Name: Open ID Shared Signals, CAEP and RISC: Real World Use Cases
Start: 2023-04-11T19:17:00Z
End: 2023-04-11T19:17:29.000Z
Location: BrightTALK

This channel brings together the leading identity and security vendors and industry experts to regularly educate security leaders on how to reduce risk through identity-centric strategies. For more resources and education on identity-centric security strategies, visit www.idsalliance.org.

Every major breach headline today shares a common flaw—authentication that trusts too much. Attackers don’t need advanced exploits, they simply log in using social engineering, phishing sites, or real-time relays that manipulate human behavior. Employees feel protected by MFA apps and codes, yet those same tools are being turned against them. The weak point isn’t technology failure—it’s misplaced trust. MFA methods that depend on user judgment, shared secrets, or remote approvals are now the open door into the enterprise. In this session, we’ll expose why the tools once considered secure have become the attacker’s favorite weapon.

What Is Causing MFA and Auth Apps to be Compromised?

The IDSA Machine and Agent Identity Working Group will preview the initial work, including the Threat Analysis, Use Cases, and the Maturity Model. This is an opportunity to see the framework firsthand and gain the tools necessary to operate securely in a machine-driven world.

Attendees will learn:
-Actionable Use Cases & Threat Analysis: Real-world scenarios to guide your strategy.
-Maturity Model & Success Metrics: A defined path to measure progress and demonstrate value to stakeholders.
-Reference Architecture & AI Agent Framework: Blueprints for securing the next generation of digital entities.

Blueprint for Machine and Agent Identity

Hybrid IT has pushed traditional SSPR to its limits. Users still get locked out, systems fall out of sync, and identity teams burn time fixing the same issues on repeat. According to the Identity Defined Security Alliance’s 2025 report, hybrid complexity is now the biggest obstacle to securing identities, and inconsistent credential control is a major source of user friction.

This session explores what comes next: enterprise-controlled credential management that delivers predictable access for users, reduces operational load for IT, and finally moves password recovery and governance into a modern, scalable model.

Attendees will learn:
- How Passwords as a Service centralizes creation, rotation, sync, and recovery across Microsoft, SaaS, on-prem, and legacy systems
- How modern mass password reset works and why it matters for baseline credential health
- Practical steps to reduce password noise and improve user experience immediately
- How to standardize governance and maintain reliable access across complex environments

What Comes After SSPR: Reducing Password Friction and Re-Establishing Control in Hybrid Environments

Providing developers and operators with timely and secure access to production servers is critical. Yet legacy approaches like jump hosts and static SSH keys, create standing privilege, developer friction and compliance gaps. In this session, we’ll explore how modern identity-native approaches can deliver just-in-time SSH and sudo access to virtual machines across cloud and on-prem servers and databases.

Attendees will learn how to eliminate standing access, tie every session to your organization’s IdP, and deliver a seamless developer experience - all without relying on the complexity or maintenance of vaults, static credentials or bastions. Walk away with practical strategies for securing privileged access while keeping teams productive.

Eliminate Static Credentials: Just-in-Time SSH/Sudo Access to Virtual Machines

Zero Trust started as a way to protect human users logging into applications. Over the past decade, it has expanded to workloads, cloud services, and machine identities. Now, with the rise of agentic AI, enterprises must confront a new challenge: how do you apply identity-driven security to autonomous systems that act, decide, and interact on their own?

In this session, Chris Owen (dotNext Europe) and Apurva Dave (Aembit) trace the evolution of Zero Trust through the lens of identity. From workforce IAM to PAM, from service accounts to non-human identities, and now to AI agents, they’ll map the journey — and the pitfalls. They’ll show how legacy approaches break down, and how organizations can evolve toward policy-driven, workload-centric, AI-ready identity models.

Attendees Will Learn:

– How Zero Trust has evolved—from securing humans and workforce IAM to workloads, APIs, service accounts, and now autonomous AI agents.

– Real-world patterns and pitfalls organizations face when adapting Zero Trust to non-human identities.

– A practical framework for “AI-ready Identity & Access” and how policies can govern machine-to-machine and agent-to-agent access.

Zero Trust and Identity: Evolving from Humans to AI

As AI agents grow more autonomous, from initiating workflows, accessing sensitive data, to making decisions in real time, they challenge the core assumptions of traditional identity and access governance. In this session, Miguel Furtado explores how AI shifts the perimeter from identity to intent, and why modern IAM strategies must evolve to continuously evaluate agent behavior, authorization scope, and data access patterns. We’ll discuss what defines a true agentic AI, how intent-aware governance can fill today’s visibility and control gaps, and what practical steps can be taken to secure non-human identities and AI agents today. If identity is the control plane of the modern enterprise, intent is its next policy layer.

Rethinking IAM with Intent:  Identity Governance in the Age of AI

Standing access is a time bomb—and yet, in most orgs, it’s still the default. Developers are over-permissioned just to avoid ticket delays. Access reviews live in spreadsheets. Security teams are buried in manual cleanup and audit prep. And the patchwork of point tools meant to help? They rarely scale—or align with how your teams actually work. This session is for the teams who are asking: Is what we’re doing even working anymore? We’ll walk through a practical, field-tested approach to implementing Just-in-Time (JIT) access—starting with what you already have, proving value with one team, and scaling without creating friction.

From Tickets to Trust: How to Roll Out Just-in-Time Access without Slowing Down Engineers

Credential theft, malicious insiders, orphaned accounts—identity-based attacks have become the leading cause of breaches, while regulatory pressures demand continuous proof of security controls.

Modern Identity Governance and Administration (IGA) has evolved from cumbersome, compliance-driven implementations into streamlined, automated defense systems that safeguard enterprises at scale.

In this webinar, Omada Field Strategist Thomas Müller-Martin will reveal the 5 IGA Essentials to Strengthen Your Cybersecurity Strategy, a proven framework for transforming identity governance from reactive compliance to proactive threat prevention.

What you’ll learn:
-Recognize today’s most critical identity threats and their real-world impact on regulated enterprises
-Master the 5 IGA Essentials that enhance cybersecurity posture while simplifying operations
-See how modern IGA solutions automate threat detection, enforce least privilege, and scale across complex global environments

Join us to discover how leading organizations leverage these essentials to prevent breaches, maintain continuous compliance, and protect their most critical assets without sacrificing business agility.

The Cybersecurity Fast Track: 5 IGA Essentials to Reduce Risk

As AI adoption accelerates across organizations, traditional security approaches focused solely on license management and non-human identities are missing the bigger picture. This webinar explores a comprehensive framework for AI security that recognizes the full spectrum of AI identities in your environment, from AI users and builders to AI agents, and provides actionable strategies for discovery, protection, and defense.
We'll examine how AI security can be looked at through an identity security lens and demonstrate how runtime intelligence reveals dramatically more AI usage than static configuration approaches. Attendees will learn practical methodologies for inventorying their complete AI footprint, identifying risky access patterns, and implementing high-fidelity detection capabilities that enable faster SOC response.

AI Users, Builders, and Agents: Securing the Next Generation of Identities

By March 2026, public TLS certificate lifespans will halve—and eventually shrink to just 47 days by 2029—driving urgent change in how organizations manage certificate renewals, and ultimately, digital trust. TLS certificates are the machine identities that underpin secure communication on the internet. Manual certificate tracking at the scale demanded by 47-day renewals simply won’t be feasible. And without automation, shortened lifecycles increase the risk of outages and compliance failures. Now is the time to implement a modern, automated certificate management strategy to safeguard trust, ensure compliance, and keep pace with the internet’s accelerating demands. You'll leave the session with practical guidance on how to:
- Modernize your certificate lifecycle management with scalable automation
- Align risk communication across technical teams, leadership, and the board
- Budget for the transition and articulate the cost of inaction
- Prepare your infrastructure for continuous 47-day renewal cycles, essential for public PKI and increasingly valuable for internal systems

From Chaos to Control: Automating Machine Identity Security Before the 47-Day Certificate Deadline

Salt Typhoon proved that attackers are exploiting identity blind spots in the network layer to bypass controls and move laterally. This session explores how traditional PAM and NAC tools leave routers, switches, and firewalls exposed, and why identity-first security must extend beyond IT systems. We’ll break down the attack path, highlight key lessons from Salt Typhoon, and show how applying Zero Trust principles at the network layer can stop similar breaches before they start.

Zero Trust Falls Short Without Network Identity: Lessons from Salt Typhoon

A single stolen password can bring your business to its knees — unless you can recover in hours, not days. The first 72 hours after a credential breach determine whether you contain the incident or face a full-scale crisis. Regulatory mandates, cyber insurance requirements, and customer trust all demand rapid recovery, yet many enterprises still rely on password management processes that take days. This session introduces a vendor-neutral, identity-first framework for 72-hour recovery, covering detection, containment, and large-scale access restoration while ensuring compliance. You’ll leave with a clear, adaptable roadmap to strengthen resilience, minimize downtime, and align identity practices with today’s threats. Identify the compliance, insurance, and business pressures driving the 72-hour identity recovery window. Master the critical steps for rapid detection, containment, and large-scale credential restoration. Avoid the hidden process and technology gaps that turn hours into days. Measure your organization’s recovery readiness against industry best practices — and know how to close the gap.

72-Hour Recovery Plan for Enterprise Password Management

Learn how your organization can join Cybersecurity Awareness Month this October. This webinar will walk you through the 2025 campaign theme, key messages, and the suite of free resources available to help you raise awareness within your organization and beyond. From simple social media posts to full-scale internal awareness campaigns, this session will equip you with the knowledge and materials you need to make an impact in your organization.

Attendees will learn:
• The ready-to-use tools and templates available to support your campaign
• Creative ideas for engaging employees and building a culture of cybersecurity
• Tips for aligning your campaign with the broader national effort

How to Get Involved in Cybersecurity Awareness Month

As identity becomes the new security perimeter, the urgency to modernize identity governance is growing but evaluating IGA solutions can be complex, especially with evolving cloud architectures, regulatory demands, and rising security expectations.

In this practical session, Omada will walk through a framework for evaluating Identity Governance & Administration (IGA) solutions, grounded in real-world RFP guidance. You’ll learn how to frame your requirements, identify deal-breakers early, and ask the right questions to avoid costly missteps.

Attendees Will Learn:
• Key considerations for choosing a modern IGA solution (scalability, integration capabilities, usability etc.)
• Practical insights for comparing vendors
• Must-ask evaluation questions to uncover platform maturity and vendor fit
• Tips for selecting the right solution for your organization

Whether you're planning a formal RFP or assessing your current solution, this session will help you take a structured, security-aligned approach to choosing a modern IGA platform.

Evaluating IGA Solutions: Questions to Ask in Your RFP

Since we always lack budget and resources then what's the strategy? We can't do it all but there is an approach that will help you meet today’s security challenges whether you have a team or not.

This session digs into this security strategies, both practical and controversial, and a lot more as Den Jones, Founder & CEO at 909Cyber, provides some proven tested strategies that help thwart today's attacks.

What's Your Security Strategy?

Machine identities—from service accounts to cloud secrets—are exploding in number. Yet most compliance programs can’t keep up. In this hands-on walkthrough, you'll see how Segura provides complete visibility, policy-based automation, and audit-ready reporting for machine identities. Watch a live demo, hear expert commentary, and leave with a roadmap to protect non-human access and simplify compliance.

Attendees Will Learn:
– How to identify and inventory machine identities across hybrid and multi-cloud environments
– How to apply privileged access and secrets management to control non-human identities
– Real-world examples of how to automate discovery, policy enforcement, and auditing
– How to bridge the gap between DevOps, security, and compliance for continuous oversight
– Which metrics and tools are essential for aligning machine access with SOX, ISO 27001, PCI-DSS, and NIST compliance requirements

Simplifying Machine Identity Compliance - Live Walkthrough

It’s no surprise tech investments in Artificial Intelligence (AI) and cybersecurity are on the rise. The top priority for C-Suite (52%) is to speed up digital transformation, and now security leaders must tackle a new, exploding attack surface – machine identities & AI agents – while breaking silos and doing more with less.

Identity is at the center of this rapid change. Today, machine identities outpace humans by a ratio of 82:1. Join us live as CyberArk Chief Strategy Officer Clarence Hinton explores trends, market dynamics and other pressing issues shaping the 2025 identity security landscape.

Identity Security in 2025: Top Trends from 2,600 Security Decision-Makers

Disconnected applications pose a significant challenge to identity lifecycle management, often operating beyond the reach of traditional identity governance platforms. This results in risks like orphaned accounts and compliance gaps. In this webinar, Henrique Teixeira (SVP of Strategy at Saviynt) and Belsasar Lepe (CEO of Cerby) will explore why addressing this “last mile” is crucial. They will demonstrate how integrating Saviynt’s governance framework with Cerby’s automation platform enables end-to-end access governance—without the need for APIs or SCIM.

Attendees Will Learn:
-Why disconnected applications create critical identity governance challenges
-How automation addresses the “last mile” in identity lifecycle management
-The benefits of integrating Saviynt’s governance with Cerby’s automation platform
-A demonstration of a joint solution enabling access governance without APIs or SCIM
-Insights into the future direction of identity governance

Solving the Last Mile in Identity Lifecycle Management: Why Automation Is the Future

In this talk, we’ll look at how a modern approach to Identity Management is a critical enabler of Zero Trust. Gone are the days where identity can focus solely on managing access within a safe perimeter. Now, its on the front lines of one’s infrastructure and needs to be treated as such. In this talk, we’ll look at steps CISA has been talking to develop a defensible security foundation through investments in identity management and how that fits into our broader push for a more secure by design technology fabric.

Identity As a Key Enabler of Zero Trust

Everyone agrees it's time to kill the password to better the overall identity ecosystem, but the question of “with what” makes things a bit trickier. FIDO Authentication standards are touted by the public and private sectors as the best tools to get us there. 

Join this session to understand the importance of the authentication piece of the identity puzzle, find out about the latest trends and standards for simpler and stronger authentication, and learn what we all need to do to reduce the world's reliance on passwords on a global scale.

The State of the Industry’s Path to Passwordless

Operational resilience today depends on your ability to prevent and quickly recover from disruptions caused by cyberattacks. As Gartner notes, “misused credentials are now the top technique used in breaches…. attackers are targeting Active Directory and the identity infrastructure with phenomenal success.” Active Directory (AD) has long been a prime attack vector because of security vulnerabilities and misconfigurations that cybercriminals love to exploit. But by deploying a strong Identity Threat Detection and Response (ITDR) strategy, you can identify and address AD and Azure AD vulnerabilities, hardening your defenses against identity-related attacks and improving operational resilience.

What You Will Learn
– Why ITDR is key to operational resilience.
– Common tactics that threat actors use to target AD/Azure AD as an entry point into your environment.
– How to detect vulnerabilities in hybrid AD environments, including indicators of exposure (IOEs) and indicators of compromise (IOCs).
– How to guard against attacks that bypass traditional logging methods.
– How to ensure, a fast, clean AD forest recovery post-attack.

Semperis Presents: Strengthen Operational Resilience with ITDR

Everyone knows that MFA provides better protection against hackers than just SSO and 2FA alone. But even when cyber insurance requires organizations to use MFA, few have done so as it results in poor user experience and increased MFA bombing attacks.

Enter invisible MFA as part of the passwordless continuous authentication. It has all the security, but none of the friction of its legacy predecessors. Attend this webinar to learn what true invisible MFA really is and how you can deploy it in record time and save $28M / year (on average).

What You Will Learn
– The differences between legacy MFA and the latest invisible MFA technology.
– Best practices on how to best evaluate Authentication vendors.
– Armed with intelligent MFA, learn how you can effectively fight the two-front war of poor security and sub-optimal user experience.
– Customer tips and tricks on how to deploy invisible MFA as part of the passwordless continuous authentication in record time, save money, and attain the highest user adoption rate.

SecureAuth Presents: MFA is so 80’s: Continuous Authentication for Invisible MFA

In this tight budgetary environment, getting the maximum value from your investments is more important than ever. The same is true for your investments in identity security. Join this session to hear identity security practitioners, architects and leaders share practical advice and strategies to make your identity program effective and to maximize ROI.

What You Will Learn
– Strategies for minimizing Identity program costs and maximizing ROI.
– Tips on getting the people and process aspects right.
– How to make identity security understandable, useful and effective in your organization.

Saviynt Presents: How to Be Identity Smart

Hackers don’t break in—they log in. Passwords are too easy to compromise, and even early generation MFA strategies can be subject to phishing attacks. Even when authentication strategies are successful, valid users and machines can be prevented from doing their jobs because of new and complex security processes. In 2023, cybersecurity executives must take action to enhance their authentication practices, but the path forward can be daunting. Join Axiad’s session to learn what critical steps can be taken today to implement a Zero Trust strategy with phishing-resistant and passwordless authentication.

What You Will Learn
– Taming complexity with a holistic approach to authentication.
– Avoiding common pitfalls when implementing a phishing-resistant strategy.
– Reducing end-user friction with real passwordless solutions.

Axiad Presents: 3 Ways to Navigate the Path to Enhanced Authentication

How mature is your Identity Security program? Are you prepared to respond quickly to evolving cyber threats and regulatory guidelines? A recent global survey of cybersecurity professionals indicates that a successful Identity Security strategy is based on the completeness of the four tenets – tools, integration, automation and continuous threat detection and response. We will discuss the findings and recommendations on how organizations can advance their Identity Security program.

What Will You Learn
– Top 3 Identity Security challenges and investments priorities.
– 4 tenets of Identity Security maturity.
– How to prioritize initiatives for measurable risk reduction.

CyberArk Presents: Global Insights on Identity Security Maturity

Effective identity management ensures security for systems and people, enhancing privacy and enabling efficient digital experiences for businesses and individuals. IDPro helps its membership of identity professionals collaborate on best practices to develop and maintain effective digital identity management tools. In this session, we asked our members to share their most effective IAM practices for protecting and securing digital identity.

Join Heather Vescent, IDPro President and Executive Director, and guests who will share their best practices to create IAM excellence and address identity challenges within their organizations.

What You Will Learn
– Best practices to build your IAM team.
– Growing your IAM talent pipeline.
– How to address typical organizational challenges.

Establishing Digital Identity Security Best Practices with IDPro

With official government-led digital recognition and ID systems gaining ground in the EU, what is the path forward in the United States? How can we safeguard privacy, prosperity, and liberty while securing the digital identities of the future? In this wide-ranging discussion full of international examples and case studies, we will discuss the incoming tide of identity management innovation and how we can work together to build a more secure interconnected world.

What You Will Learn
– What the international digital identity landscape looks like today.
– How to safeguard privacy while securing digital identities.
– What these systems could look like in the U.S. and what the public reaction could be.

Unlocking the Potential of Identity Management

Keynote Panel: Identifying What's Wrong with Identity
Everything uses an identity. We still have identity-related breaches. Why? Every aspect of your activities is based on your identity. What you see and do online occurs because your identity and authentication determine your access authorizations. Join us to dive into what we need to be doing to support and manage identities and how we can prevent the problems that come from identity compromises. Some topics of interest will be Privacy, Zero Trust, Passwordless, Artificial Intelligence, and Security 101.

What You Will Learn
– Identify the key components for your strategy on identity management and protection.
– Look for the latest in processes and technologies in identity management.
– Go back to the basics and employ fundamental security practices.
– Know where to look for new trends in identity and identity management.

Welcome and Keynote Panel: Identifying What's Wrong with Identity

Identity Management Day 2023

Zero-trust architectures demand better control on sessions that live across distributed cloud services. Open Standards such as OpenID Shared Signals and CAEP are helping companies improve session control by passing asynchronous events between services. This session will discuss real-world use cases drawn from existing and planned implementations of the protocol standards.

What You Will Learn
– Standards-based solutions to zero-trust use-cases.
– Features of the existing standards: SSF, CAEP and RISC.
– Industry adoption.
– How to adopt or implement.

Open ID Shared Signals, CAEP and RISC: Real World Use Cases

Identity Management Day

Identity Management

Zero Trust

OpenID Shared Signals

SGNL

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Open ID Shared Signals, CAEP and RISC: Real World Use Cases

Presented by

About this talk

Identity Defined Security Alliance