Name: PlainSense: Authorization Policy Enforcement in Service Mesh - Part 3
Start: 2021-02-17T17:00:00Z
End: 2021-02-17T17:00:26.000Z
Location: BrightTALK
Rating: 3

PlainID is the world's leading provider of enterprise Authorization, helping enterprises address the complex challenges of Identity Security. The PlainID Platform allows you to discover, manage, and authorize access control policies for enterprise applications and data. Our solution is architected to protect against identity-centric security threats powered by Policy-Based Access Control (PBAC).

AI agents are rapidly evolving from simple tools into a new "digital workforce," integrated into our most critical business processes and acting autonomously across an expanding operational landscape. But what happens when one (or more) of them goes rogue?

This session deconstructs the anatomy of these new AI-driven security failures. We will look at traditional approaches and the gaps left across the entire AI lifecycle, grounding the analysis in a case study from a Fortune 500 professional services company that extended its strong authorization framework across its agentic AI enterprise systems. We will then share a practical playbook: a modern, Zero Trust framework for governing the entire AI workflow and overcoming the dangerous authorization blind spot that leaves many organizations exposed.

Audience Takeaways
- Analyze the Full Access Control Attack Surface for AI Agents: Attendees will learn to identify the full spectrum of access risks unique to enterprise agentic systems, moving beyond AI prompt security to the critical vulnerabilities in data retrieval, MCP, and tool integration.
- Assess Your AI Access Control Readiness:  Gain a clear set of principles to evaluate your organization's current access control gaps and define a roadmap for securing your agentic AI systems.
- A Practical Playbook- How to Secure AI Systems Access Controls Today: Attendees will walk away with an actionable framework for implementing a modern, Zero Trust authorization strategy for the entire enterprise AI workflow.

Who Should Attend:
- Chief Information Security Officers (CISOs) and IT/Security Leaders
- Governance, Risk, and Compliance (GRC) Professionals
- Security, Enterprise, and IAM Architects
- Data Governance and Data Security Leaders

Anatomy of an AI Breach: A Real-life Look at Agentic Access Control Failure

As enterprises deploy Agentic AI to automate critical business decisions, a dangerous compliance gap is emerging: a critical visibility gap in their auditability. AI agents perform complex, multi-step actions—querying data, calling tools, and generating responses—making it nearly impossible for traditional audit logs to provide a verifiable record of the data, tools, and services involved in each automated decision. This lack of traceability is a primary barrier to responsible AI adoption and a significant risk for the business.

This session explores why current access controls create these visibility gaps and how shifting to a proactive, policy-based approach closes them. We will demonstrate how a dynamic authorization framework, grounded in Zero-Trust principles, creates an immutable, real-time audit trail for every decision across the full AI workflow.

Join us to learn how to build trustworthy, transparent, and fully auditable AI systems that satisfy regulators and accelerate business innovation.

Key Takeaways:
- Understand why traditional audit logs fail to provide a complete, context-aware trail for complex AI actions.
- Learn how to map dynamic, fine-grained authorization policies to each stage of the AI flow—from prompt to data retrieval, tool usage, and response.
- Discover the critical role of Identity-First security in tying every automated action back to a verifiable human or machine identity.
- Gain a practical blueprint for creating a real-time, compliant audit trail for regulatory and internal governance.
- Learn how to answer the toughest questions from auditors regarding your AI systems' behavior and data access.

Who Should Attend:
- Chief Information Security Officers (CISOs) and IT/Security Leaders
- Governance, Risk, and Compliance (GRC) Professionals
- Security, Enterprise, and IAM Architects
- Data Governance and Data Security Leaders

Agentic AI Compliance: Achieving Auditability Across the Full AI Flow

In today’s hyper-digital world, customers expect their financial institutions to offer the same speed, autonomy, and simplicity they enjoy from their favorite digital apps. Yet when it comes to sharing access to financial assets, for family members, advisors, or support staff, outdated manual processes continue to create friction, delay, and risk.

Join Gal Helemski, Co-founder & CPO, PlainID, with Marco Venuti, Director, IAM Business Acceleration, Thales, for an in-depth look at what portable trust is. Discover how portable trust enables financial institutions to deliver secure, compliant, and seamless proxy access, all backed by a configurable, API-driven architecture. 

In this session, we’ll explore:
- The evolving demand for portable trust and customer delegation
- Explore the main benefits: How the solution enables the business to better address their customer requirements  
- Present real-world use cases: family access, financial consulting, SME support, and more
- Have a live demo

Whether you're a business leader focused on customer experience or a technical architect driving modernization, this webinar will equip you with insights to future-proof your financial service offerings.

Who Should Attend: 
- Heads of Digital Banking / Innovation
- IAM & Security Architects
- Product and IT Leaders

Redefining Trust: Modernizing Financial Account Sharing with Portable Trust

As AI agents gain the power to orchestrate complex workflows, calling external APIs, querying data stores, and triggering automated actions via the Model Context Protocol (MCP), simply verifying identity is no longer enough. In this webinar, we’ll explore how dynamic, policy-driven authorization closes the security gap beyond basic authentication, ensuring that every MCP request is evaluated in context, in real time.

What You’ll Learn:
- Why Authentication Alone Falls Short
Understand the risks of unchecked MCP calls: from inadvertent data exposure to unauthorized system changes.

- Principles of Dynamic Authorization
Discover how attribute- and context-based policies adapt permissions on the fly, factoring in user role, session attributes, environment posture, and risk signals.

- MCP-Specific Challenges & Solutions
See how MCP’s flexible “tool invocation” model expands your attack surface, and learn patterns for intercepting, evaluating, and enforcing granular controls at each request.

- Live Demo: Enforcing Zero-Trust for AI Agents
Watch a live policy flow in action: blocking unauthorized tool calls, scoping data retrieval to least-privilege, and elevating decisions based on dynamic context (time, location, risk score).

Join us to secure the future, where authorization becomes the gatekeeper for safe, compliant, and trustworthy MCP-powered agent deployments.

Securing the Future: Dynamic Authorization for MCP-Powered Agents

Modernizing OES with PlainID – From Legacy to Agility

Legacy authorization frameworks like Oracle Entitlements Server (OES) served their purpose, but in today’s fast-paced digital landscape, organizations need a modernized approach that can be understood and utilized by all teams in the organization. They need agility, visibility, and control.

Join Mickey Martin, VP of Sales Engineering, and Sharon Mula, Product Manager,  as they walk through the journey of transitioning from OES to PlainID, a modern Policy-Based Access Control (PBAC) platform purpose-built for dynamic authorization. The session will begin with a comparison of the legacy XACML-based OES approach versus the modern, business-friendly interface and flexibility of PlainID and end with covering real world examples of utilizing the PlainID OES migration tool. Through interactive discussion, real-world demonstrations, and hands-on examples, Mickey and Sharon will explore what makes PlainID the future of authorization.

Key topics include:
- Why modernization is more than just a tool swap—it’s a strategic evolution.
- How PlainID’s configuration-as-code and policy-as-code approach simplifies migration.
- Walk through the process of preparing for and completing a migration utilizing PlainID migration tools. 
- Lessons learned, common challenges, and success stories from past migrations.
Whether you’re evaluating your current entitlements infrastructure or already planning your move, this webinar offers actionable insight into how PlainID and its professional services can guide you to a future-proof authorization model.

OES Migration: Modernizing your Legacy Fine Grain Access Control

As organizations adopt Agentic AI to automate increasingly complex tasks, ensuring secure and trustworthy interactions between AI agents and data systems is more critical than ever. But what does securing Agentic AI look like in the real world?

Join Kobi Gol, VP of Product, and Vladi Berger, VP of Solutions Engineering, PlainID, for an in-depth look at how one forward-thinking enterprise tackled the challenges of securing Agentic AI through a robust, policy-driven approach to authorization and access control. This session will feature a detailed customer case study illustrating how they identified key risks, implemented dynamic, fine-grained authorization policies, and aligned their architecture with zero-trust and identity-first security principles.

We'll walk through the lifecycle of their AI deployment - from initial threat modeling to policy design and enforcement - and highlight lessons learned along the way. You'll gain insight into how real-world organizations are securing autonomous AI systems without sacrificing innovation or agility.

Whether you're building your first Agentic AI system or looking to fortify existing deployments, this webinar will equip you with practical guidance and proven strategies for securing the future of intelligent automation.

Securing Agentic AI in Practice: A Customer Case Study on Policy-Driven Protection

With AI systems playing an increasingly significant role in critical areas, it's essential to ensure strong authorization and access control. This is vital for protecting data integrity, privacy, and maintaining compliance.

This session will feature Gal Helemski, Co-founder & CPO, PlainID, along with Vladi Berger, VP of Solutions Engineering, PlainID, as they will cover the emerging challenges in securing AI systems and effective strategies for reducing risks. They will explore the core concepts of policies for Agentic AI and AI systems in general, including the enforcement of dynamic, fine-grained controls throughout the AI pipeline.

Their discussion will also emphasize the relevance of modern security approaches like zero-trust architecture and identity-first security in the context of AI systems. They will examine real-world examples of both common mistakes and creative solutions. The goal of this session is to provide you with the knowledge to build secure and adaptable AI systems that meet your organization's goals and adhere to regulatory requirements.

Securing the Future: Best Practices for Authorization and Access Control in AI Systems

Don’t miss our customer case study webinar on how Cisco leverages PBAC to centralize and streamline authorization, ensuring real-time data access control, improved business agility, and enhanced governance and compliance. The webinar will feature Gal Helemski, CPO and Co-founder, of PlainID and Dileep Moturi, Director – Architecture & Engineering: IAM & Data Security, of Cisco.
 
Learn how PlainID powers secure access to one of Cisco’s most mission critical workforce applications with plans to expand PBAC across its enterprise. Cisco will talk about how the organization made the strategic decision to externalize their authorization policies from a legacy homegrown authorization engine to PlainID. This has enabled their organization to optimize developer and engineering workloads while increasing business agility by streamlining access entitlement decisions for the business.

Customer Case Study: How Cisco Leverages PBAC to Modernize and Optimize their Business Through Authorization

As organizations increasingly migrate to the cloud, securing data access becomes paramount, especially for sensitive platforms like Snowflake. Join us for an insightful webinar on how PlainID's Policy-Based Access Control solution can enhance the security of your Snowflake environment.  We will explore how PlainID's policy-based approach allows you to control who can access what data, when, and how, without compromising flexibility or usability.

In this session, you will learn:
- The importance of enforcing granular access control within Snowflake environments.
- How PlainID’s centrally managed policies provide robust protection, ensuring only authorized users access sensitive data.
- Real-world use cases for leveraging PlainID to manage roles, permissions, and access to Snowflake resources effectively.
- Key benefits of a policy-based access control model over traditional siloed approaches.

Whether you're a security professional, data engineer, or IT leader, this webinar will provide the tools and knowledge to better protect your Snowflake data, ensuring it is secure, compliant, and accessible to the right people at the right time.

Don't miss out on this opportunity to learn how PlainID can simplify and strengthen Snowflake security.

Protecting Data in Snowflake Doesn't Have to Be Unique as a Snowflake

Traditionally, authorization has been handled within individual, homegrown applications, an approach that lacks scalability and security. Siloed controls and disparate rules create challenges in enforcing consistent authorization, complicating data security and 
compliance as data usage expands. 

Learn how PlainID solves these issues by centralizing authorization through the PlainID Authorization Platform and PlainID Authorizers for SQLl statements and JSON objects. PlainID’s Mickey Martin, VP of Engineering, along with Vladi Berger, VP of Solutions Engineering, will walk us through how our approach enforces tailored controls on data objects, whether they be rows and columns or objects and keys. Moving across microservices, APIs, and end applications data takes many forms and requires multiple ways to ensure consistent security of your digital assets. 

Key Highlights:
- Central Policy Management - Manage Policies that connect user identities to the digital assets they require access for that can be enforced by prefiltering, changing of SQL statements in application or microservice memory, and post filtering, redaction and of objects and keys in REST responses.

- Coarse and Fine-Grained Authorization - Enforce fine-grained controls at a granular level by determining what objects/rows are exposed to a user and how those columns and keys should be viewed, such as applying masking.

- Low/No-Code Integration - Easy to call Microservice that returns a fully authorized JSON object or a fully authorized sql statement depending on your integration needs. Both can be paired with other technologies to provide no-code solutions to your data access problems. 

- Consistent Data Control - Employs REST APIs to extend robust access control consistently across data, applications, and microservices.

Identity Aware Security for Data: SQL and JSON | Pre and Post Data Masking & Filtering for Data Access Control

Join Mickey Martin, VP of Sales Engineering, and Nick Hunt, Founder, Chief Identity Officer, HATSec, as they discuss what it means to adopt Policy Based Access Control, and how this changes how identity teams attest compliance to audit. In the world of Identity Audits, we are used to looking at reports of which users are granted membership into roles, groups, and entitlements and making assumptions about access based on company knowledge. Centralized Management of authorization policies takes out the guesswork of how authorization is decided based on identities controlled in IGA and context of access being requested.

Talking Points & Key Takeaways:
- What does it mean to Centralize Authorization in your ecosystem?
- How does Dynamic Authorization reduce risk and minimize exposure due to standing privilege?
- How does this affect periodic attestations and compliance to support identity audits?
- Discuss the importance of looking at both sides of the Identity-Centric Security Coin - Identity attributes, roles, groups, entitlements and how Authorizations allows or denies user actions based on these identities.
- How do we design an Identity program that tightens security vs checks the boxes? We tend to build systems that answer to the audit vs. answer to attack.

Audit What’s Not There: Shifting Mindset and Compliance in a Dynamic Policy Driven Environment

Join Mickey Martin, VP of Sales Engineering, as he dives into a PlainID customer’s Authorization Journey, including a multistage experience that aimed at establishing a centralized, fine-grained, scalable, and modernized identity & authorization framework.

Talking Points & Key Takeaways:

- How the customer understood the technology gap, and how traditional RBAC solutions did not adequately manage access to data for complex, distributed applications.

- How PBAC (Policy Based Access Control) addresses and solves the gap by providing a cutting-edge approach to authorization, offering a hybrid of Role Based Access Control (RBAC) and Attribute Based Access Control’s (ABAC) strongest features.

- Discuss the vendor selection criteria for PBAC and why PlainID has more breadth and offers a one-stop solution for most application/data PBAC requirements. 

- Understand the pathway to a successful implementation of Policy Based Access Control (PBAC).

Customer’s AuthZ Journey: Global 100 Firm Externalized Access Control Policies to Optimize Data Access Compliance w PBAC

A poor access control and authorization strategy not only exposes valuable data to adversarial activity, but also limits data sharing, collaboration and business agility. Homegrown and legacy authorization technologies have become outdated  - unable to be extended and support contemporary use cases focused on sharing, security, and usability. A more identity-centric approach to authorization can securely protect a broader array of assets, and engage the right stakeholders to create human-readable and adaptive access control policy that improves security, reduces risk, and supports business change.

This webinar will discuss the rise of this identity-centric approach, the core requirements focused on centralized policy management, a broad array of integration options, and a discussion on migration approaches to this new landscape.

Migrating to an Identity Centric Authorization Strategy

For decades, people have been challenged by modernizing legacy authorization approaches & meeting the demands of Security & User Experience. Times have changed.

Allow PlainID to take you through three case studies to show how firms are modernizing and optimizing their business through authorization. 

Join Gal Helemski, CPO & Co-founder, PlainID, and Mickey Martin, VP of Sales Engineering, PlainID as they discuss the value and power of central policy management, distributed enforcement, and how PBAC helps address identity-centric security challenges.

Making the Complex Simple:  Authorization for the Modern Enterprise

Traditionally, Authorization has been coded into every application. With the move to lightweight digital services, however, this becomes unwieldy and impractical. Businesses need to move fast to provide customer-driven, unattended transactions and responsive customer experiences.

Enterprises have continued to tackle Authorization with homegrown solutions, yet industry analysts have been validating the need for externalized Authorization for the last several years.

Join Mickey Martin, VP of Sales Engineering, PlainID, and  Hub City Media’s CTO & Co-founder, Steve Giovannetti to talk about how homegrown and legacy authorization solutions do not align to modern business standards, driving the demand for an Enterprise Authorization solution.

Modernize your Enterprise with Authorization

The increasing intricacies and granularity of data access call for a proactive security approach across all enterprise architecture layers.

Learn how PlainID helps firms modernize their approach to Authorization while increasing identity-centric security and protecting data access.

Join Mickey Martin, Director of Product Outreach, as he discusses the challenges facing enterprises today in preventing identity related security risks, addressing advanced data access challenges including compliance & regulatory requirements.


Key Takeaways: 

Addressing Data Access with Policy Based Access Control:  How & why PBAC can help support data privacy, data compliance, and data regulation.

Central Policy Management & Distributed Enforcement:  Learn how standardization of authorization policy management & enforcement reduces both security risk and operational cost.

The Future of Data Access Control: Discuss market trends, insights and how PlainID is planning to address the challenges of Identity & Data Security.

Sample Architecture: A real world reference architecture on leveraging PBAC, and securing access to mission critical data.

PlainID Addresses Data Access with Snowflake

The increasing intricacies and granularity of data access call for a proactive security approach across all enterprise architecture layers.

Learn how PlainID helps firms modernize their approach to Authorization while increasing identity-centric security and protecting data access.

Join Mickey Martin, Director of Product Outreach, & Tom Ammirati Chief Revenue Officer  PlainID, as they discuss the challenges facing enterprises today in preventing identity related security risks, addressing advanced data access challenges including compliance & regulatory requirements.


Key Takeaways: 

Policy Based Access Control:  How & why PBAC can help increase your identity-centric security level, address common access control patterns & modernize your authorization engine.

Central Policy Management & Distributed Enforcement:  Learn how standardization of authorization policy management & enforcement reduces both security risk and operational cost.

The Identity Attack Surface & Future of Access Control: Discuss market trends, insights, and how PlainID is planning to address the challenges of Identity Security.

Customer case study: Will discuss a real-world customer’s journey of externalizing authorization policies, leveraging PBAC, and securing access to mission-critical applications.

How Dynamic Authorization Secures Identities & Protects Data Access

The increasing intricacies and granularity of network access call for a proactive security approach that grants visibility across the enterprise. Learn how PlainID helps modernize businesses' approach to authorization to bridge security gaps and better protect mission-critical data and the applications that rely on it. 

Join Mickey Martin, Director of Product Outreach, PlainID, as he discusses the challenges facing enterprises today in securing connections to endpoints and applications while keeping in alignment with identity security posture and security best practices.

Key Takeaways: 

- Customer case study on how an organization is incorporating Policy Based Access Control to address their data security and user experience objectives in their Segmented SASE environment.

- Streamline Access to Endpoints - Centralize and automate policy management to reduce manual efforts required to enforce policies across the network.

 - Minimize Security Gaps - Ensure policies are consistently applied across the enterprise with a Policy-based Access Control (PBAC) framework. 

- Gain Visibility and Monitoring - Track access policies from a single dashboard that provides reporting and alerting to inform administrators on policy changes. 

- Adapt to Evolving Requirements - Facilitate quick updates and adjustments to keep up with evolving business needs, security threats, or regulatory changes for compliance.

PlainID Brings Identity Security Posture Management to SASE with Zscaler

This is the third part of the “Authorization Policy enforcement in Service Mesh” webinar series. 

In the previous talks, we’ve first covered the foundations of managing authorization for micro-services, then delved into the topic of entitlement injection.

In this talk, the third in the series, we'll be discussing data filtering in the service mesh. More specifically, the ways in which the policy decision sidecar can support your micro-service in enforcing access with a large amount of data.

The series is hosted by PlainID's co-founder Gal Helemski, and by our Senior Solution Architect Vladi Berger. As before, this talk will be accompanied by a live demonstration, and there’ll be time for Q&A.

If you haven’t yet, do feel free to check out the first two talks in the series, available below via the list of related talks.

PlainSense: Authorization Policy Enforcement in Service Mesh - Part 3

Authorization

Governance

RBAC

pbac

ABAC

Policy Based Access Control

Access Management

Access control

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

PlainSense: Authorization Policy Enforcement in Service Mesh - Part 3

Presented by

About this talk

PlainID