#389 - Sponsor Spotlight - Aembit
Identity at the Center3 Joulu

#389 - Sponsor Spotlight - Aembit

This episode is sponsored by Aembit. Visit aembit.io/idac to learn more.

Jeff and Jim welcome David Goldschlag, CEO and Co-founder of Aembit, to discuss the rapidly evolving world of non-human access and workload identity. With the rise of AI agents in the enterprise, organizations face a critical challenge: how to secure software-to-software connections without relying on static, shared credentials.

David shares his unique background, ranging from working on The Onion Router (Tor) at the Naval Research Lab to the DIVX rental system, and explains how those experiences inform his approach to identity today. The conversation covers the distinction between human and non-human access, the risks of using user credentials for AI agents, and why we must shift from managing secrets to managing access policies.

This episode explores real-world use cases for AI agents in financial services and retail, the concept of hybrid versus autonomous agents, and practical advice for identity practitioners looking to get ahead of the agentic AI wave.


Visit Aembit: https://aembit.io/idac

Connect with David: https://www.linkedin.com/in/davidgoldschlag


Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com


Timestamps

00:00 - Intro00:51 - Pronunciation of Aembit and the extra 'E'01:56 - David's background: From NSA to Enterprise Security04:58 - The meaning behind the name Aembit06:00 - David's history with The Onion Router (Tor)10:00 - Differentiating Non-Human Access from Workforce IAM11:39 - The security risks of AI Agents using human credentials14:15 - Manage Access, Not Secrets16:00 - Use Cases: Financial Analysts and Retail24:00 - Hybrid Agents vs. Autonomous Agents30:38 - Will we have agentic versions of ourselves?36:45 - How Identity Practitioners can handle the AI wave38:33 - Measuring success and ROI for workload identity43:20 - A blast from the past: DIVX and Circuit City52:15 - Closing


Keywords

IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Aembit, David Goldschlag, Non-human access, Workload Identity, AI Agents, Machine Identity, Cybersecurity, IAM, InfoSec, Tor, DIVX, Zero Trust, Secrets Management, Authentication, Authorization

Jaksot(391)

Identity At The Center #39 - Digital Transformation and CIAM

Identity At The Center #39 - Digital Transformation and CIAM

Jim and Jeff talk about how consumer/customer IAM (CIAM) is a fundamental part of a digital transformation strategy. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

13 Huhti 202042min

Identity At The Center #38 - Data Privacy Regulations are Dead On Arrival with Richard Bird

Identity At The Center #38 - Data Privacy Regulations are Dead On Arrival with Richard Bird

Jim and Jeff talk with Richard Bird, Chief Customer Information Officer at Ping Identity, about data privacy and why data privacy regulations are dead on arrival. LinkedIn article by Richard: https://www.linkedin.com/pulse/data-privacy-joke-your-town-nation-richard-bird/ Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

6 Huhti 202050min

Identity At The Center #37 - Access Management with Andy

Identity At The Center #37 - Access Management with Andy

Jim and Jeff talk with Andy Clark, Principal Consultant at Okta, about access management including the why's of OIDC and SAML, scopes, and flows. To register for the free virtual Oktane 2020 conference, visit https://www.oktane20.com/ Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

30 Maalis 202036min

Identity At The Center #36 - Assessing CIAM Maturity

Identity At The Center #36 - Assessing CIAM Maturity

Jim and Jeff talk about how assessing CIAM (customer/consumer identity & access management) can be different than an enterprise IAM assessment. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

23 Maalis 202050min

Identity At The Center #35 - Managing IAM Through A Pandemic

Identity At The Center #35 - Managing IAM Through A Pandemic

Jim and Jeff talk about the current global health situation and things to consider from an IAM perspective. Jeff also finds a way to talk baseball with Jim as it relates to the Houston Astros and their brute force hacking of pitchers and catchers for the last few seasons (allegedly). Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

16 Maalis 202045min

Identity At The Center #34 - Managing IAM Risk with Esteban

Identity At The Center #34 - Managing IAM Risk with Esteban

Jim and Jeff talk with Esteban about the approach he takes in managing IAM risk for his organization. The Institute of Internal Auditors (IIA) Position Paper: The Three Lines Of Defense In Effective Risk Management And Control Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

9 Maalis 202035min

Identity At The Center #33 - IAM for IoT

Identity At The Center #33 - IAM for IoT

Jim and Jeff talk about a topic suggested by listener Kerem B.; How to approach IAM for IoT (Internet of Things). For more IoT Security info, visit www.iotsecurityfoundation.org Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

2 Maalis 202029min

Identity At The Center #32 - Talking IAM with Binod at Ilantus

Identity At The Center #32 - Talking IAM with Binod at Ilantus

Jim and Jeff talk with Binod Singh, Founder and CEO of Ilantus Technologies, about where the IAM market was, is, might go, and why the mid-market space for IAM is hot right now. For more information about Ilantus, visit ilantus.com. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

24 Helmi 202043min