#305 - Identity Week America with Ryan Galluzzo of NIST
Identity at the Center16 Syys 2024

#305 - Identity Week America with Ryan Galluzzo of NIST

In this episode of the Identity at the Center podcast, Jeff and Jim are live at the Identity Week America conference in Washington, DC. Welcoming Ryan Galluzzo, Identity Management Program Lead at NIST, they dive into recent NIST updates, including a mobile driver's license project, changes in public comment and revision processes, and the significance of user-controlled wallets. They also touch on self-sovereign identity, risk management, evolution in identity assurance levels, and the vital role of continuous evaluation and improvement. The episode concludes with a light-hearted discussion on the inquisitive nature of children and the spontaneous, enriching conversations that happen at industry conferences.

00:00 Welcome to Identity at the Center Podcast

01:26 Conference Highlights and Networking

02:47 Panel Discussions and Key Takeaways

05:07 Mobile Driver's License Project

07:09 Public Comment Draft and Feedback

11:40 Self-Sovereign Identity and Trust Issues

16:41 NIST Guidance and Risk Management

28:47 Introduction to RMF and Assurance Levels

29:05 Contextualizing Assurance Levels for Different Users

30:25 Continuous Evaluation and Improvement

34:28 User-Controlled Wallets and Federation

35:59 Account Recovery and Assurance Levels

37:18 Overview of NIST 800-63 Documents

51:25 Existential Questions and Personal Anecdotes

55:25 Conclusion and Final Thoughts

Connect with Ryan: ⁠https://www.linkedin.com/in/ryan-galluzzo-a100563b/⁠

Authenticate Conference - Use code IDAC15 for 15% off: ⁠https://authenticatecon.com/event/authenticate-2024-conference/⁠

Connect with us on LinkedIn:

Jim McDonald: ⁠https://www.linkedin.com/in/jimmcdonaldpmp/⁠

Jeff Steadman: ⁠https://www.linkedin.com/in/jeffsteadman/⁠

Visit the show on the web at ⁠http://idacpodcast.com⁠ and watch at ⁠https://www.youtube.com/@idacpodcast

Jaksot(394)

Identity At The Center #34 - Managing IAM Risk with Esteban

Identity At The Center #34 - Managing IAM Risk with Esteban

Jim and Jeff talk with Esteban about the approach he takes in managing IAM risk for his organization. The Institute of Internal Auditors (IIA) Position Paper: The Three Lines Of Defense In Effective Risk Management And Control Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

9 Maalis 202035min

Identity At The Center #33 - IAM for IoT

Identity At The Center #33 - IAM for IoT

Jim and Jeff talk about a topic suggested by listener Kerem B.; How to approach IAM for IoT (Internet of Things). For more IoT Security info, visit www.iotsecurityfoundation.org Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

2 Maalis 202029min

Identity At The Center #32 - Talking IAM with Binod at Ilantus

Identity At The Center #32 - Talking IAM with Binod at Ilantus

Jim and Jeff talk with Binod Singh, Founder and CEO of Ilantus Technologies, about where the IAM market was, is, might go, and why the mid-market space for IAM is hot right now. For more information about Ilantus, visit ilantus.com. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

24 Helmi 202043min

Identity At The Center #31 - Confusing and Misleading IAM Terms

Identity At The Center #31 - Confusing and Misleading IAM Terms

Jim and Jeff talk about some of the terminologies that can be misleading in the IAM space if people are not on the same page. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

17 Helmi 202045min

Identity At The Center #30 - Biggest Challenges of CIAM

Identity At The Center #30 - Biggest Challenges of CIAM

Jim and Jeff talk about some of the biggest challenges organizations (and vendors) face when implementing a Consumer/Customer Identity & Access Management (CIAM) program and technology. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

10 Helmi 202036min

Identity At The Center #29 - Big Game IAM Chat With Katy, Amanda, and Marcie

Identity At The Center #29 - Big Game IAM Chat With Katy, Amanda, and Marcie

Jim and Jeff visit with their friends Katy, Amanda, and Marcie at Winterfell (aka Stevens Point, WI) to talk about why the 49ers will beat the Chiefs, why the Chiefs will beat the 49ers, how they got into the IAM space, and what they wish the business knew about IAM. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

3 Helmi 202047min

Identity At The Center #28 - IAM Metrics

Identity At The Center #28 - IAM Metrics

Jim and Jeff talk about why IAM metrics are important and some ideas for the basic reporting of an IAM program. This was sparked by a recent Forbes article titled "Nine Cybersecurity Metrics Every CEO Should Track" which is worth checking out. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

27 Tammi 202031min

Identity At The Center #27 - What makes a good IAM Program Manager

Identity At The Center #27 - What makes a good IAM Program Manager

We are back and ready to tackle 2020! In the first episode of this decade, Jim and Jeff talk about what it takes to be a good IAM program manager as well as some of the mistakes they made in their IAM careers and mistakes they see organizations making today. Want to join the conversation? Leave us a message here: anchor.fm/identity-at-the-center/message or email us at questions@identityatthecenter.com.

20 Tammi 202052min