The Hub

The RSA Conference 2017 in San Francisco has just concluded. For those unfamiliar, it is one of the biggest information security shows in the US. This year, the attendance climbed to over 40,000 people. Over the past week, I had the opportunity to hear from some of the brightest minds in the field of InfoSec. I spent many hours on the expo floor looking at and talking with various vendors. I also was glad to have a chance to catch-up with former co-workers and share a cocktail or three and talk some shop in a… let’s say… uninhibited manner.
Read More
It has been just over a year since I joined the dark side started IAM consulting. Prior to that, I spent over a dozen years in the daily trenches of IAM–administrating, managing, directing, operating, supporting, justifying, marketing–you name it. Over the past year, I've been part of over a dozen IAM advisory engagements. In no particular order, here is what I've learned:
Now that’s a silly premise… or is it? For those unfamiliar, World of Warcraft (WoW) is a massively multiplayer game set in a high fantasy world replete with elves, orcs, dwarves, and big bad bosses that require dozens of players cooperating to beat them. It’s played by millions of people around the world and is one of the most successful games of all time.
It's a new year and a great time to refactor and refocus your identity and access management (IAM) program and strategy. To do it right, you need to have executive sponsorship, engagement, and organizational consensus. Do you have all 3 of these going into your IAM program this year?  
If you're a financial services provider or company who does business in New York, your cybersecurity program is about to come under major scrutiny from the state government.
It’s no shocking scientific revelation that being tired impairs our ability to function. Take driving, for example. Going behind the wheel while tired is equally dangerous to driving under the influence of alcohol. Studies show that being awake for 24 hours straight is the equivalent to having a BAC of roughly .10%. Mythbusters also conducted an experiment and confirmed this inextricable truth: ...
Gartner’s yearly identity and access management (IAM) Summit concluded yesterday and it was, like usual, a well-run affair. 1,500 IAM professionals from all over the world converged in Las Vegas to learn from each other and share IAM war stories. For 2016, IAM investment remains strong as more organizations take steps to mitigate risk and drive efficiencies. They should, as we continue to see ...
Identity and access management (IAM) is a lot of work. A lot of work to get off the ground and a lot of work to keep it going. One of the concerns that I hear often when advising customers revolves around how much effort it is going to take to get their IAM program into a more mature state.  The answer tends to be a lot.
I am currently sitting in the United Club at O’Hare Airport on a relatively busy Tuesday morning. There is the usual smattering of hurried travelers milling around.   Among those are the busy professionals with their laptops out, earpieces in, and working on all sorts of tasks.   To my left, is a gentleman working on a presentation detailing the key sales figures for a major national retailer.
As we enter the age of biometric security, previously impossible feats are now child’s play. Security measures began with a passcode, then progressed to a fingerprint scanner, and, most recently, an iris scanner on the Galaxy Note 7. All of these efforts were to thwart both hackers and attackers from accessing sensitive business information and data. A recent roll-out by Mastercard has shown next ...