In this comprehensive episode, Jeff and Jim broadcast from the Authenticate 2024 conference in San Diego, uncovering the deep connection between technology and human rights with an emphasis on inclusivity and ethical considerations in digital identity advancements. Hear from Grace Klutke, the Kim Cameron Award winner, about her remarkable journey from law to digital identity. Dive into discussions with Ian Glazer and Arynn Crow of the Digital Identity Advancement Foundation (DIAF) on the foundation's mission, mentorship programs, and the significance of legacy awards like the Kim Cameron and Vittorio Bertucci Awards. Explore interdisciplinary approaches to digital identity encompassing technical, legal, and social engineering perspectives. Gain insights into AI's role, data governance, and the unique culture of the digital identity community. Plus, enjoy a light-hearted segment on conference experiences, attire, and industry swag. Don't forget to like, subscribe, and check out our links in the show notes! 00:00 Introduction: Identity at the Center Podcast Begins 03:00 Upcoming Conferences and Events 03:54 Introducing the Guests: Grace, Arynn, and Ian 05:09 Grace's Journey to the Kim Cameron Award 07:13 Digital Identity Advancement Foundation (DIAF) 09:43 The Importance of Standards and Awards 17:35 The Role of Legal Background in Digital Identity 18:02 Legal Perspectives on Digital Identity 18:59 The Intersection of Law and Technology 21:20 Challenges and Future Directions 23:23 Mentorship and Career Advice 24:11 AI and Identity Data 27:54 Conference Insights and Reflections 35:23 Closing Thoughts and Future Plans Connect with Grace: https://www.linkedin.com/in/grace-klutke-3ba8a1228/ Connect with Arynn: https://www.linkedin.com/in/arynn-crow-821761103/ Connect with Ian: https://www.linkedin.com/in/iglazer Learn more about DIAF: https://digitalidadvancement.org/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Semperis’ Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at http://idacpodcast.tv

In this episode of the Identity at the Center podcast, Jim McDonald speaks with Brandon Pinzon, an Insurance Industry Cybersecurity Executive, about the evolving landscape of identity management. They discuss Brandon's journey into digital identity, the role of identity management within organizations, and the unique challenges faced by the insurance industry. The conversation also delves into the intersection of compliance and security, highlighting the importance of understanding risk in the identity space. In this conversation, Brandon discusses the critical relationship between risk management and compliance in cybersecurity, emphasizing the importance of understanding and quantifying risk. He explores the evolving landscape of cyber insurance, highlighting the need for identity practitioners to be proactive in managing risks and building relationships with financial stakeholders. The discussion also touches on the necessity of cyber insurance for various organizations and concludes with insights into the vibrant cybersecurity community in San Antonio. 00:00 Podcast Introduction and Host Update 01:23 Upcoming Conferences and Discount Codes 02:29 Guest Introduction: Brandon Pinzon 03:02 Brandon's Identity Origin Story 05:25 Debate: Where Does Identity Management Belong? 13:45 Pros and Cons of CISO Responsibility for Identity 21:16 Identity in the Insurance Industry 29:52 Addressing Legacy Systems in Financial Institutions 31:38 Compliance vs. Security in Financial Services 35:33 Understanding and Quantifying Risk 38:33 The Role of Cyber Insurance 54:28 San Antonio: A Hub for Cybersecurity Connect with Brandon: https://www.linkedin.com/in/bpinzon/ Gartner IAM Summit - Save $375 on registration using our exclusive code IDAC375: https://www.gartner.com/en/conferences/na/identity-access-management-us Semperis’ Hybrid Identity Protection Conference (HIP Conf) - Use code IDACpod for 20% off: https://www.hipconf.com/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast Keywords identity management, cybersecurity, insurance industry, compliance, digital identity, CISO, identity governance, user experience, risk management, financial services, risk management, compliance, cyber insurance, identity management, cybersecurity, threat modeling, risk assessment, business continuity, data protection, security strategy

In this episode of the Identity at the Center podcast, Jim McDonald is joined by Eve Maler to explore a provocative topic—"Consent is Dead." Eve shares insights from her recent keynote at the European Identity and Cloud Conference (EIC) in Berlin, where she unpacked the failures of consent-based systems in protecting user privacy. They discuss why the "I agree" button has lost its meaning, even in regions with strong data protection laws like GDPR, and how users' personal information is monetized through identity resolution technologies. Eve reveals how identity professionals often overlook the world of identity resolution, which operates without a direct relationship with users. She emphasizes the importance of IAM professionals understanding the deep monetization of personal data and the critical need to improve systems of privacy, consent, and security. They also touch on the role of AI in authorization decisions and the balance between explainability and automation in future IAM systems. Chapters 00:00 Introduction and Context 03:01 Eve Maler's Journey in Identity 09:53 Exploring Personhood and Verifiable Credentials 12:52 Identity Verification and AI Threats 25:13 The State of Consent in Digital Identity 30:42 GDPR and Its Implications 39:53 The Future of AI in IAM 45:05 AuthZen Working Group Update 55:23 Non-Human Identities and IoT 01:02:52 Closing Thoughts and Future Directions 01:04:03 Fingerprint City Outro.mp4 Connect with Eve: https://www.linkedin.com/in/evemaler/ Venn Factory: https://www.vennfactory.com/ Personhood: The Killer Credential? (blog by Eve): https://workshop.vennfactory.com/p/personhood-the-killer-credential Death and the Digital Estate (blog by Eve): https://workshop.vennfactory.com/p/death-and-the-digital-estate From Chance to Control (blog by Eve): https://workshop.vennfactory.com/p/from-chance-to-control Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

In this Token Identity sponsored episode of the Identity at the Center podcast, hosts Jeff and Jim welcome Ido Shlomo, co-founder and CTO of Token Security, to discuss the vital and often overlooked topic of non-human identities or machine identities within organizations. The conversation covers how machine identities differ from human identities, the unique challenges they pose, and how Token Security aims to address these issues. Ido shares his personal journey into the cyber-security field, real-life case studies, and details about Token Security's approach to managing and securing machine identities. The episode also delves into the implementation and ROI of their solution and touches on lighter topics like online gaming. 00:00 Welcome to the Identity at the Center Podcast 03:14 Guest Introduction: Ido Shlomo from Token Security 03:35 Ido Shlomo's Journey into Identity Security 06:04 Understanding Token Security's Mission 07:37 Challenges in Machine Identity Management 10:08 Defining Non-Human Identity 11:32 The Story Behind Token Security's Name 13:35 Token Security's Unique Value Proposition 20:20 Real-Life Case Study: The Importance of Non-Human Identity Security 22:05 Narrowing Down the Machines 22:15 Identifying the Compromised Machine 22:26 GitHub Report and API Key 22:34 Event Resolution and Success 22:39 Human vs Non-Human Identity 22:56 Technology Differences and Case Study 23:23 Implementing the Solution 23:46 Philosophy of Software Development 24:28 Integration and Deployment 26:09 Building an Inventory 26:31 Reducing Risk and Lifecycle Process 28:05 Attribution and Data Collection 30:02 Learning More and ROI 34:22 Online Gaming and Personal Insights 34:47 Gaming Personas and Preferences 36:34 Gaming Memories and Character Classes 40:33 Wrapping Up and Final Thoughts Connect with Ido: https://www.linkedin.com/in/ido--shlomo/ Learn more about Token Security: https://www.token.security/?utm_medium=idac&utm_source=website&utm_campaign=Sep_podcast&utm_content=sponsor_page Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and watch at https://www.youtube.com/@idacpodcast

In this episode of the Identity at the Center podcast, Jeff and Jim discuss how to make the business case for IAM and determining the return on investment (ROI). Joined by Andre Koot, they delve into the need for a compelling business case to drive IAM investments. The conversation covers the quantitative and qualitative aspects of ROI, and the importance of stakeholder communication. 00:00 Welcome to the Identity at the Center Podcast 01:39 Training and Professional Development in IAM 03:58 Upcoming Conferences and Events 07:51 The Business Case for IAM 12:51 IAM: Financial and Non-Financial Perspectives 23:08 Calculating Return on Investment in IAM 28:59 Hard Dollars vs. Soft Dollars 30:11 Dollarizing Non-Savings Benefits 31:40 Challenges in ROI Calculations 34:07 Quantifiable vs. Non-Quantifiable Benefits 37:14 ROI in Different Organizational Contexts 39:50 Insourcing vs. Outsourcing 49:02 Communicating ROI Effectively 54:10 Language Nuances and Cultural Context 01:01:35 Conclusion and Final Thoughts Connect with Andre: https://www.linkedin.com/in/meneer/ The Business Case for IAM (IDPro): https://bok.idpro.org/article/id/97/ Strategic Alignment and Access Governance (IDPro): ****https://bok.idpro.org/article/id/90/ Authenticate Conference - Use code IDAC15 for 15% off: https://authenticatecon.com/event/authenticate-2024-conference/ SailPoint Navigate - October 21-24 in Orlando, FL - Use code IDAC for a $400 discount Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at http://idacpodcast.com and watch at https://www.youtube.com/@idacpodcast