Name: Secure by Design: Identity, Provisioning and Automation is the Key to IoT
Start: 2021-02-24T14:00:00Z
End: 2021-02-24T14:00:44.000Z
Location: BrightTALK
Rating: 4.7

Device Authority enables end to end cyber resilience for connected devices through the discovery, visibility and automated security of large IoT/OT deployments. With device identities outnumbering human identities 82:1 in enterprise environments and as unmanaged devices become a major target for attack, Device Authority’s Discovery Tool and KeyScaler-as-a-Service (KSaaS) platform provide organizations with complete visibility and control of their device identities and vulnerabilities, reducing human error, accelerating incident response, minimizing risk, ensuring complete device and data trust, and enabling trusted AI in any connected environment.​

In this episode of The Authority On…, we’re joined by Grace Cassy — co-founder of CyLon Ventures, board member at Ten Eleven Ventures, and external expert on the UK’s 2025 Strategic Defence Review.

Grace brings a unique perspective at the intersection of cybersecurity investment, policy, and national resilience. Together, we explore how the Strategic Defence Review signals a shift in how the UK approaches security in a hyper-connected world — from protecting Critical National Infrastructure (CNI) to enabling public-private innovation in defence and beyond.

We discuss the growing convergence of cyber and physical threats, the role of startups in securing national capabilities, and what it takes to build trust in a digital-first world. With input from the Device Authority team, this episode bridges strategy with on-the-ground security challenges faced by organisations today.

The Authority On... Strategic Security in a  Connected World:  A Conversation with Grace Cassy

In this 37-minute special, two AI-generated hosts dive into Device Authority’s new 2025 guide: “IoT/OT Visibility and Control – The Importance of Machine Identity Automation for Device Security.”

From the explosion of machine identities to the challenges of AI and the rise of Zero Trust architectures, this podcast covers what every cybersecurity professional needs to know heading into 2025.

Guide to IoT/OT Visibility and Control

In this episode of The Authority On, we delve into the DA Academy, a key initiative from Device Authority. This podcast features insightful discussions with Steve Huehmer (VP, Customer Success) and John Hynds (Director, Customer Success). They explore the purpose and benefits of the Academy, how it empowers professionals in the cybersecurity and IoT space, and its growing impact on bridging knowledge gaps.

Whether you're a seasoned professional or just starting in cybersecurity, this episode provides valuable insights into the Academy's role in shaping the future of the industry.

Want to learn more and join the Academy? Sign up now: https://deviceauthority.com/device-authority-academy/

The Authority On... Introducing DA Academy

KeyScaler Discovery empowers organizations to uncover vulnerabilities, gain full visibility into unmanaged device activity, and address security gaps with actionable insights. Designed for simplicity and effectiveness, this tool provides the clarity and data you need to secure your network.

A Spotlight On The Unknown: Delivering Complete Visibility Of Unmanaged Devices And Their Vulnerabilities

Join industry experts from Microsoft, CyberArk, and Device Authority for an insightful webinar on WP.29 and R155 automotive cybersecurity regulations. As vehicles become increasingly connected, compliance is no longer just a manufacturing concern—it now extends across the entire vehicle lifecycle, including software updates, security monitoring, and end-of-life management.

In this session, Kaivan Karimi (Microsoft), Brian Carpenter (CyberArk), and Paul Lockley (Device Authority) will explore:

The latest WP.29 and R155 compliance requirements for OEMs and suppliers

How SBOMs (Software Bill of Materials) help secure 200M+ lines of vehicle code

Why car manufacturers prefer "out-of-the-box" cybersecurity solutions over fragmented approaches

How industry leaders are collaborating to deliver seamless, integrated automotive security

Stay ahead of evolving regulations and discover best practices for securing automotive IoT ecosystems.

#AutomotiveCybersecurity #IoTSecurity #WP29 #R155 #ConnectedVehicles #SBOM #Compliance

WP29 and R155: Driving Compliance in Automotive

How are IoT, drones, and emerging technologies transforming public safety and emergency response? Join us in this fascinating conversation with David Ihrie, CTO of the Virginia Innovation Partnership Corporation (VIPC), as we explore the integration of IoT in critical infrastructure and public safety.

In this episode, David shares his insights on:

*The evolving role of IoT sensors in emergency response and disaster preparedness
*How drones are revolutionizing first responder efforts
*The pressing cybersecurity challenges facing our critical infrastructure
*The potential (and risks) of quantum computing and AI in safeguarding our communities

From the impact of IoT on real-time data sharing to the future of cyber resilience, this episode is packed with valuable information on the role of innovation in a safer, smarter world. Don’t miss out!

#IoT #PublicSafety #Cybersecurity #TechInnovation #EmergencyResponse

The Authority On... What's the Emergency? Public Safety in a World of IOT and Cybersecurity

Join us as we dive deep into the evolution of IoT security with John Moor from the IoT Security Foundation. In this episode, we explore the critical milestones in IoT security, discuss current challenges and innovations, and uncover what the future holds for IoT technology. Whether you’re an IoT professional, tech enthusiast, or simply curious about cybersecurity, this episode is packed with insights on how we can secure our connected world. Don’t miss out—hit subscribe for more expert insights! 

#IoTSecurity #Cybersecurity #JohnMoor #IoTFoundation #TechPodcast #FutureOfTech

The Authority On... Insights into the Past, Present, and Future with John Moor IoT SF

Join us as we discuss the basics of KSaaS, the key benefits of KSaaS for industries like automotive, medical, and energy and what can we expect from the latest 7.2 upgrade.

The Authority On... KeyScaler-as-a-Service (KSaaS) 7.2

Join James Penny, CTO at Device Authority, as he brings Day 2 of the Device Authority Virtual Summit to a close. Reflect on the insightful discussions surrounding Zero Trust in the era of AI that have unfolded over the past two days. Gain valuable insights into the future of cybersecurity and the role of AI in shaping trust and security paradigms. Don't miss this opportunity to conclude our summit with key takeaways and actionable insights to propel your organization forward in an ever-evolving digital landscape.

Closing Remarks and Future Outlook

This session will discuss the drivers for building situational awareness and context-driven insights applying machine learning and behavioral analytics to OT and ICS networks. Danielle will discuss the instinct to react to alerts and detections, and drill into what works and what doesn’t work for rules based detections and signature recognition in OT/ICS networks. She will also discuss what is and is not built into monitoring tech today vs. what’s coming, including natural language query for monitoring solutions.  This session overall will capture how we rationalize and strategize network monitoring solutions in operation today, discussing the evolution of the technology.

OT Heuristics: Thinking Fast & Thinking Slow in OT

The factory of tomorrow is characterized by interconnected systems and smart technologies that drive efficiency and productivity. However, with increased connectivity comes heightened cybersecurity risks. This session examines the cybersecurity challenges facing the manufacturing industry, from protecting intellectual property and sensitive data to securing industrial control systems and supply chains. Join us as industry leaders discuss strategies for mitigating cyber threats and safeguarding the future of manufacturing.

Guarding the Factory of Tomorrow: Cybersecurity in Manufacturing

The “Post Quantum Event” as it is called will be a significant event affecting many aspects of the modern cybersecurity landscape.  With all the noise in the marketplace, it can be difficult to make sense of what actual steps need to be taken by modern enterprises in the short and medium term to help prepare for this event.   This presentation aims to cut through the noise with facts from a key contributor in ongoing standards work around quantum-safe cryptography to help give some perspective and some concrete steps organizations can start taking now to implement people, process and technology to be better prepared.

PQ and Zero Trust: A new era in Cyber resilience

The intersection of IoT and AI in healthcare promises transformative innovations that improve patient outcomes, enhance medical workflows, and drive operational efficiencies. This session explores the myriad applications of IoT and AI in healthcare, from remote patient monitoring and predictive analytics to personalized treatment and drug discovery. Join us as we uncover the potential of these technologies to revolutionize the delivery of care and advance medical science.

IoT and AI in Healthcare: A Prescription for Innovation

Join Tyler Gannon, Vice President, Product Marketing and Strategic Alliances at Device Authority, as he recaps the highlights from Day 1 and sets the stage for Day 2 of the Device Authority Virtual Summit. Gain valuable insights into the key takeaways from yesterday's discussions on Zero Trust in the era of AI. Get ready to delve deeper into the intersection of security and artificial intelligence as we embark on another day of thought-provoking sessions and industry-leading insights.

Welcome and Recap

As Day 1 of the Device Authority Virtual Summit comes to a close, join Tyler Gannon, Vice President, Product Marketing and Strategic Alliances at Device Authority, for insightful closing remarks. Reflect on today's discussions surrounding Zero Trust in the era of AI and the implications for modern cybersecurity. Prepare for tomorrow's sessions as we continue to explore the intersection of technology and trust.

Day 1 Closing Remarks

During this presentation, James Penney, CTO of Device Authority, will be Presenting the latest upadate to the KeyScaler platform. KeyScaler AI, a new solution focused on enhancing device security and delivering new automated features, now adds an AI/Machine Learning license module to the KeyScaler platform.

KeyScaler AI: The Future of IoT Security

Connected communities rely on robust critical infrastructure to function efficiently and sustainably. This session examines how IoT solutions are enhancing critical infrastructure to create safer, smarter, and more resilient communities. From intelligent energy management to proactive infrastructure maintenance, join us as we explore the innovative IoT solutions driving connectivity and sustainability in urban environments.

IoT Solutions for Connected Communities: Enhancing Critical Infrastructure

Since its inception, customers have used the Cumulocity IIoT platform to give products a metaphorical "voice." The emergence of Large Language Model adoption has created the opportunity to give these products a literal voice - like you can have a conversation with your device. But just as consumers should be wary of phishing attacks, connected device operators and users need to remain vigilant in adopting these technologies. Is the device you're talking to authentic? And should that device trust you to divulge its secrets? Join this session to learn more about IoT platforms, security, and AI models in this brave new world.

Now That We Can Talk to Our Machines, What Are We Willing to Share?

Enough scouring through MAC and IP addresses—tell me what’s really on my network—what’s their role and what are they doing? How do I extend Zero Trust segmentation to secure devices at scale? In this session, you learn simple and efficient solutions to discover and secure every IoT asset on your network.  This session will answer common concerns and questions such as:

Which devices are vulnerable and at risk?  Are devices behaving as expected?
How can I quickly lock down threats and respond to the security notice de jour?
I am tired of my team playing whack-a-mole.  What can I do to prevent attacks? 
How can I leverage my existing network and security infrastructure to segment and protect IoT devices?

Zero Trust– A Scalable Way to Secure IoT

Health systems continue to push forward to capture the benefits of real time interoperability. Remarkably, many do so without detailed knowledge of what’s connected to their networks and/or how to size and implement rational, agile security measures. With IoMT spending growing at a CAGR of 20%, we’re witnessing a revolution in the way care will soon be delivered. This webinar will zero-in on the emerging challenges faced by HIT and HTM professionals. Asset management and cybersecurity convergence will be discussed, along with the latest solution advances and how they are unifying workflows to ensure practice scalability. Use-case demonstrations will be provided in this context.

Managing the Risks of Connected Medicine in the Real Time Health System

Securing IoT devices and solutions requires a purpose-built device-centric IAM solution as traditional employee-centric IAM or customer IAM (CIAM) solutions are not capable of addressing IoT-specific challenges.

This interactive session will focus on:
* Key capabilities of IoT IAM platforms to meet the requirements of IoT security
* Understand why IoT IAM is substantially different from Traditional IAM
* Current state of the market / vendors
* Market drivers and expected growth (importance of IoT IAM)

The Role of IoT IAM in IoT Security: A market and analyst perspective

IoT comes alive when we talk about real customer use cases. Firstly we look at the challenges or pain points they have, and provide a solution and explain how to do it. The main verticals we'll explore are Healthcare / Medical Devices, Industrial / Manufacturing, and Automotive.

IoT Security Use Cases

The majority of Enterprise IoT security implementations need to take existing IT security controls into account and seamlessly interoperate with IoT devices. The challenge is integrating IoT IAM with the traditional Enterprise IAM, Hardware Security Modules (HSMs), and Data Security Platforms.

• Enterprises use HSMs for Root of Trust, secure storage of keys, and secure crypto operations. HSMs are used for IoT identity provisioning and data security operations.
• Enterprises already use data security platforms for key management and policy-based data access authorization. Integration with these systems is essential for end-to-end data security and compliance. This is required for secure data exchange between IoT devices and other Enterprise resources including enterprise users.
• IoT IAM and Enterprise traditional IAM need to interoperate to authorize and share data between the IoT devices, Enterprise systems, and users.

Join this session to hear from Device Authority and guest speakers on how to efficiently integrate IoT security in the Enterprise, while also leveraging existing security investments.

Integrate IoT security in the Enterprise: Leverage existing security investments

Learn about the steps required to connect production devices to IoT platforms/applications without human intervention, with a suitable environment for managing IoT devices throughout their security lifecycle.

Managing the IoT device security lifecycle

With the acceleration of Industry 4.0, accompanied by the convergence of the Internet of Things (IoT) and Operational Technology (OT), systems can now be connected to corporate IT, the cloud and central management systems. The number of connected devices is predicted to rise to 75 billion by 2025, and with that expansion comes increased risk. As Organisations embrace digital transformation and evolve the new normal, they need to understand their accountability and responsibility for security in the ecosystem. This is particularly important in sectors like healthcare, where connect devices are used to monitor and treat patients and transmit sensitive data. This highlights the importance of the security and resilience of the devices, applications and the data they generate.

The session will cover:
* Explore the issue of IoT security across the asset lifecycle and the risks associated with exposed networks
* Look at accountability from planning and manufacture, to installation and disposal
* Explain how to ensure a robust system, manage business and technology cyber risks and achieve sustainable resilience in IoT

Enabling Industry 4.0 and Digital Transformation by bridging IoT Security gaps

With the explosion in the number and types of connected devices lacking Security by Design architecture, developing rich device context is of critical importance to ensure network security and access control. There is also a growing regulatory demand to audit all devices on the network, for stronger device hygiene and access restrictions. 

WootCloud’s award-winning ML/AI Hyper-Context Security Platform provides contextualized visibility and analytics for all devices, and uses this intelligence to segment the network, correlate threats and vulnerability propagation across interfaces and automate access control. 

This interactive live session will demonstrate how WootCloud HyperContext® delivers a deep understanding of all devices entering/exiting your network. In addition, you will learn how HyperContext stitches together a comprehensive  understanding of the risks and threats, and generates strong access control policies to automate device security at IoT scale.

Key Takeaways:
1. How to Detect, Inspect, Defend every device in your organization at IoT scale using device context.  
2. Understand why HyperContext® is more powerful than the current fingerprinting solutions. 
3. Automate access control and supercharge your existing security investments with strong integrations.
4. Understand why HyperContext® is an essential part of moving towards IoT platforms and Security by Design.

Automating Device Security at IoT Scale

IoT devices are everywhere, helping organizations collect real-time data and automate tasks for greater productivity and efficiency. The number of unmanaged devices are exponentially growing with the advent of Industry 4.0 / Digital transformation. This session will cover the exposures and threats associated with these devices.
 
If you’re responsible for threat management, or if your team has been discussing how to secure unmanaged assets and IoT devices, you don’t want to miss this session:  
* State of Enterprise IoT Security
* Security challenges with unmanaged and IoT devices
* How to respond to these threats
* How to protect these devices from future attacks or breaches

Enterprise IoT Security – What you need to know

In December 2020, it was reported that a software supply chain cyber-attack occurred against SolarWinds which caused infections in numerous businesses and government agencies.  While complex in nature, this involved vulnerabilities in the build cycle at SolarWinds. 

For an IoT manufacturer, securing your software supply chain and your build process is as critical as is securely delivering updates to your IoT devices.  In this session, we’ll cover:

• A review of how SUNBURST was introduced into the software supply chain
• Steps that can be taken by software developers to minimize this from happening to you
• How digitally signing source code and other intermediate artifacts during your software build process can minimize these risks
• The benefits of securing a code signing process for your company

Protecting your IoT software delivery against malware insertion

In today's current landscape, when we talk about IoT devices we often hear about legislation, regulations, and standards to follow. There are general IoT security or cybersecurity laws, as well as industry specific regulations - such as HIPAA. These laws and regulations can also differ depending on your geographical location.

Join this session to decipher the new legislation, current regulations and standards to follow to ensure a safe and secure IoT world - whether you're building IoT products, developing IoT apps or processing vast amounts of data.

IoT Security: What legislation, regulations and standards are important?

IoT devices are typically built for a specific application. The user manages the binding of the device to its cloud application through error prone manual processes. This cumbersome and risky approach prevents large-scale adoption. Single purpose devices adds cost and complexity. It's an industry wide issue driven by the fragmentation of the IoT marketplace and the desire of actors for differentiation. This presentation will cover: 
• The industry's need to find remedies to security and supply chain problems 
• Industry wide collaboration to design protocols for provisioning and on-boarding 
• The importance of removing manual and password driven operations

Building security within IoT devices:Security by design & supply chain integrity

The Internet of Things (IoT) presents a massive business opportunity across almost every industry. But to realize that opportunity, enterprise IoT security must become a primary focus. IoT brings new security challenges introduced by the scale and pace of adoption, as well as the legal and safety consequences of compromised security.

Until now, security has been treated as an afterthought; by adding layers of security after devices are delivered, with infrastructure and applications already in place. But security for IoT is too important to be treated as an afterthought. IoT’s unique characteristics are also forcing a fundamental rethink about how Enterprises need to implement security management for devices and data.

The Enterprise IoT Security Blueprint was first introduced by Device Authority in April 2018 and has since evolved to incorporate further steps within the emerging Enterprise IoT state. This evolution is a result of technology innovation and exploring real world use cases in different industries which require robust security by design.

Introduction to the Enterprise IoT Security Lifecycle

Virtual IoT Security Summit

Join an expert panel as we discuss what secure by design really means for IoT – throughout the supply chain. We’ll look at IoT device security including operational security management, zero touch provisioning, and automated device quarantining. 

Are you building a new connected product, solution or service? How can you ensure trust is built in from the beginning? 

Are you confident that the supply chain and device programming is secure? i.e. provisioning of firmware?

Secure by Design: Identity, Provisioning and Automation is the Key to IoT

IoT Security

Cyber Security

Provisioning

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Get powerful emerging technology insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on technologies like 3D printing, pervasive robotics, natural interfaces, connected everything and cognitive systems.

Emerging Technologies

Get powerful manufacturing insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on strategies and techniques to accelerate production cycles while increasing efficiencies and improving profitability.

Manufacturing

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Secure by Design: Identity, Provisioning and Automation is the Key to IoT

Presented by

About this talk

Device Authority - IoT Security