#319 - Identity Security & Cyber Resilience with David Mahdi of Transmit Security

In this episode of Identity at the Center, recorded live from Identiverse 2025 in Las Vegas, Jim McDonald and Jeff Steadman are joined by special guests Diane Vicezar and Arynn Crow. Diane is a recent recipient of the Digital Identity Advancement Foundation's (DIAF) prestigious Kim Cameron Award, and Arynn is the Director of Governance and Transparency for DIAF.Join us for a conversation about breaking into the identity and access management (IAM) industry. Diane shares her journey from a college intern at Microsoft to a full-time employee in the identity space, and what her experience has been like as a first-time attendee at Identiverse. Arynn provides valuable insights into the mission of DIAF, which aims to make professional development in identity more accessible through merit-based awards like the Kim Cameron Award for newcomers and the Victoria O'Connor Award for established professionals.The group discusses the critical question of how the industry can attract new talent. Do people choose a career in identity, or does it choose them? They explore the importance of outreach to universities, the power of social media, and reframing the narrative around identity to focus on its mission-driven impact on society. From career ceilings and the role of AI to favorite conference sessions and hallway conversations, this episode is packed with insights for both seasoned professionals and those just starting their identity journey.Chapter Timestamps00:00:10 - Welcome to Identiverse 202500:02:21 - Introducing Diane Vicezar and Arynn Crow00:03:00 - What is the Digital Identity Advancement Foundation (DIAF)?00:05:33 - Diane's Experience as a Kim Cameron Award Winner00:07:26 - The Legacy of Kim Cameron and Vittorio Bertocci00:10:17 - How Did You Get Into Identity?00:12:08 - How to Attract New Talent to the Identity Industry00:16:51 - Reframing the Conversation Around Identity's Mission00:20:27 - Is There a Career Ceiling in Identity?00:22:34 - Advice for Those Starting Their Career in Identity00:27:10 - The Future of AI in the Identity Industry00:28:32 - Favorite Sessions at Identiverse 202500:34:15 - If You Were a Potato, How Would You Be Prepared?00:36:20 - Closing RemarksConnect with Diana: https://www.linkedin.com/in/dianavicezar/Connect with Arynn: https://www.linkedin.com/in/arynn-crow-821761103/Learn more about the Digital Identity Advancement Foundation: https://digitalidadvancement.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywordsIDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Diane Vicezar, Arynn Crow, Digital Identity Advancement Foundation, DIAF, Kim Cameron Award, Identiverse 2025, Identity and Access Management, IAM, Career in Identity, Cybersecurity, Professional Development, Women in Identity, Identity Industry, Microsoft, AI in Identity, FIDO, Passkeys, Verifiable CredentialsHashtags#idac #Identiverse #DigitalIdentity #IAM #Cybersecurity #CareerDevelopment #WomenInTech #DIAF #KimCameronAward

21 Heinä 202537min

In this episode of the Identity at the Center Podcast, hosts Jeff and Jim discuss highlights from Identiverse 2025, featuring special guest Sean O'Dell. They reflect on the importance of continuous identity management, event-driven architecture, and AI in identity and access management (IAM). The conversation covers a range of topics, including insights from the CAEP (continuous access evaluation profile) panel, adoption of the shared signals framework (SSF), and the evolution of identity verification. Tune in for a deep dive into the future of IAM and thoughtful reflections on key industry trends and practices.00:00 Introduction and Greetings00:05 Acknowledgements and Thanks00:23 Conference Highlights and Listener Feedback01:36 Introducing the Guest Speaker: Sean O'Dell01:48 Sean O'Dell's Role and Responsibilities02:35 Panel Discussion Recap: Event-Driven Identity Management03:29 Audience Engagement and Technical Questions04:34 Continuous Identity and Security Paradigms09:19 Federated Policies and Signal Integration19:28 Privacy Sharing and Anonymity20:25 Vendor Adoption and Keynotes21:28 AI and Data Readiness22:26 Non-Human Identities vs. Workload IAM26:25 Continuous Authentication and Identity28:12 Shared Signals Framework and Device Management31:34 Vendor Solutions and Identity Verification34:58 Panel Reflections and Moderation InsightsConnect with Sean: https://www.linkedin.com/in/seanodentity/Learn more about CAEP: https://caep.dev/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com

14 Heinä 202537min

This episode is sponsored by Trusona. Visit trusona.com/idac to learn more.In this episode of the Identity of the Center podcast, Jeff and Jim discuss identity verification challenges with Ori Eisen, the founder and CEO of Trusona. The conversation explores the problems surrounding help desk authentication and how Trusona's new product, ATO Protect, aims to address these issues by confirming caller identities, even in scenarios involving social engineering and advanced AI threats. Ori explains the technology behind document scanning, data triangulation, and geolocation to validate identities. The episode also includes an intriguing hack challenge for listeners to test the robustness of Trusona's solutions. Check out the detailed demo on Trusona's website and join the challenge!Timestamps00:00 Introduction and Episode Excitement01:16 Introducing the Guest: Ori Eisen from Trusona02:11 The Problem with Passwordless Authentication03:53 The Rise of Gen AI and Its Impact on Security04:51 Understanding ATO Protect and Its Importance16:10 How ATO Protect Works: A Step-by-Step Guide27:51 The Puppeteering Scam Unveiled28:24 Fingerprinting the Fraudsters29:11 Real-Time Fraud Detection Demo29:42 Challenges in Penetration Testing30:08 Combating Man-in-the-Middle Attacks30:41 The Ultimate Security Challenge33:44 Verifying Caller Identity41:24 Future Threats in Cybersecurity42:10 AI: The Double-Edged Sword49:08 Issuing the Hack Challenge52:45 Conclusion and Final ThoughtsConnect with Ori: https://www.linkedin.com/in/orieisen/Learn more about Trusona: https://www.trusona.com/idacConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.comKeywords:IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Trusona, Ori Eisen, Identity Verification, Help Desk Security, Service Desk, Passwordless, Authentication, KBA, Knowledge-Based Authentication, Cybersecurity, Identity and Access Management, IAM, Multi-Factor Authentication, MFA, Zero Trust, Identity Proofing#IDAC #Trusona #Passwordless #Cybersecurity #IdentityManagement #HelpDesk #ZeroTrust

9 Heinä 202553min

In this episode of the Identity at the Center Podcast, Jeff and Jim broadcast live from Identiverse 2025. Special guest Andrew Shikiar from the FIDO Alliance joins to talk about efforts to push passkey adoption and reduce reliance on passwords. Topics covered include the technicalities of passkeys, their adoption by major banks like Wells Fargo, and initiatives for adding more signals for high assurance scenarios. The episode wraps up with exciting news about the upcoming Authenticate conference and plans for an Authenticate APAC edition in Singapore.00:00 Introduction and Greetings00:16 Podcast Highlights and Recent Activities01:38 Guest Introduction: Andrew Shikiar from FIDO Alliance01:58 FIDO Alliance and Passkey Adoption07:13 Technical Insights on Passkeys14:52 Authenticate Conference and Community20:20 Global Adoption and Regional Differences25:13 Conclusion and Wrap-UpConnect with LinkedIn: https://www.linkedin.com/in/andrewshikiarLearn more about the FIDO Alliance: https://fidoalliance.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com

7 Heinä 202527min

Welcome to a special game show edition of 'Identity at the Center,' hosted by Jeff Steadman! Recorded live at Identiverse 2025, this episode features two teams—Team IDPro (Heather Flanagan, Tina Srivastava, and Mike Kiser) and Team IDAC (Jim McDonald, David Mahdi, and Steven Rennick)—competing in a Family Feud-style trivia game focused on Identity and Access Management (IAM). Watch as they answer questions related to common IAM project failures, non-human identities, snacks at conferences, and popular conference swag with a little help from the audience. Stick around to the end for a special IAM-themed rap performance by Tina.Chapters00:00 Introduction and Welcome01:18 Meet the Teams03:10 Explaining the Rules04:20 Round 1: Common Reasons for IAM Project Failure07:52 Round 2: Non-Human Identities in IAM11:33 Introduction and Initial Questions11:55 Fun with Vegas Snacks15:00 Final Round: Common Swag Items18:40 Conclusion and FarewellConnect with the contestants:Heather Flanagan: https://www.linkedin.com/in/hlflanagan/Tina Srivastava: https://www.linkedin.com/in/tina-s-8291438a/Mike Kiser: https://www.linkedin.com/in/mike-kiser/David Mahdi: https://www.linkedin.com/in/dmahdi/Steven Rennick: https://www.linkedin.com/in/steven-rennick/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com

30 Kesä 202521min

This episode is sponsored by Silverfort. Visit silverfort.com for more.In this sponsored episode of the Identity at the Center Podcast, Jeff and Jim sit down with Hed Kovetz, CEO and Co-founder at Silverfort. They discuss the rapid evolution in the identity security space, Silverfort's groundbreaking innovations, and the critical role of AI and non-human identities. Learn how Silverfort's inline, real-time enforcement technology is tackling the complexities of identity management at scale. Hed also shares insights on the company's recent expansions and acquisitions, and the growing importance of AI agent security. Don't miss out on this deep dive into the future of identity security!00:00 Introduction and Guest Welcome00:14 Sponsor Spotlight and Industry Insights01:15 Silverfort's Recent Developments02:17 Identity Security Market Trends04:46 Challenges in Identity Governance07:14 Non-Human Identities and AI10:39 Silverfort's Unique Approach18:52 Service Account Security29:59 Reducing Risk with Virtual Fencing30:45 Addressing Human and Non-Human Identity Risks31:34 Overcoming the Fear of Breaking Systems32:35 Simulation Mode for Trust Building35:20 Challenges in Manual Identity Management36:12 AI Agent Security: The New Frontier42:10 The Importance of Inline Security55:50 The Ideal Identity Security Playbook01:00:38 Closing Remarks and ResourcesConnect with Hed: https://www.linkedin.com/in/hed-kovetz-910ba5b9/Learn more about Silverfort: https://www.silverfort.com/Insecurity in the shadows: New data on the hidden risks of non-human identities: https://resources.silverfort.com/insecurity-in-the-shadows/homeThe Identity Security Playbook (eBook): https://www.silverfort.com/resources/the-identity-security-playbook/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

25 Kesä 20251h 2min

Join Jim McDonald and Jeff Steadman on the Identity at the Center podcast as they welcome Lalit Choda, founder and CEO of the Non-Human Identity Management Group. Lalit, also known as "Mr. NHI," shares his journey from investment banking to becoming a leading expert in non-human identities. This episode delves into the critical and often overlooked world of NHI, exploring why it's such a hot topic now, the challenges practitioners face in managing these identities, and how to approach the problem from a risk-based perspective. Lalit discusses the limitations of traditional PAM and IGA tools for NHI, the importance of foundational controls, and the alarming implications of AI on non-human identity management. Plus, hear a fun segment about vinyl records and some surprising finds!Chapter Timestamps:00:00:00 - Introduction to Lalit Choda and the NHI Community00:02:31 - Welcome to the Identity at the Center Podcast & IdentiVerse Discussion00:06:18 - Lalit Choda's Identity Origin Story: From Mr. SOX to Mr. NHI00:12:03 - Why Non-Human Identities Are a Big Deal Right Now00:15:37 - Defining NHI and the Practitioner's Framework00:19:13 - The Scale and Challenges of NHI Management00:23:01 - New Types of NHI and Tooling Limitations00:27:12 - The Lack of a Single Source of Truth for NHI00:33:57 - Prioritizing NHI Management and the Role of PAM00:38:58 - A Risk-Based Approach to NHI and Foundational Controls00:48:15 - What Scares Lalit Most About NHI (and AI)00:50:54 - Lalit's Impressive Vinyl Collection00:56:38 - Jim and Jeff's First, Best, and Favorite Albums01:01:15 - The Intersection of Music and Non-Human Identities01:02:00 - Wrapping Up & Where to Find More InformationConnect with Lalit: https://www.linkedin.com/in/lalit-choda-5b924120/Non-Human Identity Management Group: https://www.nhimg.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywords:Lalit Choda, Non-Human Identity, NHI, Machine Identity, Workload Identity, Identity Management, Cybersecurity, PAM, IGA, Privilege Access Management, Identity Governance and Administration, Secrets Management, Cloud Security, AI, Artificial Intelligence, DevSecOps, Risk-Based Approach, Identity Security, Service Accounts, Identity at the Center, IDAC, Jeff Steadman, Jim McDonald, IdentiVerse, Vinyl Collection, Podcast, Mr. NHI#idac #nonhumanidentity #machineidentity #cybersecurity #identityaccessmanagement #IAM #infosec #digitalidentity #workloadsecurity #devsecops #cloudsecurity #privilegedaccessmanagement #identitygovernance #zerotrust #nhi #mrnhi

23 Kesä 20251h 4min

This episode features various professionals discussing their experiences and journeys in the identity and access management (IAM) field during a meetup in Oslo, Norway, and Berlin, Germany. Participants include individuals from the Central Bank of Norway, Space Norway, and newcomers to the IAM space, among others. The event, promoted as 'IdentitBeer,' highlights networking, the evolution of IAM, challenges faced, and the importance of honest relationships in business development. Key topics include the history and growth of IdentiBeer, community impact, and personal anecdotes about working in IAM.Chapters00:00 Welcome to Identity at the Center00:18 Meet the Identity Experts01:49 Discovering the Faces Behind Identity02:07 Sarah's Journey into Identity06:47 Tips for Building Client Relationships13:13 Espen's Origin Story and IdentiBeer17:05 Expanding IdentiBeer Globally22:58 IdentiBeer Meetup in Asheville23:30 Organizing IdentiBeer Events24:34 IdentiBeer at Identiverse25:55 Reflections on Identity Community26:07 Identity Professionals' Introductions28:17 AI and Identity Management30:04 Identity Journeys and Experiences31:26 Challenges in Identity Management34:08 Identity in Cybersecurity45:37 Closing Remarks and CheersFind your next IdentiBeer event: https://identi.beer/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com#idac #IdentityAtTheCenter #IdentiBeer #IAM #IdentityandAccessManagement #Oslo #Berlin #Norway #Germany #Cybersecurity #InfoSec #TechCommunity #Networking #IdentityManagement #DigitalIdentity #TechPodcast #ITSecurity #AccessManagement #IdentiBeerOslo #IdentiBeerBerlin #JimMcDonald #JeffSteadman

16 Kesä 202546min