Cloud Security Podcast

Traditional PAM vs Cloud CPAM for a cloud first world

Oct 4, 2024

Art Poghosyan, CEO and co-founder of Britive, shares his extensive expertise in identity and access management. He discusses the significant shifts from traditional Privileged Access Management (PAM) to cloud-native solutions. Art emphasizes that 'Identity is the new perimeter,' detailing the critical importance of Just-in-Time access. He also explores the complexities of cloud infrastructure entitlements, the evolving role of non-human identities, and the necessity for modern organizations to adapt their security strategies to the cloud era.

34:22

Creator website

Episode guests

Art Poghosyan

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Traditional Privileged Access Management struggles to adapt in cloud environments, highlighting the need for a nuanced understanding of access controls.

Just-In-Time access enhances security in cloud settings by providing temporary permissions, minimizing risk, and streamlining operational workflows.

Deep dives

Understanding Privilege in Cloud vs. On-Premise

The definition of privilege varies significantly between cloud and on-premise environments. In traditional systems, privilege often equates to specific admin logins designed for particular roles, whereas in cloud settings, privilege is more about the entitlements necessary to perform tasks. For instance, a cloud user's privilege might include the necessary permissions to create an S3 bucket without a distinct admin role. This shift highlights the need for a more nuanced understanding of access controls within complex cloud architectures.

Intro

3min

Navigating IAM and PAM in a Cloud Era

9min

Cloud Identity and Access Management Innovations

8min

Evolving Cloud Security: IAM and CSPM Integration

11min

Personal Insights Beyond Cloud Security

2min

Exploring Plural Access Management and Community Engagement

2min

In this episode of the Cloud Security Podcast, Ashish sat down with Art Poghosyan, CEO and co-founder of Britive, to explore the changing world of identity and access management (IAM) in the cloud era. With over two decades of experience in the identity space, Art breaks down the challenges of traditional Privileged Access Management (PAM) and how cloud-native environments require a rethinking of security strategies.

From understanding the complexities of cloud infrastructure entitlements to unpacking the differences between on-premise and cloud-based PAM, Art explains why "Identity is the new perimeter" and how modern organizations must adapt. They dive deep into the importance of Just-in-Time (JIT) access, non-human identities, and the critical role identity plays as the first and last line of defense in cloud security.

Guest Socials:⁠⁠ ⁠⁠⁠⁠⁠⁠Art's Linkedin

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Podcast- Youtube⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security BootCamp

Questions asked:

(00:00) Introduction

(01:53) A bit about Art

(02:51) What is IAM?

(04:02) What is Cloud Privilege Access Management?

(06:08) Why do we need CloudPAM in 2024?

(07:52) Non Human Identities

(08:39) Privilege in Cloud vs On Premise

(09:49) SAML vs PAM

(12:21) Just in Time provisioning in Cloud

(17:17) Making Access Management Developer Friendly

(19:12) What should security team be looking at ?

(21:22) Communicating IAM vulnerabilities

(23:45) Tactical steps to level up IAM

(27:20) Zero Trust and IAM

(30:56) Fun Questions

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Cloud Security Podcast

Traditional PAM vs Cloud CPAM for a cloud first world

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Privilege in Cloud vs. On-Premise

The Complexity of Cloud Privileged Access Management

The Role of Just-In-Time Access

Integrating Identity Management into Zero Trust Strategies

Remember Everything You Learn from Podcasts