Skip to main content

Recent thoughts and media appearances

  • Introducing a probably bad idea: Workforce Identity Data Platform

    Continuing from my post a few weeks back about the four components of modern identity (policy, orchestration, execution, and data), I wanted to spend a little time on one of the components: data. I have a really bad idea and need to get it out of my head… and I want a bit of validation that yes, in fact, this is a really bad idea.

    For the moment, let’s look at the consumer world of IT. In this space, there is a notion of a customer data platform (CDP.) CDP’s are thought of as marketing technology. They are notionally the repository for everything related to customers. From clickstream, to email open, to expressed preferences, to orders, to call center interactions, to life time value, and more… all flow into the CDP. And the CDP is consulted to construct a customer’s journey, regardless of whether that journey starts as an email campaign, a guest user on a site, in an app, or just browsing around. Different kinds of tools use the CDP for their own outcomes (e.g. segmentation, ad placement, customer lifetime value analysis, etc.)

    Read more

  • Tactical ZSP chat with Alex Bovee

    I first met Alex of ConductorOne a few weeks ago at Identiverse. We were on an Identity at the Center podcast together and hit it off. We caught back up last week to continue our conversation. We were talking a bit more tactically about how to actually implement zero standing privilege… and it was a blast!

    Check it out!

  • Four Components for Modern Identity

    For the last 6 months or so, I have been struggling with market definitions in identity and access management. I used to understand markets such as identity governance and administration and access management; I understood what the feature boundaries were; I could map vendors to those markets. But honestly, lately, I feel like those maps and those boundaries aren’t as accurate as they once were. So, in some regards, this post is my attempt to work through ways of defining what IAM looks like in the modern era, what parts should enterprises be willing to pay for, which are table stakes, and where is this all going.

    Read more

  • EIC Keynote: The Role of Counselors and Applied Identity

    I’ve been kicking around this notion of counselors for a few years now. The first time I debuted the idea it was at the OpenID Foundation Japan conference in 2019. I have been refining it over time. The refinement continued through keynote season this year. What follows is both a recording of my delivery at EIC 2024 as well as the text. You’ll notice that the two differ… and that is a result of my process. Where I start a talk and what gets on stage tends to differ… but in this case they differ reasonably significantly. Truth be told, I didn’t love this talk, but I got a lot of positive response to the actual delivery… which goes to show that what you, the speaker, things of a talk, and what the audience thinks can be very different! Watch the video here or read the text or both and, regardless, enjoy!

    Read more

  • Keynote: The Role of Counselors and Applied Identity

    [I’ve been kicking around this notion of counselors for a few years now. The first time I debuted the idea it was at the OpenID Foundation Japan conference in 2019. I have been refining it over time. The refinement continued through keynote season this year. What follows is both a recording of my delivery at EIC 2024 as well as the text. You’ll notice that the two differ… and that is a result of my process. Where I start a talk and what gets on stage tends to differ… but in this case they differ reasonably significantly. Truth be told, I didn’t love this talk, but I got a lot of positive response to the actual delivery… which goes to show that what you, the speaker, things of a talk, and what the audience thinks can be very different! Watch the video or read the text or both and, regardless, enjoy!

    Read more