Can You Trust a Third-Party User? No, But You Can Manage Their Lifecycle Access
by Syndicated here from a post on the CDW Research Hub published on March 21, 2024. Allowing third parties access to organizational systems means striking a …
Category: Core Security
Why IAM Is Insufficient for Data-Centric Security
The following article was written for and published here on the TrustLogix blog series pages in March 2022. I’m syndicating this here as the contents …
Why Common IAM Solutions for Identity-based Attacks Aren’t Really Working
This article was released as a whitepaper for VeriClouds on May 2, 2020, co-authored with Stan Bounev, CEO at VeriClouds, to address common solutions that …
The End of the Password Is Not Near
Syndicated from Security Boulevard, published May 6, 2021. Let’s face it — everyone pretty much hates passwords. While many industry titans are making significant and …
The Problem of Non-User IDs in Organizations Today
(The contents of this article are captured here and reflected back in response to an article posted on SailPoint’s Identity Quotient Blog article entitled “Third-Party …
Considerations Around Application Encryption
For years, the use of encryption to protect data-at-rest on computers within the enterprise was solely the responsibility of developers who coded the applications that …
Two Years Later: Reflections from “The Breach”
President and CEO of Vormetric, Alan Kessler, blogged earlier this week concerning the far-reaching impacts of the Target breach – reflections from almost two years …
History Foretells the Raising of the Ante: Securing Your Data Now All but Mandatory
It’s been said that those who don’t learn from history are doomed to repeat it. In my last article, I wrote metaphorically about the medieval …