Name: Carmax: Combating Phishing with Integrated Physical and Digital Security
Start: 2024-04-09T16:00:00Z
End: 2024-04-09T16:00:32.000Z
Location: BrightTALK

Identity teams are drowning in complexity with fragmented tools, siloed data, blind spots, and manual processes. This chaos exposes organizations to breaches, ransomware, data theft, compliance failures, and budget overruns. Axiad tames the human and NHI chaos by automating visibility, intelligence, risk remediation, and lifecycle management. The result is a drastic acceleration of operational efficiency.  
—Eliminate thousands of work hours from manual processes,  
—Prioritize resources to make the most impact,   
—Reduce the risk of breach and the financial implications that come with it 

How federal agencies (and contractors) can reduce operational complexity and costs inherent in existing Federal Public Key Infrastructure (PKI) operations by adopting FedRAMP-authorized cloud services.

What You’ll Learn: 

— How PKI-as-a-Service (PKIaaS) can reduce costs, accelerate deployment, and simplify certificate lifecycle management.

— How to get from legacy, fragmented, complicated-to-manage on-prem Certificate Authorities (CAs) to a unified, dedicated, easy-to-manage cloud-based system. 

— Best practices for integrating with Identity, Credential, and Access Management (ICAM) frameworks—ensuring alignment with OMB, FIPS, and NIST standards.

— Real-world use cases on achieving operational efficiency, continuous compliance, and improved security resilience through cloud-native solutions.

If you need to modernize your legacy PKI systems, this session will equip you with actionable tactics to drive operational efficiency and security resilience across your agency.

Federal ICAM 101: Modernize and Simplify PKI with Cloud--Practical Steps to Operational Efficiency and Lower Costs

Federal regulations, such as DAFMAN 17-1304, DoDI 8500.01, OMB M-22-09, and Executive Order 14028, are reshaping how identity, credential, and access management (ICAM) must be implemented across defense and civilian agencies. The directives, anchored in Zero Trust principles, require not only technical compliance but also measurable operational outcomes and commercial-first procurement.

In this webinar, you’ll gain valuable insight on:

• Enabling phishing-resistant authentication across your agency
• Securing interim phishing-resistant credentials for those not eligible for or waiting for PIV cards
• Modernizing ICAM in alignment with DoDI 8520.04, DAFMAN 17-1304, and local innovation efforts such as the Phoenix Spark Initiative
• Reducing friction and delays associated with current CAC issuance

Join Axiad and IDEMIA in a tactical and operational discussion—focused on actionable steps that accelerate compliance, improve efficiency, and strengthen agency cybersecurity posture.

Achieving US Government Mandates with Operational Efficiency

Before access is granted, trust must be established. However, static identity records and manual checks aren’t enough to prevent impersonation, insider fraud, or credential misuse.

Whether you’re modernizing your onboarding workflows, strengthening zero trust initiatives, or preparing for compliance mandates, this webinar will show you how to build trust at the start of every digital identity lifecycle—without slowing down the business.

Key takeaways include:  
•  What modern identity proofing is—and what it’s not  
•  Why identity-first credentialing prevents long-term access risks  
•  Simplifying identity verification for all users (making your users happy!)
• Best practices for meeting phishing-resistant MFA and compliance requirements

Make identity the strongest link in your security chain—starting from day one.

Prove Before You Trust: Secure Identity Verification for the Enterprise

Phishing attacks continue to be one of the most effective methods for credential theft, bypassing traditional multi-factor authentication (MFA) solutions that rely on weak or outdated factors. As organizations move toward phishing-resistant authentication methods, ensuring accessibility and scalability for all users remains a challenge. Adopting a modern ICAM approach enables strong authentication that is both secure and user-friendly.

In this webinar, we explore:
— The latest advances in phishing-resistant MFA, including FIDO and certificate-based authentication
— Why traditional MFA methods are no longer sufficient against modern phishing threats
— Strategies for implementing phishing-resistant authentication at scale

Join us as we discuss how organizations can strengthen authentication across their workforce, partners, and customers—without adding unnecessary complexity or friction.

MFA: Phishing Resistance for Everyone

Financial Institutions must balance stringent security requirements with seamless access for employees, customers, and third-party partners. Traditional IAM solutions often force organizations into rigid authentication models, creating friction for users while limiting scalability. The shift to Identity, Credential, and Access Management (ICAM) offers the flexibility needed to accommodate diverse user populations and evolving security demands.

In this webinar, we explore:

— The limitations of traditional IAM in financial services and the need for greater authentication flexibility
— How ICAM enables scalable, secure access with multiple credential options
— Best practices for implementing optionality in authentication without sacrificing security or compliance

Join us as we discuss how financial institutions can embrace an ICAM strategy that enhances both security and user experience, ensuring seamless and secure access for every identity.

Access For Everyone: IAM Optionality for Financial Institutions

Federal agencies must modernize identity, credential and access management (ICAM) while ensuring compliance with evolving security mandates. Achieving an Authority to Operate (ATO) is just the beginning—true operational efficiency requires scalable, centralized solutions that align with ICAM best practices. As agencies look to modernize, they must ensure their IAM strategies are proven, adaptable, and ready to support thousands of users across multiple environments.

In this webinar, we explore:

— The role of FedRAMP-authorized solutions in streamlining IAM modernization
— How agencies can implement scalable, centralized ICAM frameworks without disrupting operations
— Best practices for ensuring IAM solutions meet both compliance and operational efficiency goals

Join us as we discuss how government agencies can modernize identity management with secure, proven, and scalable solutions that support mission-critical operations.

***Update, as of July 17, 2025, Axiad Conductor is FedRAMP ATO certified***

OE for ICAM: Operational Efficiency that's FedRAMP Proven, & Ready to Scale

Identity is the first line of defense for securing critical infrastructure. However, as organizations scale, managing credentials across multiple deployment models—cloud, on-prem, and hybrid— as well as multiple environments—Windows, Mac, and Linux— have become increasingly complex. Adversaries are exploiting gaps in identity, credential, and access management (ICAM) to target essential systems, making credential security a top priority for security leaders.

In this webinar, we dive deep into real-world use cases of leveraging a flexible solution to ensure operational resilience and regulatory compliance. You will discover:

— How evolving threats are exploiting identity vulnerabilities in critical infrastructure
— Why credential management is essential to eliminating identity-based attack vectors
— How to simply credential management by unifying authentication, automating credential workflows, and enforcing zero-trust principles

Front Line: Identity Security Best Practices for Critical Assets and Infrastructure

Identity is the root of cybersecurity. However, the rapidly increasing number of identities we use has made them the primary target for adversaries and made “identity risk” a Top Three battle for CISOs. In this webinar, we explore: 

— How the Identity Diaspora brings new, escalating risks 
— How a range of tools (IdRM, ITDR, and ISPM) look to address them 
— How cyber teams need a way to Identify these risks, Quantify their impact, and Fortify identities against them  

We also hear how Leidos—a global leader in defense, aviation, IT, and biomedical research—plans to use identity fabric concepts to address these new threats and stay ahead of them.

The Identity Diaspora: Modern Identity Risks and How to Manage Them

To maintain resilience against modern cyber-attacks, modern enterprises need to support a wide range of authentication credentials: from X.509-based certificates to FIDO passkeys, from LDAP to OAuth, and from Kerberos to hardware-hosted tokens. Managing the lifecycles of these disparate credentials, from issuance to revocation or renewal, is no easy task. Some (like FIDO) were designed for individual user authentication, and some (like LDAP) were developed for large-scale IT admin automation. Unifying these different approaches in an advanced but simple credential management system is the path to resilient, enterprise-class authentication.   

Microsoft’s Entra ID is an industry-leading identity and access management solution that provides authentication and authorization services across a broad swath of products uses. Axiad is a leader in credential management for complex government and private sector use cases. In this webinar, these two teams will join forces to show how new Entra ID APIs for centralized passkey creation and management can be leveraged through advanced credential management solutions.

Attendees to this session will learn how Microsoft’s new Entra ID FIDO2 provisioning APIs can be harnessed by the Axiad Cloud credential management solution to deliver FIDO2 passkeys in the ways enterprises need them: in phishing-resistant forms; on behalf of IAM administrators; and in a unified, single-workflow system that works with other credential types.   
 
Key topics include:
• How Entra ID’s new FIDO2 APIs help manage passkeys so they can be pre-provisioned for users and create a simpler experience on first-time usage.  
• How to enable credential-agnostic authentication processes that are simple and scalable.  
• Best practices for integrating these two technologies into existing IT infrastructures.

This webinar is essential for IT security professionals, federal agency representatives, and anyone involved in designing or managing credentialing processes.

Simplifying Credential Management: FIDO2 + Entra ID + Axiad

During this second webinar in our FIDO series, we focus on FIDO Passkeys. We break down the complexity of Passkeys and provide a holistic view of their role in authentication.

FIDO 101 E2: Demystifying Passkeys & Understanding Their Role in Authentication

FIDO is an acronym for “Fast Identity Online,” and the FIDO Alliance is a non-profit group whose mission is to develop authentication standards to help reduce the world’s over-reliance on passwords. With some of the largest companies and governments in the world having voted to standardize FIDO’s protocols, questions are naturally emerging on how (and when) to best leverage them.  

Join us on February 9 for a crash course on FIDO—what it is, how it could benefit you, and how to maximize your investment in it. In this 30-minute webinar, we’ll discuss:

• the history of FIDO and an overview of its key terms
• the fundamentals of authentication and multi-factor authentication (MFA), and their overlap with FIDO 
• top use cases for applying FIDO, and best practices for implementation
• potential misconceptions and downfalls, and when alternatives may be a better path forward

Read more: https://www.axiad.com/blog/guide-to-fido-and-fido-2-passwordless

FIDO 101 E1: Understanding FIDO and What It Can Do for You

The Peel Regional Police (PRP) team is the third largest municipal police service in Canada with 2,100 uniformed members and close to 875 support staff. Composed of five major divisions supported by community police stations, the team is responsible for a broad range of policing duties from airport security and traffic to community-related services and improving community safety and well-being. With such a broad range of environments and systems, the stakes are high when it comes to authentication. 
 
Join the Peel Regional Police and Axiad on December 8th to learn:
- The authentication challenges they face—and how yours might compare
- The tipping point that meant they needed to transition
- Their selection criteria and best practices for finding a new approach
- Why they selected Axiad as their vendor of choice 
- The challenges they foresee for the future

How the Peel Regional Police Found the Right Authentication Solution for Them

The Azure Active Directory CBA feature brings certificate-based, phishing-resistant authentication to the cloud. But how do you manage certificates for this new feature without the headaches of managing PKI? During this webinar, Axiad and Microsoft will show you how easy it can be to bring certificate-backed strong authentication to the cloud by using a completely cloud-native approach, and we’ll discuss how organizations can move from on-prem applications (i.e. AD FS) to Azure AD with help from Axiad Cloud.

Phishing-resistant Authentication in the Cloud with Azure AD and Axiad Cloud

Securing all your users and implementing a Zero Trust strategy isn’t easy. A strong authentication strategy is a critical starting point, and doing so with FIDO2 is a smart step forward. But what are some practices to deliver on enterprise-wide strong authentication? Can FIDO2 fit the bill, or do we need more tools in our authentication toolbox? How are FIDO2 and certificate-based authentication like PIV different?
 
Join Axiad and FIDO on September 22 to learn how your business can provide secure access without passwords. We’ll discuss:

- Why organizations around the globe are increasingly leveraging FIDO2
- How FIDO2 differs from PIV
- Strategic considerations and best practices for FIDO2 implementation
- Actions you can take to secure every person, machine, and digital interaction in your ecosystem

Combining the Old and the New: Best Practices for FIDO2 and PIV for Zero Trust

With 84% of organizations having experienced an identity-related breach in the last year, investments in identity security are at an all-time high. On top of that, many are moving away from legacy approaches to authentication and toward a passwordless future.  

For organizations that have a heterogeneous IT ecosystem and varying internal requirements, the path to passwordless isn’t always clear. Due to this underlying complexity, security executives are often forced to take a fragmented approach to authentication, which can create significant user and administrative friction, high costs, and most importantly—gaps and inconsistencies that can be exploited by bad actors.

Join this 30-minute webinar with Axiad on July 21 to learn more about:
• How you can shift from a fragmented to a holistic approach to authentication
• Best practices for building an integrated authentication solution in your organization
• What to look for in order to remove friction without compromising on security
• How you can take a step-by-step approach to enterprise-wide passwordless orchestration

Holistic Authentication: Closing the Gaps in Your Passwordless Strategy

Over the past year, complex cyberattacks have skyrocketed—and it is no surprise that the U.S. defense industrial base and government contractors are primary targets. In this context, following the DoD Cybersecurity Maturity Model Certification (CMMC) is now more important than ever. Typically seen as phishing and account takeovers targeting digital identities, these attacks result in data exposure, denial of service, erosion of data integrity, and risk to critical assets. 

What if the solution was not to make passwords stronger, but rather to remove them entirely?
 
Join Axiad and Atos on April 14th to learn why passwordless phishing-resistant Multi-factor Authentication is the most secure and practical defense. 

We’ll discuss:  
1) General challenges of implementing CMMC identification and authentication controls
2) Actions to validate your workforce and machine identities in compliance with CMMC
3) What to look for in a phishing-resistant Multi-factor Authentication solution

Securing Government Contractors under CMMC with Phishing-resistant MFA

Cloud Authentication solutions are no longer just a trend, but the norm for organizations looking to modernize their cybersecurity. The essential question is how do you select a cloud platform that you can trust as if it were your own?

Enter: the Virtual Private Cloud (VPC). A model where each organization can benefit from the flexibility and scalability of the cloud, without having to compromise on security or compliance. The VPC serves as an extension of your own infrastructure, which only you can access, removing the concerns inherent to a mutualized cloud platform shared amongst thousands of customers.

Join Axiad on April 1st to learn how a VPC can help you avoid costly data breaches, while still reducing your costs and complying with strict mandates and regulations.

We'll discuss:
1) Benefits of a Virtual Private Cloud vs. a shared infrastructure
2) Why a VPC doesn't have to be time-consuming or costly
3) Questions you should be asking your cloud authentication vendor

Cloud Authentication: Why having your own Virtual Private Cloud matters

With the implementation of increasingly sophisticated cybersecurity technology, hackers have turned to social engineering to steal companies’ valuable data. The last couple of years have seen explosive growth in phishing attacks, many involving impersonation of employees. This makes authentic identities a cornerstone of any corporate cyber security posture. Carmax has implemented an identity and access management solution by partners Axiad and IDEMIA that uses IDEMIA’s PIV-based smart cards as a combined physical and digital access token, with certificate-based authentication (CBA) and identity and access management (IAM) system from Axiad. This talk discusses how this has been implemented by Carmax and how this passwordless, token-based solution can serve as an effective means for protecting sensitive corporate data.

Carmax: Combating Phishing with Integrated Physical and Digital Security

Passkeys

Cyberattack

Zero-trust access

Phishing

Identity Management

Passwordless authentication

Multi-Factor Authentication

Security Strategy

Access Management

Security Convergence

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Get powerful help desk and support insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the help desk and support strategies that effect business value and growth.

Help Desk and Support

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Carmax: Combating Phishing with Integrated Physical and Digital Security

Presented by

About this talk

Axiad