Shawn's 2016 RSA Conference Recap and Takeaways
Simeio was fortunate to have participated in the RSA Conference earlier this month. For me, it was a great opportunity to trade perspectives with strategic partners and industry thought leaders and to learn what is truly paramount to those who need to address Identity and Access Management (IAM).
The following are, plain and simple, the most repeated or provocative themes that I took away from the conference:
We appreciate all of the participants at RSAC 2016 who shared their perspectives and we look forward to collaborating with our clients and our community to solve these critical issues.
- "Are We Safe": IAM remains a Board-level issue as it has been for several years. However, in many cases there has been a shift in board-level concern from "are we compliant?" to "are we safe?" The "are we safe?" question is applied to the organization's assets (both information and physical) and to its employees, contractors, business partners, customers and constituents.
- Situational Awareness: Visibility and "situational awareness" seem to be some of the most pressing needs for executives. Most agree that they can be more effective without boiling the ocean with automation and that "there's no silver bullet" when it comes to a software solution. Clearly, we can't manage what we can't see or measure. Being able to see who has access to what (and what they are doing with it) is a practical and necessary place to start – before moving on to automate the universe (or broken processes).
- Privileged Credentials Under Attack: The majority of breaches are the result of the same attack vector – one that uses a compromised privileged account to then gain unfettered access to sensitive information. We heard stories related to data leakage of everything from credit card information, personal information and medical records, to pre-release financial reporting data. The management and auditing of privileged accounts and credentials (and the fact that they are often shared by multiple IT professionals) has often been overlooked or misunderstood. Tackling IAM for this special class of credentials is now a top priority for most executives that we spoke with during the conference.
Executive Vice President
Simeio Blog Series: Limiting Vendor Risk
In his previous post, Simeio Project/Service Delivery Manager Robert Streets discussed the first of four steps in how you can limit vendor risk. This month, Robert reviews maybe the most important of the steps, Step 2: Identify and control who is accessing your critical information.
Read the blog post >>
Congratulations Ed Pascua!
Congratulations to Simeio's Ed Pascua for being voted to the Board of the Cloud Security Alliance – Atlanta Chapter!
Simeio IAM Security
Learn more about
Charlotte ISSA Annual Summit
Charlotte Convention Center
Learn more >>
Cyber Security Forum 2016
Burj Rafal Hotel Kempinski
Riyadh, Saudi Arabia
Learn more >>
55 Ivan Allen Jr. Boulevard
Atlanta, GA 30308
Phone: (770) 282-4442