Identity Management in Your Security Function

The last thing to consider, and probably the strongest reason that identity management is not part of the security function in most organizations, is governance and regulation. For us, there's a heavy reliance on our identity governante administration for the purpose of meeting regulatory requirements. If zero trust is a first principal component to your emphosec program, like i believe it is, maybe it is best have security hown the identity management responsibilityand that's a rap. Next week we will be talking about red team and blue team operations.