In this episode of the Identity at the Center podcast, hosts Jeff and Jim delve into the complexities of creating effective RFPs (Request for Proposals) for Identity and Access Management (IAM) systems. They provide critical advice for both the customer and vendor sides, stressing the importance of defining clear objectives, understanding technical and business requirements, and avoiding an overwhelming level of detail that can detract from the RFP's usefulness. The hosts also advocate for combining software and services in a single RFP and highlight the value of open-ended questions to gather meaningful responses. Drawing from their experiences, Jeff and Jim discuss the pros and cons of RFPs, the importance of experience from both vendors and implementation partners, and offer strategies for managing the RFP process effectively. Thanks to listener Alfred in Canada for the great question!

00:00 Introduction and Casual Banter

02:09 Travel Adventures and Motorcycle Rally

05:07 Podcast Challenges and Listener Shoutouts

06:34 Upcoming Conferences and Events

09:57 Listener Question: Tips for a Smooth IAM RFP

22:00 Importance of Subject Knowledge22:15 The Positive Side of RFPs

24:06 Challenges with RFPs

25:39 Combining Software and Services in RFPs

26:58 Evaluating Implementation Partners

28:26 Experience Matters in RFP Responses

31:06 Tips for Effective RFPs

34:10 Personal Anecdote: A Scare and a Surprise Party

38:58 Upcoming Busy Schedule

40:05 Wrapping Up and Final Thoughts

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

In this episode, Jeff and Jim discuss various Identity and Access Management (IAM) topics with their guest, Chris Power, Senior Manager of IAM at Sallie Mae. They tackle the evolution and challenges of non-human identities, the potential sunsetting of Role-Based Access Control (RBAC) in favor of policy-based methods, and the organizational design of IAM teams and the importance of governance and cybersecurity measures. The episode rounds off with a light discussion about Marvel movie news, focusing on Robert Downey Jr.'s return to the Marvel universe as Dr. Doom.

00:00 Introduction and Casual Banter

2:07 Exploring Digital Identity Trends

5:01 Conference Highlights and Discount Codes

8:35 Introducing the Guest: Chris Power

12:11 Deep Dive into Non-Human Identities

29:20 The Future of RBAC in IAM

30:42 Challenges in HR Systems and RBAC

32:21 The Complexity of Implementing RBAC

33:23 Exploring Alternatives to RBAC

34:13 The Role of Attributes in Access Control

37:35 Policy-Based Access Control (PBAC)

42:59 Organizational Design in IAM

52:34 Future of IAM with AI and Big Data

55:55 Marvel Universe Discussion

63:42 Conclusion and Final Thoughts

Connect with Chris: https://www.linkedin.com/in/jameschristopherpower/

Chris’ LinkedIn Post: https://www.linkedin.com/pulse/trying-something-new-chris-power-ysmdc/

Attending Identity Week in America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

• 
  

Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

In this episode of the Identity at the Center podcast, hosts Jeff and Jim engage in a lively discussion with Allan Foster, who shares his extensive journey in the identity and access management (IAM) space. Alan reminisces about his time starting ForgeRock in a London pub, the inception of the Digital Identity Advancement Foundation (DIAF), and his involvement in influential standards like SAML through the Liberty Alliance and Kantara. Alan also highlights the importance of privacy and decentralized identity, his legacy of encouraging inquisitive thinking, and a glimpse into his recent endeavors post-retirement. The episode wraps up with Alan's take on the IAM 'Mount Rushmore,' spotlighting influential figures in the industry.

00:00 Introduction and Casual Catch-Up 02:23 The CrowdStrike Outage Incident 03:41 Travel Woes and Airline Delays 04:47 Excitement for Today's Guest 05:35 Conference Partnerships and Discounts 07:44 Introducing Alan Foster 08:17 Alan Foster's Identity Journey 19:33 Founding of ForgeRock 22:09 The Evolution of ForgeRock 32:06 Involvement with Industry Groups 36:16 Resigning from the Presidency 37:04 The Impact of SAML on Identity 38:10 Trust Frameworks and Federations 40:28 Consumer Identity and Trust 42:41 Privacy and Decentralized Identity 46:24 Overrated Trends in Identity 48:00 IAM Mount Rushmore 53:58 Conferences and Community 58:18 Retirement and New Ventures 00:03 Legacy and Final Thoughts

Connect with Allan: https://www.linkedin.com/in/allanfoster/

Digital Identity Advancement Foundation: https://diaf.link

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this episode of the Identity at the Center podcast, hosts Jeff and Jim engage in a lively discussion with Joseph Carson, Chief Security Scientist and Advisory CISO at Delinea. They explore Joseph's extensive career journey in identity and access management, cybersecurity, and his hands-on experiences in Estonia's pioneering digital identity ecosystem. The conversation delves into the challenges and successes of implementing digital identity systems, the evolving landscape of Identity Threat Detection and Response (ITDR), and the interplay between digital identity, authentication, and AI in cybersecurity. Joseph also shares some behind-the-scenes anecdotes from his public speaking experiences and provides valuable insights into the future of identity management. The episode highlights valuable lessons for professionals in the field, practical advice for attending conferences, and the importance of continuous learning and adaptation in the rapidly evolving world of cybersecurity.

00:00 Introduction and Casual Banter 02:12 Conference Experiences and Swag 02:51 Upcoming Conferences and Discounts 06:09 Introducing the Guest: Joseph Carson 06:35 Joseph Carson's Career Journey 07:25 Estonia's Digital Identity Revolution 10:25 Delinea and Cybersecurity Research 12:46 Qubit Cybersecurity Conference 14:25 401 Access Denied Podcast 18:32 Estonia's Digital Identity Success 29:38 Identity Threat Detection and Response (ITDR) 32:40 The Evolution of Identity Access Management 33:48 The Convergence of Authentication and Authorization 35:00 The Role of AI in Identity Security 36:31 Digital Identity vs. Identity Access Management 38:47 Machine Identities and Asset Management 41:36 AI Agents and Identity Assistance 45:25 Challenges and Future of AI in Cybersecurity 51:07 Behind the Scenes of Public Speaking 60:06 Final Thoughts and Wrap-Up

Connect with Joseph: https://www.linkedin.com/in/josephcarson

Learn more about Delinea: https://delinea.com/

QuBit Cybersecurity Conference: https://qubitconference.com/

401 Access Denied Podcast - https://delinea.com/events/podcasts

Estonia Kratt AI Bot: https://www.ria.ee/en/state-information-system/personal-services/burokratt

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this episode of the 'Identity at the Center' podcast, Jeff and Jim discuss the complexities of managing Privileged Access Management (PAM) and the challenges of balancing various responsibilities like real jobs, podcasting, and attending conferences. They highlight upcoming conferences like Identity Week America and the Authenticate conference, offering discount codes for listeners. The main guest, Michiel Stoop, Director of Identity Management at Philips, shares insights on the importance of PAM, the process of selling PAM initiatives to management, and the integration of technology in identity and access management. The episode also covers methodologies for selecting the right PAM products and strategies for minimizing attack surfaces. To end on a lighter note, the hosts discuss must-try activities and foods in the Netherlands.

00:00 Introduction and Hosts' Banter

01:26 Balancing Work and Podcasting

03:04 Upcoming Conferences and Discount Codes

05:30 Introducing the Guest: Mihiel Stoop

08:04 Philips' Focus on Health Technology

10:12 Understanding Privileged Access Management

23:18 Discussing Privileged Access Management

24:10 Stakeholder Management in IAM

25:00 Operational Models for PAM

28:08 Adapting PAM Strategies for Cloud

32:25 Selecting the Right PAM Technology

36:15 Future of Privileged Access Management

39:38 Exploring the Netherlands

42:57 Wrapping Up and Contact Information

Connect with Michiel: https://www.linkedin.com/in/macstoop/

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this episode of the Identity at the Center podcast, Jeff is joined by Martin Sandrin, IAM Product Lead for IKEA. They discuss a variety of topics including their upcoming attendance at several identity conferences like Identity Week in DC and Authenticate in October. The key focus is on the potential and challenges of deploying passkeys for identity security, highlighting their benefits and the hurdles that need to be overcome. They also delve into related aspects like AI's role in identity management and share some personal anecdotes such as Martin's unique moose hunting tower in Amsterdam.

00:00 Introduction and Announcements 01:44 Introducing Martin Sandrin 02:14 Martin's Journey into IAM 04:37 AI in Identity and Access Management 06:32 Exploring Passkeys 09:57 Challenges with Passkeys 25:56 Future of Passkeys and AI 37:05 The Moose Tower Story 43:44 Conclusion and Farewell

Connect with Martin: https://www.linkedin.com/in/martinsandren/

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• Europe: https://www.terrapinn.com/exhibition/identity-week/
• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

In this special 5-year anniversary episode of the Identity at the Center podcast, hosts Jeff and Jim dive deep into the ongoing debate between centralized and decentralized identity management. They discuss key concepts such as single sign-on, the importance of evaluating and questioning identity management strategies, and the need to balance usability with security. The episode also covers the importance of having an IAM strategy and roadmap, detailing the steps to create, assess, develop recommendations, build a roadmap, and communicate effectively. They share personal insights, funny behind-the-scenes stories, and emphasize the value of community support. The episode concludes with Jim and Jeff looking forward to the future of the podcast and thanking their listeners for their continued engagement.

00:00 Introduction and Greetings 00:25 Centralized vs Decentralized Identity Management 03:19 Risk-Based Approach to Identity Management 05:10 The IAM Submarine Analogy 06:40 Podcast Milestones and Community Engagement 08:37 Reflections on Podcast Journey 16:47 Developing an IAM Strategy 33:02 The Magic Number: Why Three is Key 33:12 Grouping Recommendations into Projects 35:21 The Importance of Strategy Over Tactics 36:22 Creating and Implementing a Roadmap 37:59 Customizing Your Roadmap for Your Organization 42:39 Prioritizing and Communicating Your Strategy 49:03 Maintaining Momentum and Adjusting the Roadmap 55:09 Behind the Scenes: Podcast Production Insights

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• Europe: https://www.terrapinn.com/exhibition/identity-week/
• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

🔑 Episode Keywords

Identity Management, Iam Strategy, Identity Governance, Centralized Vs Decentralized, Single Sign-On, Multi-Factor Authentication, Iam Roadmap, Identity Practitioners, Risk-Based Approach, Iam Submarine, Iam Policies, Iam Program, Iam Assessment, Iam Recommendations, Iam Strategy Framework, Identity Security, Iam Technology, Iam Implementation, Identity Lifecycle, Iam Trends

In this lively episode of the Identity at the Center podcast, hosts Jim McDonald and Jeff Steadman kick things off with a humorous mishap involving Jim's tech setup before diving into the latest happenings. They discuss the sweltering summer heat, Jim's recent "Greatest Dad of All Time" award, and their upcoming plans for Identity Week in Washington, DC.

The highlight of the episode is a deep dive into the concept of "Federation Bubbles" with special guest Justin Richer, Security and Standards Architect and Founder of Bespoke Engineering. Justin explains the idea behind federation bubbles, a dynamic system designed to handle identity management in disconnected or disadvantaged environments. They explore real-world applications, such as military operations and disaster recovery scenarios, where traditional identity systems fall short.

Justin also shares updates on his recent work, including the GNAP protocol and HTTP Message Signatures, and his involvement with the IETF's new working group, WIMSE (Workload Identity in Multi-System Environments). The conversation touches on the challenges and potential of these emerging identity standards, as well as the importance of context and trust in identity management.

The episode wraps up on a lighter note with a discussion about Justin's board game project, "Natturuval" and the latest edition of "Cards Against Identity."

Connect with Justin: https://www.linkedin.com/in/justinricher/

Learn more about Bespoke Engineering: https://bspk.io/

Workload Identity in Multi System Environments (WIMSE): https://datatracker.ietf.org/wg/wimse/about/

SPIFFE: https://spiffe.io

Natturuval: https://gamefound.com/en/projects/bespoke-games/natturuval

Cards Against Identity: https://bspk.io/games/cards/

Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at:

• Europe: https://www.terrapinn.com/exhibition/identity-week/
• America: https://www.terrapinn.com/exhibition/identity-week-america
• Asia: https://www.terrapinn.com/exhibition/identity-week-asia/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

🔑 Episode Keywords

Podcasting Equipment, Identity Management, Conference Recording, Summer Heat, Air Conditioning, Traveling For Work, Hotel Wifi, Father's Day Award, Identity Week Conference, Discount Code, Washington, Dc, Sandwich Shop Potbelly, Holocaust Museum, Uber Ether, Department Of Defense, Federation Bubbles, Workload Identity, Ietf Working Group, Spiffy Protocol, Board Game Natturuval