Agentic AI opens door to new ID challenges
Rubrik Zero Labs contends the rise of identity driven attacks ‘is changing the face of cyber defense.’
David Shipley, head of Canadian security awareness training provider firm Beauceron Security, said he agrees with the report’s findings for a key reason: “[While] phishing and social engineering overall are where attacks start, identity and access management (IAM) practices are where the fire gets roaring.”
Organizations, he said, “need modern approaches to IAM and employee cyber education and engagement. The employee education doesn’t just help them spot and stop threats, you can help them understand why good IAM processing technology is required.”
He pointed out, “[there is] a reason why identity and access management is the foundation of a security program. When it’s done poorly, the impacts reverberate throughout an organization during an attack.”
Shipley said that he often tells clients, “IAM is the bottom of the cyber equivalent of Maslow’s hierarchy of needs. Where humans need food and shelter to survive, digital systems need strong IAM practices to survive.”
“In our work around the world, we’ve seen that as organizations get larger and more complex, it’s far more likely they have huge issues in identity management,” he said. “This isn’t the kind of problem that technology alone can fix, regardless of the vendor. It takes understanding people, process, culture, and technology.”
Read the Full Story on at CSO Online