Pick Your Chalk Talk Topic with Fortune 500 IAM & Cloud Engineering Experts, Including GAP @ Gartner IAM 2024 Summit
Copyright © 2024 Britive. All rights reserved.
WHAT YOU WILL LEARN
- CSPM, CIEM, DSPM tools like Wiz, Orca, etc. are great at discovering unmanaged privileged identity risks across both human and non-human identities (NHIs). They will even auto-generate least privilege policies by analyzing prior usage data.
- But these tools do very little to help implement appropriate privileged access, especially when dealing with complex permission hierarchies in multi-cloud environments.
- Given the scale of the problem and number of alerts, manual remediation is out of the question.
- Terminating unverified privileges can also cause huge operational disruptions.
So, your Cloud Security Posture Management (CSPM) tool discovered 10,000+ over-privileged identities across your IaaS, DaaS, PaaS environments.
Where do you go from here? How do you address all these alerts?
We'll discuss how:
Topic 1 - Mon 12/9 @ 10:30AM, 1PM, 4:15PM: How to handle identity risks discovered by your CSPM across your environment.
Topic 2 - Tue 12/10 @ 10:30AM, 1PM, 4:15PM: Why Traditional IAM Tools Fall Short for Agile DevOps and How to Build a Better Solution.
WHAT YOU WILL LEARN
Enterprise DevOps, DevSecOps and platform engineering teams are asking for different kinds of IAM solutions. Traditional IGA and PAM platforms aren’t conducive to building and deploying applications at cloud speed.
Cloud-first and multi-cloud environments have fundamentally changed the way that identities are handled, and IAM teams have to find a solution that meets changing needs and requirements.
Our discussion will touch on:
- Why traditional PAM tools (vault-based, proxy-based, agent-based) are too complex to deploy and manage in agile cloud environments and how they fall flat in the world of ephemeral workloads, K8s, and Infrastructure as Code (IaC).
- How traditional IGA tools are too rigid and difficult to adapt to the dynamic needs of cloud users who demand more flexibility and self-service capabilities.
- The sheer volume of access requests combined with the complex permission hierarchies in multi-cloud environments, which becomes unmanageable for the IAM teams.
- What to do with traditional IGA and PAM products that were not built to handle machine identities and NHIs which already outnumber human identities by 30x-40x.
Topic 3 - Wed 12/11 @ 10:30AM or 1PM: NHI Visibility and Governance: Scalable solutions for DevOps and cloud-native teams.
WHAT YOU WILL LEARN
What the heck is NHI anyway and how do I deal with them? NHI is the latest buzz word but is there anything new here? We already manage our service accounts in our PAM tool and rotate passwords regularly. Are we missing something?
We’ll discuss:
- Non-human identities (NHIs) is a term that refers to broader types of entities, other than human users, that require access permissions and need to be authenticated and verified before granting access to infrastructure, applications and data. Examples include autonomous workloads, RPAs, CI/CD pipelines, APIs, etc.
- The first big problem with NHIs is visibility:
- Lack of a complete inventory and categorization of these identities.
- Lack of visibility on what credentials are assigned to these identities with what level of permissions. E.g., is the Terraform job using a login & password or a token to update an S3 storage instance in AWS? And is the NHI login statically granted an S3admin role on the entire storage cluster?
- The second big problem, assuming you’ve solved the problem of visibility: how do you implement secure and scalable NHI governance, administration and audit processes? You can be sure that traditional IGA and PAM products were not built to handle the scale, volume and velocity of NHIs which outnumber human identities by 30x-40x.
IN-PERSON EVENT
Britive Booth: #110
Gartner Identity & Access Management Summit 2024
December 9-11, 2024
Gaylord Texan Resort & Convention Center - Grapevine, TX