Identity at the Center

In this sponsored episode, Jim McDonald hosts Eric Woodruff, Senior Security Researcher at Semperis, to discuss the company's approach to identity security. They delve into Semperis' tools like Purple Knight and Forest Druid, focusing on their capabilities in detecting and mitigating Active Directory and Entra ID vulnerabilities. The conversation covers the critical role of prevention and response in ITDR, the impact of ransomware on Enterprise ID infrastructures, and the importance of ensuring a trusted state in Active Directory. They also touch on the upcoming Hybrid Identity Protection Conference and its significance for industry professionals. 00:00 Introduction and Sponsor Spotlight 02:15 Eric Woodruff's Background and Role at Semperis 05:22 Importance of Active Directory in Enterprises 06:45 Threats and Vulnerabilities in Active Directory 17:21 Tools and Solutions for Active Directory Security 22:41 Hybrid Identity Protection and Upcoming Conference 40:13 Closing Thoughts and Personal Anecdotes Learn more about Semperis: https://www.semperis.com/ Connect with Eric: https://www.linkedin.com/in/ericonidentity/ Meet Silver SAML: Golden SAML in the Cloud: https://www.semperis.com/blog/meet-silver-saml/ Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://register.hipconf.com/W7eVML Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In episode 300 of the Identity at the Center podcast, hosts Jeff and Jim celebrate their significant milestone by discussing the origins and future of the podcast. They delve into the complexities of identity management in educational settings and explore the philosophical underpinnings of the term 'identity at the center.' Highlighted questions from listeners cover topics like the effectiveness of Social Security Numbers for identity verification and the challenges of authenticating callers to the help desk. They also discuss their recent conference acceptances and plans for future episodes. The conversation shifts to the potential impacts of AI, decentralized identity, and the growing importance of identity in government services. 00:00 Introduction and Episode 300 Milestones 02:01 The Journey to YouTube 04:18 Becoming a 501c3 Nonprofit 07:18 Understanding Identity at the Center 09:37 Complexities of Identity in Education 12:43 Identity as the New Perimeter 18:20 Identity in Business and Government 27:15 Centralizing Identity Data for Success 28:21 Challenges in Higher Education IT Systems 30:01 Listener Question: Confirming Identity Over the Phone 30:31 Weaknesses in Caller Authentication 34:19 Best Practices for Identity Verification 47:48 Future of Identity and Access Management 51:23 Upcoming Conferences and Final Thoughts IDPro Body of Knowledge - Account Recovery (v3) by Dean Saxe: https://bok.idpro.org/article/id/64/ Attending Identity Week in America or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: http://terrapinn.com/IDWUS/Part-IDAC Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://register.hipconf.com/W7eVML Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

Merill Fernando, a Microsoft product manager with a focus on identity and access management, dives into the future of Entra ID. He shares insights on the importance of DevOps in improving security and the transition to passwordless identities. The discussion highlights the challenges of managing machine IDs and the potential of AI through Security Copilot to enhance identity management. Merill also reflects on his journey into the identity space, emphasizing collaboration and the need for rigorous governance in tech environments.

In this episode of the Identity at the Center podcast, hosts Jeff and Jim delve into the complexities of creating effective RFPs (Request for Proposals) for Identity and Access Management (IAM) systems. They provide critical advice for both the customer and vendor sides, stressing the importance of defining clear objectives, understanding technical and business requirements, and avoiding an overwhelming level of detail that can detract from the RFP's usefulness. The hosts also advocate for combining software and services in a single RFP and highlight the value of open-ended questions to gather meaningful responses. Drawing from their experiences, Jeff and Jim discuss the pros and cons of RFPs, the importance of experience from both vendors and implementation partners, and offer strategies for managing the RFP process effectively. Thanks to listener Alfred in Canada for the great question! 00:00 Introduction and Casual Banter 02:09 Travel Adventures and Motorcycle Rally 05:07 Podcast Challenges and Listener Shoutouts 06:34 Upcoming Conferences and Events 09:57 Listener Question: Tips for a Smooth IAM RFP 22:00 Importance of Subject Knowledge22:15 The Positive Side of RFPs 24:06 Challenges with RFPs 25:39 Combining Software and Services in RFPs 26:58 Evaluating Implementation Partners 28:26 Experience Matters in RFP Responses 31:06 Tips for Effective RFPs 34:10 Personal Anecdote: A Scare and a Surprise Party 38:58 Upcoming Busy Schedule 40:05 Wrapping Up and Final Thoughts Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

In this episode, Jeff and Jim discuss various Identity and Access Management (IAM) topics with their guest, Chris Power, Senior Manager of IAM at Sallie Mae. They tackle the evolution and challenges of non-human identities, the potential sunsetting of Role-Based Access Control (RBAC) in favor of policy-based methods, and the organizational design of IAM teams and the importance of governance and cybersecurity measures. The episode rounds off with a light discussion about Marvel movie news, focusing on Robert Downey Jr.'s return to the Marvel universe as Dr. Doom. 00:00 Introduction and Casual Banter 2:07 Exploring Digital Identity Trends 5:01 Conference Highlights and Discount Codes 8:35 Introducing the Guest: Chris Power 12:11 Deep Dive into Non-Human Identities 29:20 The Future of RBAC in IAM 30:42 Challenges in HR Systems and RBAC 32:21 The Complexity of Implementing RBAC 33:23 Exploring Alternatives to RBAC 34:13 The Role of Attributes in Access Control 37:35 Policy-Based Access Control (PBAC) 42:59 Organizational Design in IAM 52:34 Future of IAM with AI and Big Data 55:55 Marvel Universe Discussion 63:42 Conclusion and Final Thoughts Connect with Chris: https://www.linkedin.com/in/jameschristopherpower/ Chris’ LinkedIn Post: https://www.linkedin.com/pulse/trying-something-new-chris-power-ysmdc/ Attending Identity Week in America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

In this episode of the Identity at the Center podcast, hosts Jeff and Jim engage in a lively discussion with Allan Foster, who shares his extensive journey in the identity and access management (IAM) space. Alan reminisces about his time starting ForgeRock in a London pub, the inception of the Digital Identity Advancement Foundation (DIAF), and his involvement in influential standards like SAML through the Liberty Alliance and Kantara. Alan also highlights the importance of privacy and decentralized identity, his legacy of encouraging inquisitive thinking, and a glimpse into his recent endeavors post-retirement. The episode wraps up with Alan's take on the IAM 'Mount Rushmore,' spotlighting influential figures in the industry. 00:00 Introduction and Casual Catch-Up 02:23 The CrowdStrike Outage Incident 03:41 Travel Woes and Airline Delays 04:47 Excitement for Today's Guest 05:35 Conference Partnerships and Discounts 07:44 Introducing Alan Foster 08:17 Alan Foster's Identity Journey 19:33 Founding of ForgeRock 22:09 The Evolution of ForgeRock 32:06 Involvement with Industry Groups 36:16 Resigning from the Presidency 37:04 The Impact of SAML on Identity 38:10 Trust Frameworks and Federations 40:28 Consumer Identity and Trust 42:41 Privacy and Decentralized Identity 46:24 Overrated Trends in Identity 48:00 IAM Mount Rushmore 53:58 Conferences and Community 58:18 Retirement and New Ventures 00:03 Legacy and Final Thoughts Connect with Allan: https://www.linkedin.com/in/allanfoster/ Digital Identity Advancement Foundation: https://diaf.link Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this episode of the Identity at the Center podcast, hosts Jeff and Jim engage in a lively discussion with Joseph Carson, Chief Security Scientist and Advisory CISO at Delinea. They explore Joseph's extensive career journey in identity and access management, cybersecurity, and his hands-on experiences in Estonia's pioneering digital identity ecosystem. The conversation delves into the challenges and successes of implementing digital identity systems, the evolving landscape of Identity Threat Detection and Response (ITDR), and the interplay between digital identity, authentication, and AI in cybersecurity. Joseph also shares some behind-the-scenes anecdotes from his public speaking experiences and provides valuable insights into the future of identity management. The episode highlights valuable lessons for professionals in the field, practical advice for attending conferences, and the importance of continuous learning and adaptation in the rapidly evolving world of cybersecurity. 00:00 Introduction and Casual Banter 02:12 Conference Experiences and Swag 02:51 Upcoming Conferences and Discounts 06:09 Introducing the Guest: Joseph Carson 06:35 Joseph Carson's Career Journey 07:25 Estonia's Digital Identity Revolution 10:25 Delinea and Cybersecurity Research 12:46 Qubit Cybersecurity Conference 14:25 401 Access Denied Podcast 18:32 Estonia's Digital Identity Success 29:38 Identity Threat Detection and Response (ITDR) 32:40 The Evolution of Identity Access Management 33:48 The Convergence of Authentication and Authorization 35:00 The Role of AI in Identity Security 36:31 Digital Identity vs. Identity Access Management 38:47 Machine Identities and Asset Management 41:36 AI Agents and Identity Assistance 45:25 Challenges and Future of AI in Cybersecurity 51:07 Behind the Scenes of Public Speaking 60:06 Final Thoughts and Wrap-Up Connect with Joseph: https://www.linkedin.com/in/josephcarson Learn more about Delinea: https://delinea.com/ QuBit Cybersecurity Conference: https://qubitconference.com/ 401 Access Denied Podcast - https://delinea.com/events/podcasts Estonia Kratt AI Bot: https://www.ria.ee/en/state-information-system/personal-services/burokratt Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this episode of the 'Identity at the Center' podcast, Jeff and Jim discuss the complexities of managing Privileged Access Management (PAM) and the challenges of balancing various responsibilities like real jobs, podcasting, and attending conferences. They highlight upcoming conferences like Identity Week America and the Authenticate conference, offering discount codes for listeners. The main guest, Michiel Stoop, Director of Identity Management at Philips, shares insights on the importance of PAM, the process of selling PAM initiatives to management, and the integration of technology in identity and access management. The episode also covers methodologies for selecting the right PAM products and strategies for minimizing attack surfaces. To end on a lighter note, the hosts discuss must-try activities and foods in the Netherlands. 00:00 Introduction and Hosts' Banter 01:26 Balancing Work and Podcasting 03:04 Upcoming Conferences and Discount Codes 05:30 Introducing the Guest: Mihiel Stoop 08:04 Philips' Focus on Health Technology 10:12 Understanding Privileged Access Management 23:18 Discussing Privileged Access Management 24:10 Stakeholder Management in IAM 25:00 Operational Models for PAM 28:08 Adapting PAM Strategies for Cloud 32:25 Selecting the Right PAM Technology 36:15 Future of Privileged Access Management 39:38 Exploring the Netherlands 42:57 Wrapping Up and Contact Information Connect with Michiel: https://www.linkedin.com/in/macstoop/ Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this episode of the Identity at the Center podcast, Jeff is joined by Martin Sandrin, IAM Product Lead for IKEA. They discuss a variety of topics including their upcoming attendance at several identity conferences like Identity Week in DC and Authenticate in October. The key focus is on the potential and challenges of deploying passkeys for identity security, highlighting their benefits and the hurdles that need to be overcome. They also delve into related aspects like AI's role in identity management and share some personal anecdotes such as Martin's unique moose hunting tower in Amsterdam. 00:00 Introduction and Announcements 01:44 Introducing Martin Sandrin 02:14 Martin's Journey into IAM 04:37 AI in Identity and Access Management 06:32 Exploring Passkeys 09:57 Challenges with Passkeys 25:56 Future of Passkeys and AI 37:05 The Moose Tower Story 43:44 Conclusion and Farewell Connect with Martin: https://www.linkedin.com/in/martinsandren/ Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: Europe: https://www.terrapinn.com/exhibition/identity-week/ America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this special 5-year anniversary episode of the Identity at the Center podcast, hosts Jeff and Jim dive deep into the ongoing debate between centralized and decentralized identity management. They discuss key concepts such as single sign-on, the importance of evaluating and questioning identity management strategies, and the need to balance usability with security. The episode also covers the importance of having an IAM strategy and roadmap, detailing the steps to create, assess, develop recommendations, build a roadmap, and communicate effectively. They share personal insights, funny behind-the-scenes stories, and emphasize the value of community support. The episode concludes with Jim and Jeff looking forward to the future of the podcast and thanking their listeners for their continued engagement. 00:00 Introduction and Greetings 00:25 Centralized vs Decentralized Identity Management 03:19 Risk-Based Approach to Identity Management 05:10 The IAM Submarine Analogy 06:40 Podcast Milestones and Community Engagement 08:37 Reflections on Podcast Journey 16:47 Developing an IAM Strategy 33:02 The Magic Number: Why Three is Key 33:12 Grouping Recommendations into Projects 35:21 The Importance of Strategy Over Tactics 36:22 Creating and Implementing a Roadmap 37:59 Customizing Your Roadmap for Your Organization 42:39 Prioritizing and Communicating Your Strategy 49:03 Maintaining Momentum and Adjusting the Roadmap 55:09 Behind the Scenes: Podcast Production Insights Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: Europe: https://www.terrapinn.com/exhibition/identity-week/ America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast 🔑 Episode Keywords Identity Management, Iam Strategy, Identity Governance, Centralized Vs Decentralized, Single Sign-On, Multi-Factor Authentication, Iam Roadmap, Identity Practitioners, Risk-Based Approach, Iam Submarine, Iam Policies, Iam Program, Iam Assessment, Iam Recommendations, Iam Strategy Framework, Identity Security, Iam Technology, Iam Implementation, Identity Lifecycle, Iam Trends