WebSecure

Welcome to the Team, Nancy (Amala Nancy Dennis)! WebSecure is thrilled to have you on board as we continue to build out our Identity Security practice and strengthen our strategic partnership with SailPoint. Your skills will be key to continue delivering local SailPoint skills within NZ! Welcome aboard, Nancy (Amala Nancy Dennis)! #Welcome #IdentitySecurity #TeamGrowth #SailPoint

Reach out if you fit the bill and want a fulfilling career in Identity Security with an amazing company

Zero Trust is a technology-agnostic guidance framework to bring controls closer to the asset being protected (the protect surface). From an IAM perspective, it has the potential to significantly increase the richness of the risk-based decision about granting access and eliminate the granting of access based on the binary trust of a single access control method. The Zero Trust, Identity and Access Management and Software-Defined Perimeter workgroups from the Cloud Security Alliance collaborated to publish the "Zero Trust Principles and Guidance for Identity and Access Management (IAM)". Identity and the ability to consume information about that identity as well as other Zero Trust (ZT) signals (additional attributes about an identity), is one of the key principles of zero trust architecture. A ZT approach aims to reduce the success of cyber-attacks and data breaches through risk-based access requirements, that is, by requiring authentication and authorisation prior to granting access to resources (data and/or systems). In order to meet this requirement, it is important to look at both existing and new identity, access management, and cloud solutions with a ZT lens. This guidance reinforces my view that Zero Trust is not a technology issue and there is no technology silver bullet that will address it and a great read if you are starting on (why so late?) or trying to mature your Zero Trust framework. WebSecure #zerotrust #iam https://lnkd.in/grcARHcK

Reach out to us and let’s chat about how we can optimize your IGA program. #WebSecure #SailPoint

Great point by our own Paul Platen! A bit more upfront work and planning could save you a ton of hassle down the road. Talk to us about building or enhancing your Identity Security strategy and technology roadmap! #IdentitySecurity #WebSecure

Everything we do in cybersecurity is about the data...what it is, where it lives, who can access it and who can modify it. All these terms, speak to visibility or data access governance being an important consideration. But how do you strengthen your identity security program with integrated data access governance? Eric Zimmerman from SailPoint provides some tips to help. It is essential to gain greater context on data to help lock down sensitive information as a foundational piece of your security program. At the end of the day, data is ultimately what you are trying to govern and protect. Lack of context about sensitive data increases the risk of unintended over provisioning – increasing the potential for unwarranted data exposure and data theft. With limited visibility into where sensitive data is and who has access to it, the task of satisfying strict regulatory requirements grows more complex. have a read of the blog post to get more helpful tips! SailPoint WebSecure Irshaad Laher Raymond Dickinson https://lnkd.in/gmzwSDwh