Recent thoughts and media appearances

  • Weave Identity Year 1 or What just happened?!

    So LinkedIn informed me that Weave’s 1st birthday came and went. A year?! Really? Well as we all know social networks don’t lie ;-)

    It’s been a whirlwind… especially when you through in a very compressed Identiverse on top of that too.

    Definitely there have been touch and go moments - moments of self-doubt - but overall I have absolutely loved the journey. The opportunity that I have been granted to look so broadly across the industry has been truly amazing. It continues to reinforce just how little I understand… and, for me, that is incredibly energizing. There is so much more I can learn; so many ways I can grow.

    Read more

  • The IDPro Show: A Lifetime of Solutions to Uncover with Ian Glazer

    Such an honor to talk to Heather Flanagan and Chris Cochran on the IDPro Show! We talked about my journey into identity and admin-time identity and much much more!

  • Getting started with Zero Standing Privilege: A Field Guide

    Over the last few weeks I’ve had a bunch of conversations about zero standing privilege (ZSP). From my blog exchange with Andi Hindle, to the Identerati Office Hours with Mike and Vlad, to a great chat with Simon and Atul, ZSP has been the topic du jour. And throughout those conversations one question consistently came up: how does one get started with ZSP?

    Conduct a census

    ZSP, just like automated user provisioning, is not something that you need to apply for 100% of your apps, services, users, and use cases. As you start off, you’ll want to take a far more targeted approach. I’d recommend itemizing the systems/apps/services that, if something were to go wrong, have the greatest blast radius. Talk to your service reliability peers, talk to your friends in finance, talk to your customer support teams. From them you’ll get a list of things that could cause significant outages or damage to the company… like core DNS, network infrastructure, general ledger, your services in the public cloud, etc. 

    Read more

  • Identerati Office Hours: Zero Standing Privilege

    I joined Mike Schwartz and Vlad Shapiro to talk about zero stranding privilege and much much more - so much fun!

  • Misalignment and the rise of event-time IAM

    My good friend, colleague, collaborator, etc Andi Hindle has started blogging and I for one am thrilled he is adding another venue for him to share his thoughts on the identity space. His latest post speaks to the concept of continuous identity - one in which our systems “have the opportunity to make [access-related] decisions continuously based on a variety of signal inputs, including user-provided input, geolocation, user behavior, third-party fraud and risk signals, and so on.” In some regards this isn’t necessarily a new idea but a lot has changed around our identity systems that make a more continuous evaluation of assurance needs and associated risks and signals far more viable than in the past. 

    Read more