Name: Why Machine Identities Are Your Next Compliance Risk
Start: 2025-06-25T16:00:00Z
End: 2025-06-25T16:01:00.000Z
Location: BrightTALK
Rating: 0

This channel brings together the leading identity and security vendors and industry experts to regularly educate security leaders on how to reduce risk through identity-centric strategies. For more resources and education on identity-centric security strategies, visit www.idsalliance.org.

It’s no surprise tech investments in Artificial Intelligence (AI) and cybersecurity are on the rise. The top priority for C-Suite (52%) is to speed up digital transformation, and now security leaders must tackle a new, exploding attack surface – machine identities & AI agents – while breaking silos and doing more with less.

Identity is at the center of this rapid change. Today, machine identities outpace humans by a ratio of 82:1. Join us live as CyberArk CSO Clarence Hinton explores trends, market dynamics and other pressing issues shaping the 2025 identity security landscape.

Identity Security in 2025: Top Trends from 2,600 Security Decision-Makers

Disconnected applications pose a significant challenge to identity lifecycle management, often operating beyond the reach of traditional identity governance platforms. This results in risks like orphaned accounts and compliance gaps. In this webinar, Henrique Teixeira (SVP of Strategy at Saviynt) and Belsasar Lepe (CEO of Cerby) will explore why addressing this “last mile” is crucial. They will demonstrate how integrating Saviynt’s governance framework with Cerby’s automation platform enables end-to-end access governance—without the need for APIs or SCIM.

Attendees Will Learn:
-Why disconnected applications create critical identity governance challenges
-How automation addresses the “last mile” in identity lifecycle management
-The benefits of integrating Saviynt’s governance with Cerby’s automation platform
-A demonstration of a joint solution enabling access governance without APIs or SCIM
-Insights into the future direction of identity governance

Solving the Last Mile in Identity Lifecycle Management: Why Automation Is the Future

There is an ever-widening gap between the threats to identities and access control and our ability to defend against those threats. Bad actors know it, and they exploit gaps in traditional, outdated security controls. Without a new identity security paradigm to meet new challenges, defense will fall behind and risk will increase. This new paradigm must protect a full spectrum of identities, break silos with unified discovery, policy creation and management across environments, grant privileges based upon context and risk, include ITDR and pre and post authentication projection. Learn how organizations build comprehensive security programs to meet today’s threats.

Attendees will learn new identities groups, the risks they pose and how to secure them; How to address new cybersecurity challenges.

Securing the Future: The New Identity Security Paradigm for Cyber Leaders

Zero Trust isn’t just a framework—it’s a necessity. But, in reality, implementing it is easier said than done. Some organizations are doing it well, while others struggle with hidden gaps and unexpected roadblocks. So, what’s actually working? What’s falling flat? And where is Zero Trust headed next?

Join Cerby's Rick Weinberg and John Kindervag, the creator of Zero Trust, for a discussion on the state of Zero Trust today. We’ll break down the real-world wins, the most common pitfalls (spoiler: disconnected apps are a big one), and how to future-proof your security strategy. Whether you're deep into Zero Trust or just getting started, this webinar will give you the insights you need to get the most out of your security investments.

Attendees Will Learn:
– The current state of zero trust
– Common roadblocks and how to overcome them
– Real-world examples and best practices
– How to future-proof your security strategy

Zero Trust in Practice: What’s Working, What’s Failing & What’s Next

Modern enterprises don’t just manage human identities anymore. From cloud workloads and service accounts to Agentic AI and automation scripts, non-human identities (NHIs) now outnumber human users in most organizations. Yet, security teams face a paradox: while they’re responsible for securing NHIs, these identities are often created and managed by DevOps and development teams. This disconnect can lead to unchecked credential sprawl, privilege mismanagement, and security blind spots.

In this interactive session with the Identity Defined Security Alliance (IDSA), we’ll break down what non-human identities are, why they matter, and the risks they introduce. More importantly, we’ll explore how security teams can move from reactive gatekeepers to proactive enablers—helping DevOps teams work more efficiently while reducing risk. Our experts will share practical strategies for securing NHIs without adding friction, covering workload authentication, API access, and secrets management.

Whether you're struggling with visibility into non-human identities or looking to implement scalable security controls, this discussion will equip you with actionable insights to align security and DevOps, strengthening your overall identity security strategy.

Securing Non-Human Identities: Balancing Security and Productivity

IAM Program owners must deal with the fact that identities are the most dispersed set of artifacts to manage and the most exploitable attack vector to secure. But fragmented identity systems lead to siloed identity sprawl, making it hard to reign in daily operations. Join Axonius to learn how aggregated asset data and intelligence across the entire identity fabric enables unified lifecycle actions, governance, posture, and hygiene operations in one place.

Take Action With Consolidated Identity Operations

There is an ever-widening gap between the threats to identities and access control and our ability to defend against those threats. Bad actors know it, and they exploit gaps in traditional, outdated security controls. Without a new identity security paradigm to meet new challenges, defense will fall behind and risk will increase. This new paradigm must protect a full spectrum of identities, break silos with unified discovery, policy creation and management across environments, grant privileges based upon context and risk, include ITDR and pre and post authentication projection. Learn how organizations build comprehensive security programs to meet today’s threats.

Attackers are targeting identity like never before, and many companies are still relying on tools that can’t keep up. With AI powered threats, exploding SaaS use, and supply chain risks, defenses are under serious strain. In this fast moving 45 minute session, we’ll cut through the noise to show how identity attacks are evolving and what leading CISOs are doing about it. You’ll get real world lessons, a look at why legacy strategies fall short, and practical ways to help you strengthen identity security before an attacker makes the choice for you.

Modern Identity Threats: What CISOs Need to Know and Act On in 2025

Identity attacks have officially reached the SMB market, bringing new challenges for businesses that often lack the knowledge, resources, or scale to effectively defend against them. As a result, Managed Services Providers (MSPs) have stepped in to bridge the gap. However, securing identity across hundreds or even thousands of companies comes with its own set of complexities. Learn how MSPs are tackling this evolving threat—and what it takes to safeguard identities at scale.

IAM isn’t just for Enterprises – How MSPs are Helping SMBs Secure the #1 Attack Vector

Agentic AI is emerging as the next big shift in identity security, but what’s hype and what’s real? Today’s tools still rely on manual work and standards-based integrations, leaving gaps that attackers exploit and IT teams struggle to manage. This is where AI-driven solutions step in to automate workflows, secure access to any app, and adapt to threats in real time. But where can it add the most value, and what should IT and security leaders be watching for? In this session, we’ll break it down in clear, practical terms—what’s possible today, what’s coming next, and how to prepare for the future of identity security.

Agentic AI for Identity: Smarter, Faster, and More Secure

We enforce MFA for human users because we know passwords alone aren’t enough. So why are workloads—APIs, services, containers—still authenticating with static secrets that rarely change? Attackers know this gap exists, and they exploit it constantly.

David Goldschlag, CEO of Aembit, introduces the next step in Zero Trust: MFA for machines.

Zero Trust shouldn’t stop at human users. It’s time to hold workloads to the same security standards, and we now have the technology to do it.

MFA for Machines: Bringing Zero Trust to Workload and Non-Human Identity

During the past 10 years I’ve participated in many security incidents, received confidential readouts of other company incidents, collaborated with top well-known incident response firms as well as government agencies. It’s with these experiences and learnings I’ve applied an overlay of Zero Trust to the problem. Having also delivered Zero Trust strategies at two globally-recognized enterprises we can speak to the reality of the problem and solution.

In 2022 I presented how my Enterprise Security teams delivered Zero Trust at Adobe and Cisco. So, let’s talk about why we prioritized the initiative;a forward thinking strategy that really defended against the attacks we were seeing. During this session we’ll discuss some high-profile security incidents from the past year, reviewing the themes, kill chain, and how or where a Zero Trust strategy might help prevent the attack, slow them down, or reduce risk.

As an example, many high profile hacks all started similarly. Related to an employee or contractor credential theft (or purchase) and an MFA fatigue or bypass. These are NOT highly sophisticated attacks and there are strategies that can save your bacon.

Today's Attacks Deserve Better. Stop using Yesterday's Strategies

Identity is no longer just about humans. With non-human identities (NHIs) - service accounts, API keys, and bots - outnumbering users, enterprises face an existential identity crisis. Traditional IAM can’t keep up with identity sprawl, new attack vectors, and machine-driven access.

Join Oasis Security as we share frontline stories on how security leaders are adapting to IAM 2.0 - a shift beyond human-centric identity. Learn how to secure non-human identities, close critical gaps, and embrace the future of identity security.

IAM 2.0: Tales from the Frontline

Discover simple yet effective strategies to protect your online identity. Presented in partnership with the National Cybersecurity Alliance, this talk addresses today's identity challenges, including virtual, machine, and remote-work identities. Learn practical cyber behaviors anyone can adopt—like strong passwords, multi-factor authentication, and least privilege principles—highlighted by real-world anecdotes and the latest insights on generational differences and increasing cybersecurity dependence. Perfect for non-technical managers seeking easy-to-implement solutions, you'll leave equipped with clear guidance and actionable steps to enhance online safety for yourself and your organization.

Easy Ways to Stay Safe Online: Practical Identity Management Anyone Can Follow

Zero Trust has become a cornerstone of modern cybersecurity, but without a strong Identity Governance and Administration (IGA) foundation, organizations risk leaving critical gaps in their security strategy. In this session, we’ll explore why Identity is at the core of Zero Trust and how IGA enables key principles like least privilege, continuous verification, and policy-based access control.
We’ll break down how IGA extends beyond Zero Trust, delivering value in compliance, risk reduction, and operational efficiency. Finally, we’ll discuss Omada’s best practice approach to IGA, offering practical insights on how organizations can integrate Identity Governance into their Zero Trust framework for a more resilient security posture.

Zero Trust Without IGA is Not Zero Trust

In a world where AI singularity is within reach, the line between human and machine is increasingly blurred. More Human than Human explores the profound impact of artificial intelligence and automation on our understanding of the future of identity and cybersecurity. This session takes you on a compelling journey through the evolving landscape of identity management and identity security, where the interactions with human and non-human identities create unprecedented challenges, and opportunities for organizations.

More Human than Human: A Riveting Story About Machines, AI, and Identity

Here we have welcoming remarks and the Awards sponsor, CyberArk will present the four Identity Management Day awards:

- Enterprise Project of the Year
- SMB Project of the Year
- Innovative Use of New Technologies
- Identity Management Leader of the Year

Welcome and Awards Presentations

In today's complex regulatory environment, adhering to various cybersecurity and data privacy regulations is a challenging yet essential task for organizations. Join us for an insightful round table discussion where industry experts from Segura will delve into identity-centric strategies to simplify and streamline regulatory compliance. We'll explore frameworks such as NIST 2.0, ISO 27001, CIS Controls, and data privacy regulations like GDPR and CCPA. Learn how Privileged Access Management (PAM) plays a critical role in meeting these standards.

Attendees Will Learn:
–How to identify and inventory machine identities across cloud, on-prem, and DevOps pipelines
–The top compliance red flags related to machine accounts and credentials
–Techniques to automate policy enforcement and auditing of machine identities
–How to leverage PAM, secrets management, and CIEM together for stronger governance

Why Machine Identities Are Your Next Compliance Risk

Machine Identitites

Compliance

Non-Human Access

Identity Governance

Certificate Management

Audit Readiness

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Why Machine Identities Are Your Next Compliance Risk

Presented by

About this talk

More from this channel