#382 - Sponsor Spotlight - HYPR
Identity at the Center29 Loka

#382 - Sponsor Spotlight - HYPR

This episode is sponsored by HYPR. Visit hypr.com/idac to learn more.

In this episode from Authenticate 2025, Jim McDonald and Jeff Steadman are joined by Bojan Simic, Co-Founder and CEO of HYPR, for a sponsored discussion on the evolving landscape of identity and security.

Bojan shares his journey from software engineer to cybersecurity leader and dives into the core mission of HYPR: providing fast, consistent, and secure identity controls that complement existing investments. The conversation explores the major themes from the conference, including the push for passkey adoption at scale and the challenge of securely authenticating AI agents.

A key focus of the discussion is the concept of "Know Your Employee" (KYE) in a continuous manner, a critical strategy for today's remote and hybrid workforces. Bojan explains how the old paradigm of one-time verification is failing, especially in the face of sophisticated, AI-powered social engineering attacks like those used by Scattered Spider. They discuss the issue of "identity sprawl" across multiple IDPs and why consolidation isn't always the answer. Instead, Bojan advocates for a flexible, best-of-breed approach that provides a consistent authentication experience and leverages existing security tools.


Connect with Bojan: https://www.linkedin.com/in/bojansimic/

Learn more about HYPR: https://www.hypr.com/idac


Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com


Chapter Timestamps:

00:00 - Introduction at Authenticate 2025

00:23 - Sponsored Episode Welcome: Bojan Simic, CEO of HYPR

01:11 - How Bojan Simic Got into Identity and Cybersecurity

02:10 - The Elevator Pitch for HYPR

04:03 - The Buzz at Authenticate 2025: Passkeys and Securing AI Agents

05:29 - The Trend of Continuous "Know Your Employee" (KYE)

07:33 - Is Your MFA Program Enough Anymore?

09:44 - Hackers Don't Break In, They Log In: The Scattered Spider Threat

11:19 - How AI is Scaling Social Engineering Attacks Globally

13:08 - When a Breach Happens, Who's on the Hook? IT, Security, or HR?

16:23 - What is the Right Solution for Identity Practitioners?

17:05 - The Critical Role of Internal Marketing for Technology Adoption

22:27 - The Problem with Identity Sprawl and the Fallacy of IDP Consolidation

25:47 - When is it Time to Move On From Your Existing Identity Tools?

28:16 - The Role of Document-Based Identity Verification in the Enterprise

32:31 - What Makes HYPR's Approach Unique?

35:33 - How Do You Measure the Success of an Identity Solution?

36:39 - HYPR's Philosophy: Never Leave a User Stranded

39:00 - Authentication as a Tier Zero, Always-On Capability

40:05 - Is Identity Part of Your Disaster Recovery Plan?

41:36 - From the Ring to the C-Suite: Bojan's Past as a Competitive Boxer

47:03 - How to Learn More About HYPR


Keywords:

IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Bojan Simic, HYPR, Passkeys, Know Your Employee, KYE, Continuous Identity, Identity Verification, Authenticate 2025, Phishing Resistant, Social Engineering, Scattered Spider, AI Security, Identity Sprawl, Passwordless Authentication, FIDO, MFA, IDP Consolidation, Zero Trust, Cybersecurity, IAM, Identity and Access Management, Enterprise Security

Jaksot(392)

Identity at the Center #64 - Identity Product Design with Mary Writz

Identity at the Center #64 - Identity Product Design with Mary Writz

Jim and Jeff talk with Mary Writz, Vice President of Product Management at ForgeRock, about the challenges and thought process that goes into designing an identity product. Show Links: Connect with Mary on LinkedIn here: https://www.linkedin.com/in/marywritz/ Visit ForgeRock to learn more about what they offer: https://www.forgerock.com/ Ping Identity Identify 2020 Virtual Conference: https://www.pingidentity.com/en/events/identify.html Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.comand follow @IDACPodcast on Twitter.

5 Loka 202046min

Identity at the Center #63 - The Open-Measure Initiative and Measuring IAM Performance with David Doret

Identity at the Center #63 - The Open-Measure Initiative and Measuring IAM Performance with David Doret

Jim and Jeff talk with David Doret, IT Risk & Cybersecurity: IAM & PAM Manager at BNP Paribas, and founder of the Open-Measure project about the initiative and his upcoming research about measuring IAM performance. Be sure to connect and follow David on LinkedIn to be notified when his research will be made publicly available. Show Links: Connect with David Doret: https://www.linkedin.com/in/daviddoret/ Open-Measure website: https://open-measure.atlassian.net/ Ping Identity Identify 2020 Virtual Conference: https://www.pingidentity.com/en/events/identify.html Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.com and follow @IDACPodcast on Twitter.

28 Syys 202044min

Identity at the Center #62 - Managing Third Party Identity with David Pignolet from SecZetta

Identity at the Center #62 - Managing Third Party Identity with David Pignolet from SecZetta

Jim and Jeff talk with David Pignolet, founder, and CEO of SecZetta, about how they address the problems of managing third party identities and some of their associated risks. Show Links: Connect with David Pignolet on LinkedIn here: https://www.linkedin.com/in/davidpignolet/ SecZetta: https://www.seczetta.com/ Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.comand follow @IDACPodcast on Twitter.

21 Syys 202037min

Identity at the Center #61 - Zero Trust & "Strong" Authentication with Rebecca Nielsen

Identity at the Center #61 - Zero Trust & "Strong" Authentication with Rebecca Nielsen

Jim and Jeff talk with Rebecca Nielsen, Director of Technology Integrations at PKH Enterprises, about Zero Trust, "Strong" Authentication, and her work on the US Department of Defense ICAM reference design. Show Links: Connect with Rebecca on LinkedIn here: https://www.linkedin.com/in/rebeccanielseniam/ Identiverse 2020 On-Demand: https://portal.inxpo.com/ID/PingIdentity/IdentiverseVirtual/ About FICAM: https://arch.idmanagement.gov/ NIST 800-63: https://www.nist.gov/itl/tig/projects/special-publication-800-63 DoD Enterprise Identity, Credential, and Access Management (ICAM) Reference Design: https://dodcio.defense.gov/Portals/0/Documents/Cyber/DoD_Enterprise_ICAM_Reference_Design.pdf Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.com and follow @IDACPodcaston Twitter.

14 Syys 202031min

Identity at the Center #60 - Identity Centric Security with Jerrod Brennen

Identity at the Center #60 - Identity Centric Security with Jerrod Brennen

Jim and Jeff talk with Jerod Brennen, Music Teacher and IAM Renaissance Man, about his IAM journey, Identity Centric Security, and some of the IAM education sessions that he has developed. Show Links: Connect with Jerod on LinkedIn here: https://www.linkedin.com/in/slandail/ LinkedIn Learning: https://www.linkedin.com/learning/instructors/jerod-brennen Webinar - Hacking Identity: The Good, Bad and Ugly of Identity-Centric Security Controls: https://www.brighttalk.com/webcast/18458/430843 Jerod's YouTube playlist: https://www.youtube.com/playlist?list=PLI0hoXtO7SA5Lq0rHrsT02SXWulm2Dal- Adrian Crenshaw (IronGeek): https://twitter.com/irongeek_adc Identity Defined Security Alliance: https://www.idsalliance.org/ IDPro Body of Knowledge: https://bok.idpro.org/ World Economic Forum paper: https://www.weforum.org/whitepapers/reimagining-digital-identity-a-strategic-imperative McKinsey Digital report: https://www.mckinsey.com/business-functions/mckinsey-digital/our-insights/digital-identification-a-key-to-inclusive-growth Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.com and follow @IDACPodcaston Twitter.

7 Syys 202045min

Identity at the Center #59 - Optimizing Security & Convenience with Frank Villavicencio

Identity at the Center #59 - Optimizing Security & Convenience with Frank Villavicencio

Jim and Jeff talk with Frank Villavicencio, Head of Product for Shared Services at ADP, about the IAM user experience and how to optimize security and convenience. Connect with Frank on LinkedIn here: https://www.linkedin.com/in/fvillavicencio/ IDSA Webinar - Hacking Identity: The Good, Bad and Ugly of Identity-Centric Security Controls with Jerod Brennen of SailPoint: https://www.idsalliance.org/webinar-hacking-identity-the-good-bad-and-ugly-of-identity-centric-security-controls/ Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.comand follow @IDACPodcast on Twitter.

31 Elo 202059min

Identity at the Center #58 - Browser Tracking and the Identity Effects with Vittorio Bertocci

Identity at the Center #58 - Browser Tracking and the Identity Effects with Vittorio Bertocci

Jim and Jeff talk with Vittorio Bertocci, Principal Architect with Auth0, about the effects of browser tracking and how it is affecting the identity space. Connect with Vittorio on LinkedIn here: https://www.linkedin.com/in/vittoriobertocci/ Follow Vittorio on Twitter @vibronet Learn more about Auth0 here: www.auth0.com Listen to the Identity Unlocked Podcast: www.identityunlocked.com Check out the Identiverse On-Demand Session "Browser Features vs Identity Protocols: An Arms Race?" from June 17th, 2020 and "Modern Identity for Developers 101" from July 27th, 2020 here: https://portal.inxpo.com/ID/PingIdentity/IdentiverseVirtual/ Books mentioned on the show: The Age of Surveillance Capitalism: https://www.amazon.com/Age-Surveillance-Capitalism-Future-Frontier/dp/1610395697 21 Lessons for the 21st Century: https://www.amazon.com/Lessons-21st-Century-Yuval-Harari/dp/0525512179 Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.com and follow @IDACPodcaston Twitter.

24 Elo 202059min

Identity at the Center #57 - Learning about the Identity Defined Security Alliance with Julie Smith

Identity at the Center #57 - Learning about the Identity Defined Security Alliance with Julie Smith

Jim and Jeff talk with Julie Smith, Executive Director of the Identity Defined Security Alliance (IDSA), about their mission, IAM frameworks they have developed, and future focus. Episode Links: Connect with Julie on LinkedIn here: https://www.linkedin.com/in/juliaesmith/ Follow them on Twitter: @IDSAlliance IDSA Security Outcomes: https://securityoutcomes.idsalliance.org/ Learn more about the Identity Defined Security Alliance: https://www.idsalliance.org Best practices: https://www.idsalliance.org/identity-defined-security-framework/best-practices/ Zero Trust: https://www.idsalliance.org/identity-defined-security-framework/use-cases/ Webinar - Hacking Identity: The Good, Bad and Ugly of Identity-Centric Security Controls: https://www.brighttalk.com/webcast/18458/430843 Connect with Jim and Jeff on LinkedIn here: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show at www.IdentityAtTheCenter.comand follow @IDACPodcast on Twitter.

17 Elo 202045min