49:22 Conclusion and FarewellConnect with David:https://www.linkedin.com/in/david-johnson-a12909196/GMM GitHub repo is available to the public: Https://github.com/microsoftgraph/group-membership-management-tenantLearn more or for installation support: Contact GMM inquiries atGMMinquiries@microsoft.comConference Discounts!Gartner IAM Summit - CodeIDAC425 saves 425€:https://www.gartner.com/en/conferences/emea/identity-access-management-ukEuropean Identity and Cloud Conference 2025 - Use codeidac25mko for 25% off:https://www.kuppingercole.com/events/eic2025?ref=partneridacIdentiverse 2025 - Use code IDV25-IDAC25 for 25% off:https://identiverse.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web athttp://idacpodcast.com
In this episode of the Identity at the Center podcast, hosts Jeff and Jim discuss the vital role of user access reviews, device identity, and the evolving landscape of Identity Access Management (IAM) with guest Stephen Washington, Head of IAM at Discover Financial. The conversation delves into regulatory compliance, the use of AI in IAM, and practical steps for improving user access certifications. They also explore the importance of managing service accounts, innovations in IGA, and the role of identity in modern cybersecurity frameworks. The episode wraps up on a lighter note with a chat about fitness challenges like Tough Mudder and personal cheese preferences for grilled cheese sandwiches. Chapters 00:00 Introduction to Regulatory Compliance in Financial Services 01:54 Welcome to the Identity at the Center Podcast 02:07 Exploring Device Identity 03:19 The Role of Identity in Modern Security 06:44 Engaging with the IAM Community 10:31 Upcoming Conferences and Events 13:58 Interview with Stephen Washington 25:36 The Importance of User Access Reviews 33:55 Backend Changes in IGA Systems 35:04 The Concept of Identity Data Lake 36:37 AI and Identity Fatigue 37:22 Importance of Identity Hygiene 38:32 Challenges with Access Reviews 39:42 Regulatory Compliance and Policy Changes 41:06 Advice for Practitioners on Access Reviews 45:47 NYDFS and User Access Reviews 47:41 The Role of NIST Cybersecurity Framework 52:35 Training Auditors and Policy-Based Access Control 57:38 Fitness and Stress Relief 01:05:38 Grilled Cheese and Final Thoughts Connect with Stephen: https://www.linkedin.com/in/stephen-washington-jr-5569b57/ Gartner IAM Summit - Code IDAC425 saves 425€: https://www.gartner.com/en/conferences/emea/identity-access-management-uk European Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridac Identiverse 2025 - Use code IDV25-IDAC25 for 25% off: https://identiverse.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
Jeff and guest co-host Sean O'Dell, an identity expert from Disney, discuss the importance of knowing and cleaning data to optimize identity and access management. They delve into topics like Shared Signals Framework (SSF) and Continuous Access Evaluation Profile (CAEP), and how these standards are paving the way for event-driven IAM. They also touch on the complexities of verifying identities, role management, and session management in a zero-trust environment. The episode includes insights into the future of identity practices, emphasizing the shift from runtime to event-driven models and the critical role of accurate data. Chapters 00:00 Introduction: The Importance of Data Integrity 02:16 Welcome to the Identity at the Center Podcast 03:12 Catching Up with Sean O'Dell 09:23 The Role of Identity in Business 12:36 Understanding Shared Signals Framework (SSF) and CAEP 20:49 The Future of Identity and Access Management (IAM) 32:36 Continuous Management and Identity Verification 33:33 Contextual Signals and Security Regulations 34:44 Data Hygiene and Business Process Challenges 37:52 Centralizing Data for Better Identity Management 44:08 Session Management and Access Control 50:04 Zero Trust and Ephemeral Access 55:51 Defining Continuous Identity 56:50 Fun and Lighter Notes Connect with Sean: https://www.linkedin.com/in/seanodentity/ European Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridac Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
This episode is sponsored by Andromeda Security. Learn more at https://www.andromedasecurity.com/idac Join Jeff and Jim on the Identity at the Center podcast as they chat with Ashish Shah, co-founder and Chief Product Officer of Andromeda Security. In this sponsored episode, Ashish dives deep into the importance of solving identity security problems, especially in cloud and SaaS environments. He explains how Andromeda's AI-powered platform focuses on both human and non-human identities, offering use case-driven solutions for security maturity. The discussion covers challenges, AI and machine learning applications, and practical insights into permissions management, risk scoring, just-in-time access, and more. Stay tuned for interesting takes on identity security and some fun recommendations for your reading/listening list. Chapters 00:00 Introduction to Identity as a Data Problem 00:41 Overview of Andromeda's Capabilities 01:27 Welcome to the Identity at the Center Podcast 02:03 Meet Ashish Shah, Co-Founder of Andromeda 02:37 The Genesis of Andromeda 03:33 Addressing Identity Security Challenges 05:29 Andromeda's Approach to Identity Security 09:44 Measuring Success with Andromeda 12:21 Andromeda's Market Position and Ideal Customers 18:35 The Rise of Non-Human Identities 28:42 Understanding Identity and Accounts in AWS 28:54 The Concept of Incarnations in Identity Management 29:42 Human and Non-Human Identities 32:13 Challenges in Authorization and Access Control 32:44 Implementing Zero Trust and Least Privilege 35:10 Role of AI and Machine Learning in Identity Management 36:21 Risk Scoring and Behavioral Analysis 39:04 Customer Data and Model Training 41:08 Explainability and Security of AI Models 46:14 Customer Influence on Model Tuning 49:03 Andromeda's Offer and Final Thoughts 51:34 Book Recommendations and Closing Remarks Connect with Ashish: https://www.linkedin.com/in/ashishbshah/ Learn more about Andromeda: https://www.andromedasecurity.com/idac Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast Keywords: Identity security, IAM, cybersecurity, artificial intelligence, AI, machine learning, ML, non-human identities, NHI, just-in-time access, JIT, IGA, privileged access management, PAM, identity threat detection and response, ITDR, cloud security, SaaS security, Andromeda Security, Ashish Shah, IDAC, Identity at the Center, Jim McDonald, Jeff Steadman
In this episode of the Identity at the Center podcast, hosts Jeff and Jim welcome Martin Kuppinger, Founder and Principal Analyst at KuppingerCole, for his fifth appearance. The discussion delves into the evolving intersection of AI and identity, emphasizing the critical need for reliable identity verification as technology advances. The conversation also touches on the future of identity systems, including the potential of decentralized identity solutions and the role of AI in enhancing identity management. Martin shares insights on the European identity landscape, promoting reusable identity verification and highlighting emerging trends such as policy-based access and natural language interfaces. The episode wraps up with travel tips for Berlin and a look ahead at the European Identity and Cloud Conference (EIC) 2025. Chapters 00:00 Introduction to AI and Identity 02:09 Welcome to the Identity at the Center Podcast 02:15 Upcoming Events and Personal Anecdotes 06:18 Guest Introduction and Main Discussion 07:03 Identity Verification Trends and Challenges 10:04 The Future of Identity Verification 23:27 Enterprise Use Cases and Solutions 28:05 AI Agents and the Future of SaaS 28:59 Introduction to Martin the Chatbot 29:23 The Role of AI in Enhancing Search Functionality 31:05 AI's Impact on Various Industries 31:49 Challenges and Limitations of AI 34:10 The Future of AI in Identity Management 40:40 Leadership Compass for Access Governance 45:28 Microsoft's Strategy in Identity and Security 56:19 Travel Tips for Germany 01:03:01 Conclusion and Final Thoughts Connect with Martin: https://www.linkedin.com/in/martinkuppinger/ The 2025 Identity Fabric and IAM Reference Architecture: https://www.kuppingercole.com/research/an80978/the-2025-identity-fabric-and-iam-reference-architecture Webinar Recording: Identity Fabric and Reference Architecture 2025: Future-Proofing your IAM Access may require registration and maybe a KC membership (for the report). Information about KC Memberships: Membership Packages | KuppingerCole European Identity and Cloud Conference 2025 - Use code idac25mko for 25% off: https://www.kuppingercole.com/events/eic2025?ref=partneridac Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com Keywords Identity Verification, AI, EIC 2025, Digital Identity, Trust, Decentralized Identity, User Experience, Onboarding, Security, Technology Trends, AI, identity management, access governance, data extraction, future trends, Germany travel tips, IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Martin Kuppinger
Welcome to the Identity at the Center podcast! In this episode, hosts Jeff and Jim dive deep into modern identity architecture with guest Ian Glazer. They discuss topics such as the importance of policy, data orchestration, and the evolving landscape of identity and access management (IAM). Ian shares his thoughts on the future of IAM, the integration of various data sources, the role of events in IAM, and the potential for real-time identity solutions. They also touch on upcoming conferences, the European Identity and Cloud Conference 2025, and the significance of engaging with the identity community. Tune in for a thought-provoking discussion on the advancements and future directions of digital identity! Chapters 00:00 Introduction and Podcast Overview 00:11 Upcoming Plans and Challenges 01:03 Guest Invitation and Podcast Dynamics 03:31 Conference Announcements and Discounts 06:05 Welcoming the Guest: Ian Glazer 06:46 Fido Feud and Conference Experiences 16:29 Identity Market Trends and Innovations 19:19 Modern Identity Architectures 33:51 Identity First Security: A New Approach 34:50 Unified Data Tiers: Breaking Down Silos 36:14 Modern IAM: Opportunities and Challenges 37:02 Ephemeral Access and Zero Standing Privilege 39:18 Understanding Identity Data 41:30 Workforce Identity Data Platforms 47:14 Orchestration and Execution in IAM 51:09 Real-Time Event-Based Identity Systems 54:45 Future Directions and Community Engagement 59:03 Teaching and Sharing Knowledge 01:05:33 Closing Thoughts and Recommendations Connect with Ian: https://www.linkedin.com/in/iglazer/ Notional architecture for modern IAM: Part 3 of 4 (blog): https://weaveidentity.com/blog/notional-architecture-for-modern-iam/ 2025: The year we free our IAM data: https://weaveidentity.com/blog/2025-the-year-we-free-our-iam-data/ Learn more about Weave Identity: https://weaveidentity.com/ Digital Identity Advancement Foundation: https://digitalidadvancement.org/ Avoid the Noid! - https://en.wikipedia.org/wiki/The_Noid Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com Keywords: IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Ian Glazer, Weave Identity, Identity and Access Management, IAM, Modern Identity Architectures, Modern IAM, Data Tier, Events, Orchestration, Zero Trust, ZTNA, Shared Signals Framework, EIC, Gartner, Black Hat, RSA, Identibeer, Data Lake, OIDs, IANS
#324 - RSM & IDAC Present - The Intersection of Cybersecurity and Digital Identity with Tauseef Ghazi In this episode of the Identity at the Center podcast, Jeff and Jim discuss the growing importance of digital identity in cybersecurity. Joined by Tauseef Ghazi, the Security and Privacy practice lead at RSM, the conversation explores the challenges and opportunities within the sector. They delve into the apprenticeship model in cybersecurity, the skills gap, and the impact of new technologies like AI and blockchain. The episode also touches on the relevance of frameworks, the concept of zero trust, and the importance of staying curious and continually investing in one's skills. Ghazi shares his professional journey, insights on building effective cyber teams, and the importance of balancing personal passions with professional growth. 00:00 The Importance of Apprenticeship in Cybersecurity 01:51 Introduction to the Identity at the Center Podcast 03:10 The Intersection of Cybersecurity and Digital Identity 05:47 Welcoming Ghazi: Insights from a Cybersecurity Leader 08:02 Ghazi's Origin Story in Cybersecurity 13:05 The Role of Identity in Modern Cybersecurity 17:35 Challenges and Strategies in Cybersecurity 31:31 The Skills Gap and Apprenticeship Model in Cybersecurity 40:13 Applying the NIST Cybersecurity Framework 40:41 Compliance and Governance in Cybersecurity 41:22 Understanding Both Sides of Cybersecurity 43:44 Challenges in Hybrid Cloud Environments 45:33 Middle Market Companies and Cybersecurity 48:19 The Concept and Challenges of Zero Trust 54:01 The Future of Passwordless Authentication 56:49 Blockchain and Decentralized Identity 01:01:08 AI in Cybersecurity: Predictions for 2025 01:12:12 Balancing Work, Family, and Personal Passions 01:16:08 Conclusion and Future Series Connect with Ghazi: https://www.linkedin.com/in/tauseef-ghazi-48b49b7 Ghazi the Band: https://www.facebook.com/ghazimusic/ Learn more about RSM: https://rsmus.com/services/risk-fraud-cybersecurity/cybersecurity-business-vulnerability/identity-and-access.html?cmpid=ola:45559-idac:bb01 Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
In this special episode of the Identity at the Center Podcast, hosts Jeff and Jim sit down with Hed Kovetz, CEO and co-founder of Silverfort, at the Gartner IAM Summit in Texas. Hed shares insights on the evolution of identity security, the interplay between legacy and modern IT systems, and the importance of securing non-human identities. They also delve into the role of AI in cybersecurity and the challenge of maintaining innovation in a growing company. Tune in for a thought-provoking conversation about the future of identity security and the booming impact of AI. 00:00 The Importance of Identity in Modern Security 01:23 Welcome to the Identity of the Center Podcast 01:44 Live from the Gartner IAM Summit 03:08 Interview with Hed Kovetz, CEO of Silverfort 03:48 Silverfort's Recent Achievements and Innovations 05:15 Challenges and Insights in Identity Security 08:00 The Evolution of Identity Security 21:20 Securing Legacy and Modern IT Systems 29:52 The Rise of Service Account Protection 30:31 Challenges in Securing Non-Human Identities 31:02 Real-World Examples and Governance Issues 31:40 Strategies for Securing Non-Human Identities 32:56 The Evolution of Identity Security 45:49 The Role of AI in Identity Security 50:33 The Future of Identity Security 53:44 Personal Insights and Reflections 01:01:25 Conclusion and Final Thoughts Connect with Hed: https://www.linkedin.com/in/hed-kovetz-910ba5b9/ Learn more about Silverfort: https://www.silverfort.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
In this episode of the Identity at the Center podcast, hosts Jeff and Jim dive into the concept of Identity Security Posture Management (ISPM) with Henrique Teixeira, Senior Vice President of Strategy at Saviynt and former Gartner analyst. Henrique explains ISPM as an Apple Watch for your identity program, focusing on preventive measures before an attack occurs. The discussion also covers the upcoming Gartner IAM Summit, AI's impact on identity management, and the anticipated trends for 2025. Additionally, they explore the differences between AI copilot, agent, and bot, and the future of non-human identity management. Henrique shares insights on balancing ITSM front ends with IGA systems and emphasizes the importance of continuous security investment. Tune in for a comprehensive look at ISPM, AI, and the evolving identity security landscape. Chapters 00:00 Welcome to the Podcast 01:47 Gartner IAM Summit Preview 04:48 Guest Introduction: Henrique Teixeira 05:28 Henrique's Career Transition 10:12 Conference Experiences and Insights 14:10 Understanding ISPM and ITDR 29:16 AI in Identity Management 35:58 Debating the Future of AI in IGA Systems 37:09 Evolution of Access Request Systems 37:59 The Rise of ChatOps in Identity Management 40:26 Multi-Channel Identity and Access Management 45:54 Influencers and Inspirations in Identity Strategy 49:06 Reflecting on 2024: Trends and Predictions 54:31 Looking Ahead: Identity and AI in 2025 01:02:50 Boxing Talk: Mike Tyson vs. Jake Paul 01:08:17 Wrapping Up: Final Thoughts and Farewells Connect with Henrique: https://www.linkedin.com/in/bernardes Learn more about Saviynt: https://saviynt.com/ Prevention + ITDR Venn Diagram - https://www.linkedin.com/posts/rezasoltani_identitysecurity-ispm-itdr-activity-7203522819014500353-8Kv_/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com Keywords: Identity Security, IAM, Digital Identity, AI, Artificial Intelligence, ISPM, ITDR, IGA, Gartner IAM Summit, Cybersecurity, Cloud Security, Machine Identity, Non-Human Identity, Podcast, Interview, Saviynt, Henrique Teixeira, Jim McDonald, Jeff Steadman
In this special Sponsor Spotlight episode of the Identity at the Center podcast, host Jim McDonald welcomes Chris Steinke from MightyID. Chris shares insights into identity as a valuable asset and its versatility as a security mechanism. The discussion delves into MightyID's unique features, focusing on IAM resilience including backup, recovery, migration, failover, and the Change360 capability. Jim and Chris also touch on the importance of resilience learned from personal experiences like youth sports coaching. The episode wraps up with a look at MightyID's plans for future development and their presence at the upcoming Gartner IAM Summit. Chapters 00:00 Welcome to the Identity at the Center Podcast 01:02 Sponsor Spotlight: MightyID 02:35 Chris Steinke's Journey into IAM 04:32 Understanding MightyID's Solutions 06:57 The Importance of Resiliency in IAM 10:29 Exploring MightyID's Unique Features 25:15 Change360: A Powerful Investigative Tool 27:45 Measuring Success with MightyID 30:39 MightyID's Resiliency and Future Plans 36:53 Gartner IAM Summit and Closing Remarks Connect with Chris: https://www.linkedin.com/in/chris-steinke-exec/ Learn more about MightyID: https://www.mightyid.com/idac Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this special episode of Identity at the Center, hosts Jim McDonald and Jeff Steadman kick off the inaugural FIDO Feud—a game show packed with fun and informative challenges about digital identity. Team Glitterati, led by Megan Shamas, and Team Identifriends, led by Jim, face off in a series of rounds centered around common passwords, identity trends, and future threats to IAM. Enjoy witty banter, audience interaction, and a spirited competition, all while diving deep into the world of Identity and Access Management. Special thanks to the FIDO Alliance and RSM US LLP for making this special event possible! 00:00 Introduction to Identity at the Center 00:20 Welcome to FIDO Feud 01:18 Meet the Team Captains 01:47 Team Names and Random Members 02:46 Game Rules and Setup 04:22 Round 1: Easy-to-Guess Passwords 07:37 Round 2: Tired Trends in IAM 11:44 IAM Metrics Showdown 12:22 Successful Logins and Password Resets 13:04 User Satisfaction and Breaches 13:44 Enrollment and Abandon Rate 14:33 Final IAM Metrics 15:45 Biggest Future Threats to IAM 17:29 Unexpected Answers and Final Round 21:16 Winners and Closing Remarks Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
In this episode of the Identity at the Center podcast, Jim McDonald is joined by guest David Mahdi, CIO at Transmit Security and former Gartner analyst. The discussion delves into the challenges of identity security and the necessity of transitioning from IAM to identity security to mitigate privacy, fraud, and scam risks. They explore the convergence of cybersecurity and identity, the rise of non-human identities, and the importance of cyber resilience. David shares insights from his global experiences and highlights the importance of behavior-based monitoring for both human and non-human identities. The episode wraps up with a lighter note as they discuss the perfect trail mix ingredients. 00:00 Welcome to the Identity at the Center Podcast 01:12 Guest Introduction: David Mahdi 02:35 The Evolution of Identity Security 04:13 The Importance of Identity Security 05:26 David Mahdi's Journey in Identity Security 07:20 Challenges in Identity and Access Management 10:10 The Role of Machine Learning in Identity Security 12:19 The Future of Identity Security 22:52 The Need for Convergence in Identity and Security Teams 33:01 Non-Human Identities and Their Management 41:00 Defining Roles and Responsibilities 41:46 Ignoring Non-Human Accounts 42:38 Emerging Threats and Risk Management 44:33 The Importance of Identity Security 46:46 Cyber Resilience in Modern Organizations 49:24 Cloud Services and Backup Plans 51:26 Ransomware and Data Access Governance 54:27 The Future of Identity Security 01:07:53 Trail Mix and Lighter Notes 01:14:32 Closing Remarks and Upcoming Events Connect with David: https://www.linkedin.com/in/dmahdi/ Learn more about Transmit Security: https://transmitsecurity.com/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com Keywords: Identity Security, IAM, Cyber Resilience, Machine Identity, Non-Human Identity, Digital Transformation, Cloud Security, Zero Trust, Data Breach, Risk Management, ITDR, MFA Fatigue, Deepfakes, Gen AI, Copilot, Claude AI, Decentralized Identity, Quantum Computing, Ransomware, Data Access Governance, Transmit Security, Gartner IAM Summit, FIDO Authenticate Conference.
In this episode of the Identity at the Center podcast, hosts Jim McDonald and Jeff Steadman delve into the significance of shared signals in identity and access management (IAM). Featuring Mike Kiser, Director of Strategy and Standards at SailPoint, the discussion spans Kiser's career journey from IBM to SailPoint, the importance of standards and security in IAM, and the influence of AI on authenticity. The episode highlights the Shared Signals Framework, drawing parallels to cooperative dolphins and fishermen, and underscores the benefits of a standardized approach to signal sharing. The conversation also touches on the challenges and potential of event-based architectures and the evolving role of identity in cybersecurity. 00:00 Introduction and Initial Thoughts 02:50 Conference and Discount Codes 05:33 Guest Introduction and Background 11:31 AI and Authenticity 15:21 Shared Signals Framework 25:40 Decentralized Identity Management 26:28 Real-Time Identity Data Sharing 27:55 Developing Identity Standards 29:19 Vendor Collaboration and Challenges 31:28 Event-Based Identity Architectures 33:03 The Role of Big Tech in Identity Security 39:22 Customer Demand for Identity Solutions 40:49 Identity Security and Digital Identity 42:47 Technology vs. Humanity: A Musical Perspective 48:41 Conclusion and Final Thoughts Connect with Mike: https://www.linkedin.com/in/mike-kiser/ Learn more about SailPoint: https://www.sailpoint.com/ SailPoint Navigate 2024 London - Use code IDAC for a £300 discount - https://www.sailpoint.com/navigate/london Semperis' Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
In this sponsored episode of the Identity at the Center podcast brought to you by Strivacity, Jeff and Jim welcome Stephen Cox, co-founder and CTO of Strivacity, to discuss the evolving landscape of identity management. The conversation covers Strivacity's unique approach to customer identity and access management (CIAM), the importance of isolation by design for security, and the integration of generative AI into their platform. Stephen shares insights on how Strivacity differentiates itself in the market, the recognition from Gartner, and the challenges of implementing AI in identity management systems. They discuss the evolving landscape of AI, particularly in relation to data access, security, and identity management. Also explored is the balance between leveraging AI for business insights and the potential threats it poses to data security. The discussion also touches on the future of AI technology, the challenges of governance in a rapidly changing environment, and an unexpected segue into astrophotography, highlighting the intersection of AI technology and personal interests. Chapters 00:00 Introduction to the Identity at the Center Podcast 01:37 Meet Steven Cox from Strivacity 02:34 Strivacity's Unique Approach to CIAM 09:27 Differentiating Consumer and Customer IAM 11:49 Strivacity's Recognition and Achievements 14:05 The Importance of Isolation by Design 15:38 Generative AI in IAM Products 21:45 Implementing AI in Strivacity's Platform 29:25 Addressing AI Hallucinations and Security Concerns 30:56 Cost Implications of AI Systems 31:50 Leveraging AI for Business Insights 34:03 Implementing AI with Security in Mind 38:53 Future of AI in Identity Space 44:48 Astrophotography Adventures 53:52 Conclusion and Final Thoughts Connect with Stephen: https://www.linkedin.com/in/stephencox/ Learn more about Strivacity: https://strivacity.ai Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast Keywords Identity Management, Customer IAM, Strivacity, AI Integration, Cybersecurity, Digital Identity, Gartner Recognition, Isolation by Design, Generative AI, User Experience, AI, data security, identity management, astrophotography, technology governance
In this engaging podcast episode, hosts Jeff and Jim broadcast from the Authenticate 2024 conference in Carlsbad, California, exploring a wide range of topics. They discuss their podcast's future and share personal experiences with hurricanes. Joined by Dean Saxe, Principal Engineer at Beyond Identity and Chair of the OpenID Foundation Death & The Digital Estate Community Group, the conversation covers identity security, digital estates, and the lasting impact of digital assets. Listeners will hear about complex themes such as managing digital legacies, the evolution of digital credentials, the importance of device-bound credentials, and personal stories of career development in the IAM field. Finally, the episode ends on a lighthearted note with a nostalgic dive into favorite board games, from childhood classics to modern hits. Don't miss this multifaceted discussion that blends professional insights with personal anecdotes. 00:00 Introduction, Conference Setting, and Personal Updates 02:19 Hurricane Aftermath and Resilience 04:03 Authenticate 2024 Highlights 04:57 Upcoming Events and Case Study Teasers 05:38 Introducing Dean Saxe 06:49 Dean's Journey in Identity and Security 13:30 Death and the Digital Estate 25:08 The Risks of Relying on Cloud Services 25:35 Legacy Contacts and Digital Estate Planning 28:15 Respecting Cultural Differences in Digital Death 29:04 Empowerment Through Consent and Choice 29:56 Interoperability and Accessibility in Digital Estates 30:25 Legal and Regulatory Considerations 32:20 The Importance of a Digital Living Will 33:21 Challenges and Future Directions 33:54 The Role of AI in Digital Estates 39:14 Getting Involved in the Digital Estate Community 44:33 Board Games and Lighthearted Farewells 50:15 Conclusion and Final Thoughts Connect with Dean: https://www.linkedin.com/in/deanhsaxe/ Learn more about Beyond Identity: https://www.beyondidentity.com/ Death and the Digital Estate (DADE) Community Group: https://openid.net/cg/death-and-the-digital-estate/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Semperis' Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
In this compelling episode of the Identity at the Center podcast, hosts Jeff and Jim invite you to explore the evolving landscape of privacy, identity, and data security. Featuring insights from industry expert Tina Srivastava, co-founder of Badge, they delve into the pressing issue of data breaches and the innovative technologies designed to combat them, including privacy-preserving biometric systems and public key conversion. Discover the potential of these solutions to revolutionize identity security, the importance of GDPR, and the critical need for inclusive, accessible digital identity systems. The discussion highlights the balance between convenience and privacy while addressing the responsibilities of device manufacturers, telecom companies, and app developers. Tune in for an enlightening conversation about national security, phishing-resistant authentication, and the role of technology in safeguarding our digital identities. Plus, get a glimpse of the social side of tech conferences with a fun recap of Authenticate 2024's karaoke night and a heartfelt thank you to the episode's sponsors and supporters.00:00 Welcome to the Identity at the Center Podcast02:22 Conference Highlights and Casual Banter05:05 Main Topic: Identity and Security with Tina Srivastava08:50 Badge: Revolutionizing Identity Verification12:01 Challenges and Innovations in Identity Security22:08 Reflecting on Domestic Abuse and Digital Identity23:16 Accessibility and Inclusivity in Technology25:48 The Battle for Privacy and Identity29:18 The Future of Seamless Identity Verification35:41 Karaoke Fun at Authenticate Conference39:25 Wrapping Up and Final ThoughtsConnect with Tina: https://www.linkedin.com/in/tina-s-8291438a/Learn more about Badge: https://www.badgeinc.com/Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-usSemperis' Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com
This episode is sponsored by Semperis: semperis.com In this sponsored episode of the Identity at the Center podcast, hosts Jeff and Jim discuss the changing landscape of ransomware attacks and the importance of identity security with Gil Kirkpatrick, Chief Architect at Semperis. They explore how ransomware strategies have evolved from merely encrypting data to exfiltrating sensitive information for ransom. The conversation also delves into the necessity of having robust identity recovery plans, the role of Active Directory in cybersecurity, and the importance of regular security posture assessments with tools like Purple Knight. Additionally, Gil shares insights from the Semperis Ransomware Risk Report and recounts his experiences as a pilot, offering a fascinating look at both cybersecurity and the world of aviation. 00:00 Introduction to Ransomware Evolution 01:25 Welcome to the Identity at the Center Podcast 01:53 Guest Introduction: Gil Kirkpatrick from Semperis 02:25 Journey into the Identity Space 06:09 Semperis: Enhancing Security and Resilience 21:08 The Importance of Active Directory Security 28:09 Ransomware Risk Report Insights 32:15 The Trustworthiness of Decryption Keys 34:18 Business Disruption from Ransomware 36:14 Should Companies Pay the Ransom? 38:47 The Importance of Cyber Resilience 41:14 Active Directory and Disaster Recovery 43:17 The Decline in Ransomware News 47:36 The Basics of Cybersecurity 50:31 Adventures in Piloting 58:35 Conclusion and Final Thoughts Connect with Gil: https://www.linkedin.com/in/gil-kirkpatrick/ Learn more about Semperis: https://www.semperis.com/ 2024 Ransomware Risk Report: Embracing the Assume Breach Mindset: ttps://www.semperis.com/ransomware-risk-report/ Download Purple Knight: https://www.semperis.com/purple-knight/ Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://register.hipconf.com/W7eVML Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com
In this special episode of the Identity at the Center podcast, recorded live from the SailPoint Navigate 2024 conference in Orlando, hosts Jeff and Jim engage with Andrew Moore, VP of Product Management at SailPoint. The conversation spans a variety of critical themes, including the management of identity platforms, product development, and the importance of customer feedback. Andrew details his career journey, including his transition from Under Armour to SailPoint, and shares insights into the development of connected products, data-driven design, and user experience enhancements. The episode also introduces the latest innovations, such as Privileged Task Automation and Machine Identity Security, emphasizing their potential to address productivity and security risks. Furthermore, the speakers discuss the transformative role of AI in Identity Governance and Administration (IGA), highlighting the importance of explainable AI and maintaining strong security standards. This episode is a deep dive into the dynamic landscape of identity governance and the strategies driving continuous innovation. 00:00 Welcome to the Identity at the Center Podcast 01:55 Conference Insights and Future Plans 03:38 Introducing Andrew Moore 03:52 Andrew Moore's Journey into Identity 06:48 Product Management at SailPoint 16:48 Innovative Projects and Customer Feedback 23:17 Exploring Low Code and No Code Identity Automations 23:53 Understanding Customer Feedback and Research Techniques 24:41 Balancing Positive and Negative Feedback 00:24 Dealing with Critical Feedback 29:34 Announcing the Product Roadmap 30:37 Privileged Task Automation: A Game Changer 39:11 Machine Identity Security: New Innovations 42:33 The Future of AI in Identity Governance 47:12 Addressing Concerns About AI in IGA 50:40 Conclusion and Final Thoughts Connect with Andrew: https://www.linkedin.com/in/richardandrewmoore/ Learn more about SailPoint: https://www.sailpoint.com/ SailPoint Navigate 2024 London - Use code IDAC for a £300 discount - https://www.sailpoint.com/navigate/london Semperis' Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com
In this comprehensive episode, Jeff and Jim broadcast from the Authenticate 2024 conference in San Diego, uncovering the deep connection between technology and human rights with an emphasis on inclusivity and ethical considerations in digital identity advancements. Hear from Grace Klutke, the Kim Cameron Award winner, about her remarkable journey from law to digital identity. Dive into discussions with Ian Glazer and Arynn Crow of the Digital Identity Advancement Foundation (DIAF) on the foundation's mission, mentorship programs, and the significance of legacy awards like the Kim Cameron and Vittorio Bertucci Awards. Explore interdisciplinary approaches to digital identity encompassing technical, legal, and social engineering perspectives. Gain insights into AI's role, data governance, and the unique culture of the digital identity community. Plus, enjoy a light-hearted segment on conference experiences, attire, and industry swag. Don't forget to like, subscribe, and check out our links in the show notes! 00:00 Introduction: Identity at the Center Podcast Begins 03:00 Upcoming Conferences and Events 03:54 Introducing the Guests: Grace, Arynn, and Ian 05:09 Grace's Journey to the Kim Cameron Award 07:13 Digital Identity Advancement Foundation (DIAF) 09:43 The Importance of Standards and Awards 17:35 The Role of Legal Background in Digital Identity 18:02 Legal Perspectives on Digital Identity 18:59 The Intersection of Law and Technology 21:20 Challenges and Future Directions 23:23 Mentorship and Career Advice 24:11 AI and Identity Data 27:54 Conference Insights and Reflections 35:23 Closing Thoughts and Future Plans Connect with Grace: https://www.linkedin.com/in/grace-klutke-3ba8a1228/ Connect with Arynn: https://www.linkedin.com/in/arynn-crow-821761103/ Connect with Ian: https://www.linkedin.com/in/iglazer Learn more about DIAF: https://digitalidadvancement.org/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Semperis' Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at http://idacpodcast.tv
In this episode of the Identity at the Center podcast, Jim McDonald speaks with Brandon Pinzon, an Insurance Industry Cybersecurity Executive, about the evolving landscape of identity management. They discuss Brandon's journey into digital identity, the role of identity management within organizations, and the unique challenges faced by the insurance industry. The conversation also delves into the intersection of compliance and security, highlighting the importance of understanding risk in the identity space. In this conversation, Brandon discusses the critical relationship between risk management and compliance in cybersecurity, emphasizing the importance of understanding and quantifying risk. He explores the evolving landscape of cyber insurance, highlighting the need for identity practitioners to be proactive in managing risks and building relationships with financial stakeholders. The discussion also touches on the necessity of cyber insurance for various organizations and concludes with insights into the vibrant cybersecurity community in San Antonio. 00:00 Podcast Introduction and Host Update 01:23 Upcoming Conferences and Discount Codes 02:29 Guest Introduction: Brandon Pinzon 03:02 Brandon's Identity Origin Story 05:25 Debate: Where Does Identity Management Belong? 13:45 Pros and Cons of CISO Responsibility for Identity 21:16 Identity in the Insurance Industry 29:52 Addressing Legacy Systems in Financial Institutions 31:38 Compliance vs. Security in Financial Services 35:33 Understanding and Quantifying Risk 38:33 The Role of Cyber Insurance 54:28 San Antonio: A Hub for Cybersecurity Connect with Brandon: https://www.linkedin.com/in/bpinzon/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Semperis' Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast Keywords identity management, cybersecurity, insurance industry, compliance, digital identity, CISO, identity governance, user experience, risk management, financial services, risk management, compliance, cyber insurance, identity management, cybersecurity, threat modeling, risk assessment, business continuity, data protection, security strategy
In this episode of the Identity at the Center podcast, Jim McDonald is joined by Eve Maler to explore a provocative topic—"Consent is Dead." Eve shares insights from her recent keynote at the European Identity and Cloud Conference (EIC) in Berlin, where she unpacked the failures of consent-based systems in protecting user privacy. They discuss why the "I agree" button has lost its meaning, even in regions with strong data protection laws like GDPR, and how users' personal information is monetized through identity resolution technologies. Eve reveals how identity professionals often overlook the world of identity resolution, which operates without a direct relationship with users. She emphasizes the importance of IAM professionals understanding the deep monetization of personal data and the critical need to improve systems of privacy, consent, and security. They also touch on the role of AI in authorization decisions and the balance between explainability and automation in future IAM systems. Chapters 00:00 Introduction and Context 03:01 Eve Maler's Journey in Identity 09:53 Exploring Personhood and Verifiable Credentials 12:52 Identity Verification and AI Threats 25:13 The State of Consent in Digital Identity 30:42 GDPR and Its Implications 39:53 The Future of AI in IAM 45:05 AuthZen Working Group Update 55:23 Non-Human Identities and IoT 01:02:52 Closing Thoughts and Future Directions 01:04:03 Fingerprint City Outro.mp4 Connect with Eve: https://www.linkedin.com/in/evemaler/ Venn Factory: https://www.vennfactory.com/ Personhood: The Killer Credential? (blog by Eve): https://workshop.vennfactory.com/p/personhood-the-killer-credential Death and the Digital Estate (blog by Eve): https://workshop.vennfactory.com/p/death-and-the-digital-estate From Chance to Control (blog by Eve): https://workshop.vennfactory.com/p/from-chance-to-control Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this Token Identity sponsored episode of the Identity at the Center podcast, hosts Jeff and Jim welcome Ido Shlomo, co-founder and CTO of Token Security, to discuss the vital and often overlooked topic of non-human identities or machine identities within organizations. The conversation covers how machine identities differ from human identities, the unique challenges they pose, and how Token Security aims to address these issues. Ido shares his personal journey into the cyber-security field, real-life case studies, and details about Token Security's approach to managing and securing machine identities. The episode also delves into the implementation and ROI of their solution and touches on lighter topics like online gaming. 00:00 Welcome to the Identity at the Center Podcast 03:14 Guest Introduction: Ido Shlomo from Token Security 03:35 Ido Shlomo's Journey into Identity Security 06:04 Understanding Token Security's Mission 07:37 Challenges in Machine Identity Management 10:08 Defining Non-Human Identity 11:32 The Story Behind Token Security's Name 13:35 Token Security's Unique Value Proposition 20:20 Real-Life Case Study: The Importance of Non-Human Identity Security 22:05 Narrowing Down the Machines 22:15 Identifying the Compromised Machine 22:26 GitHub Report and API Key 22:34 Event Resolution and Success 22:39 Human vs Non-Human Identity 22:56 Technology Differences and Case Study 23:23 Implementing the Solution 23:46 Philosophy of Software Development 24:28 Integration and Deployment 26:09 Building an Inventory 26:31 Reducing Risk and Lifecycle Process 28:05 Attribution and Data Collection 30:02 Learning More and ROI 34:22 Online Gaming and Personal Insights 34:47 Gaming Personas and Preferences 36:34 Gaming Memories and Character Classes 40:33 Wrapping Up and Final Thoughts Connect with Ido: https://www.linkedin.com/in/ido--shlomo/ Learn more about Token Security: https://www.token.security/?utm_medium=idac&utm_source=website&utm_campaign=Sep_podcast&utm_content=sponsor_page Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this episode of the Identity at the Center podcast, Jeff and Jim discuss how to make the business case for IAM and determining the return on investment (ROI). Joined by Andre Koot, they delve into the need for a compelling business case to drive IAM investments. The conversation covers the quantitative and qualitative aspects of ROI, and the importance of stakeholder communication. 00:00 Welcome to the Identity at the Center Podcast 01:39 Training and Professional Development in IAM 03:58 Upcoming Conferences and Events 07:51 The Business Case for IAM 12:51 IAM: Financial and Non-Financial Perspectives 23:08 Calculating Return on Investment in IAM 28:59 Hard Dollars vs. Soft Dollars 30:11 Dollarizing Non-Savings Benefits 31:40 Challenges in ROI Calculations 34:07 Quantifiable vs. Non-Quantifiable Benefits 37:14 ROI in Different Organizational Contexts 39:50 Insourcing vs. Outsourcing 49:02 Communicating ROI Effectively 54:10 Language Nuances and Cultural Context 01:01:35 Conclusion and Final Thoughts Connect with Andre: https://www.linkedin.com/in/meneer/ The Business Case for IAM (IDPro): https://bok.idpro.org/article/id/97/ Strategic Alignment and Access Governance (IDPro): ****https://bok.idpro.org/article/id/90/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ SailPoint Navigate - October 21-24 in Orlando, FL - Use code IDAC for a $400 discount Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this comprehensive episode of the Identity at the Center podcast, hosts Jeff and Jim explore the foundations and sustainability of effective Identity and Access Management (IAM) programs. They delve into the essential elements of setting up an IAM program, including the importance of executive buy-in, phased implementation strategies, the significance of governance, and adapting to evolving business needs. The discussion also emphasizes the need for continuous enhancements and future-proofing IAM systems by budgeting for updates and choosing dependable managed service partners. Practical advice is offered throughout, ensuring listeners have the tools to start and maintain a successful IAM program. The episode wraps up with a recap of ten crucial steps for IAM implementation and lighter conversations about recent personal trips. 00:00 Introduction and Podcast Setup 01:30 Technical Difficulties and Recording Challenges 04:23 Conferences and Upcoming Events 05:55 Starting an IAM Program 10:34 Assessing Current IAM Capabilities 22:37 Building a Cross-Functional IAM Team 30:56 Choosing the Right IAM Technology 43:02 Starting with Phase One 43:44 Planning for Compliance and Cyber Insurance 46:25 User Experience in IAM Implementation 49:18 Workforce vs. Customer Identity Management 57:46 Governance, Policies, and Metrics 01:09:31 Maintaining and Evolving IAM Programs 01:16:03 Final Thoughts and Recap Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this sponsored episode of the Identity at the Center podcast, brought to you by Panini, hosts Jeff and Jim interview Marta Nappo, the Strategic Marketing and Business Development Director at Panini. Marta discusses Panini's evolution from a leading check scanner company to entering the identity verification market with their new solution called BioCred. Panini, a company with 79 years of history, is launching a patented method for biometric credential verification aimed at financial services and healthcare sectors, among others. Marta shares insights into Panini's approach to privacy by not storing personal data on servers and highlights the potential of their cloud-based infrastructure to integrate into customer workflows. The conversation touches on the benefits of reliable biometric authentication in reducing fraud, improving customer experience, and enhancing operational efficiency. They also explore use cases in financial services, healthcare, and more. 00:00 Welcome to the Identity at the Center Podcast 02:44 Meet Marta Nappo 03:02 Marta's Career Journey 05:20 Panini's New Identity Solution: BioCred 06:11 Global Expansion and Market Presence 08:18 Identity Verification Challenges and Solutions 11:58 Privacy and Data Security 15:28 Future of Identity Verification 21:58 Customer Feedback and Future Plans 25:01 Initial Impressions and Expectations 25:26 Lowering Barriers and Building Trust 26:07 Market Growth and Challenges 27:05 Real-World Use Cases 28:05 Identity Verification in Various Sectors 35:24 Measuring Success and Benefits 38:53 Volleyball and Life Lessons 45:24 Fun with Volleyball and Dogs 46:47 Conclusion and Farewell Learn more about Panini: https://www.panini.com/ Connect with Marta: https://www.linkedin.com/in/martanappo/ Dog playing volleyball: https://youtube.com/shorts/QSCMJQo6kps?si=CN-2lGTEx0T4nBAC Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this episode of the Identity at the Center podcast, Jeff and Jim are live at the Identity Week America conference in Washington, DC. Welcoming Ryan Galluzzo, Identity Management Program Lead at NIST, they dive into recent NIST updates, including a mobile driver's license project, changes in public comment and revision processes, and the significance of user-controlled wallets. They also touch on self-sovereign identity, risk management, evolution in identity assurance levels, and the vital role of continuous evaluation and improvement. The episode concludes with a light-hearted discussion on the inquisitive nature of children and the spontaneous, enriching conversations that happen at industry conferences. 00:00 Welcome to Identity at the Center Podcast 01:26 Conference Highlights and Networking 02:47 Panel Discussions and Key Takeaways 05:07 Mobile Driver's License Project 07:09 Public Comment Draft and Feedback 11:40 Self-Sovereign Identity and Trust Issues 16:41 NIST Guidance and Risk Management 28:47 Introduction to RMF and Assurance Levels 29:05 Contextualizing Assurance Levels for Different Users 30:25 Continuous Evaluation and Improvement 34:28 User-Controlled Wallets and Federation 35:59 Account Recovery and Assurance Levels 37:18 Overview of NIST 800-63 Documents 51:25 Existential Questions and Personal Anecdotes 55:25 Conclusion and Final Thoughts Connect with Ryan: https://www.linkedin.com/in/ryan-galluzzo-a100563b/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this episode of the Identity at the Center podcast, host Jim McDonald welcomes Deneen DeFiore, Chief Information Security Officer at United Airlines. The episode delves into Deneen's career path in identity, her extensive experience at General Electric, and the evolution of identity and access management practices. The conversation transitions to her current role at United Airlines, highlighting her approach to integrating customer identity with enhanced trust and personalized experiences. The discussion also touches on building high-performing teams, the importance of professional development through conferences and certifications, and the balance between business and technical leadership. They conclude with some lighter notes on Cincinnati landmarks and local traditions. 00:00 Introduction and Housekeeping 01:16 Guest Introduction: Deneen DeFiori 01:37 Deneen's Identity Origin Story 04:11 Innovative Projects at GE 07:50 United Airlines and Customer Identity 12:35 Building a Winning Team 16:27 Professional Development and Certifications 19:58 Balancing Business and Technology 37:20 Future of Identity and Biometrics 40:01 Cincinnati Hallmarks and Farewell Connect with Deneen: https://www.linkedin.com/in/deneendefiore/ Attending Identity Week in America or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: http://terrapinn.com/IDWUS/Part-IDAC Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://register.hipconf.com/W7eVML Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast
In this sponsored episode of the Identity at the Center Podcast, hosts Jeff and Jim speak with Nitin Sonawane, Chief Product Officer and Co-Founder of Zilla Security. Nitin shares insights about disrupting the identity security and governance space with innovative solutions such as Zilla Universal Sync (ZUS) and how AI and ML can streamline and enhance access reviews and compliance. The discussion covers the evolution of identity governance, the integration challenges, and the novel approaches Zilla Security is adopting to make organizations more secure and efficient. They also touch upon the personal side, diving into Nitin's passion for astronomy and his impressive experiences with telescopic observations. Tune in for a deep dive into the future of identity governance and the potential of leveraging data for better security outcomes. 00:00 Introduction 01:21 Welcome to the Identity at the Center Podcast 01:55 Spotlight on Zilla Security 02:23 Meet Nitin Sonawane 03:36 The Role of a Chief Product Officer 04:44 Overview of Zilla Security 07:16 Challenges in Identity Governance 10:32 Innovations with Zilla Universal Sync (ZUS) 22:45 Future of AI in Identity Governance 33:16 Balancing Security and Compliance 34:43 The Role of Automation in Compliance 36:41 AI's Impact on Security and Compliance 39:14 Risk Management and Identity 40:59 Streamlining Access and Approvals 44:47 Leveraging Data for Risk Reduction 50:29 Future of Identity and AI 53:32 Astronomy and Identity 01:01:04 Conclusion and Contact Information Connect with Nitin: https://www.linkedin.com/in/nitin-sonawane-0743b/ Learn more about Zilla Security: https://zillasecurity.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and subscribe to our YouTube channel at idacpodcast.tv
In this episode of the Identity at the Center podcast, Jeff and Jim discuss the intricacies of authentication with Andrew Shikiar, Executive Director and CEO of the FIDO Alliance. The conversation covers various aspects of authentication including different use cases, the importance of passkeys, and regional adoption trends. They also highlight the upcoming Authenticate 2024 conference in Carlsbad, California, emphasizing its unique value for identity experts and practitioners. Listeners are encouraged to take advantage of early bird pricing and discount codes for the event linked below. 00:00 Welcome to the Identity at the Center Podcast 01:36 Podcast Milestones and Schedule 02:42 Engaging with the Audience 04:35 Introducing the Guest: Andrew Shikiar 07:34 FIDO Alliance and Passkeys Overview 10:12 The Importance of Passwordless Authentication 18:23 Authenticate Conference Highlights 22:07 Conference Details and Registration 26:19 Networking and Conference Challenges 26:35 Session Tracks and Remote Participation 28:02 FIDO APAC Summit in Kuala Lumpur 29:38 Highlights of the Authenticate Conference 32:21 Identity Verification and Adjacent Technologies 34:28 Live Podcasts and Interactive Sessions 35:59 Fun Activities and Networking at Authenticate 39:52 Travel Experiences and Final Thoughts Connect with Andrew: https://www.linkedin.com/in/andrewshikiar/ Learn more about the FIDO Alliance: https://fidoalliance.org/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ FIDO Alliance Shop - https://shop.fidoalliance.org/ - Use code IDAC10 for a discount on your purchase! Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.