Listen to this episode from Identity at the Center on Spotify. In this thought-provoking episode of Identity at the Center, hosts Jim McDonald and Jeff Steadman engage in a candid conversation with security researcher Kat Traxler from TrustOnCloud. They delve into the intricacies of cloud identity management, discussing the unique challenges and strategies for securing assets in cloud environments like GCP and AWS. Kat sheds light on the importance of understanding the resource hierarchy in GCP and the nuances that differentiate it from AWS. The trio also explores the evolution of IAM tools and their applicability in the cloud, the debate between least privilege and zero standing privilege, and the ongoing journey toward securing the cloud beyond IAM. As they unpack the complexities of cloud security, Kat shares her insights on the significance of asset inventories and the impact of policy inheritance on cloud platforms. The conversation also touches on the future of cloud security conferences and the value of hands-on experiences in understanding cloud security. Amidst the technical deep dive, the episode takes a lighter turn as the hosts and guest contemplate what life might look like outside the realm of technology, revealing personal aspirations ranging from farming to bronze sculpting. For those looking to expand their cloud security knowledge, Kat recommends checking out the GCP 101 series on her blog and the Forward Cloud SEC conference for a comprehensive learning experience. Connect with Kat: https://www.linkedin.com/in/kat-traxler-85a6592/ GCP 101 Series (Blog): https://kattraxler.cloud/gcp/iam/101/2024/03/03/gcp-series-101.html Google Cloud Adoption Framework: https://cloud.google.com/adoption-framework Learn more about TrustOnCloud: https://trustoncloud.com/ fwd:cloudsec conference: https://fwdcloudsec.org/ Identiverse 2024: As an IDAC listener, you can register with 25% off by using code IDV24-IDAC25 at https://events.identiverse.com/identiverse2024/register?code=IDV24-IDAC25 Attending the European Identity and Cloud Conference in Berlin? Use Discount Code: EIC24idac25 for 25% off. Register at https://www.kuppingercole.com/events/eic2024 Attending Identity Week in Europe, America, or Asia? Use our discount code IDAC30 for 30% off your registration fee! Learn more at: Europe: https://www.terrapinn.com/exhibition/identity-week/ America: https://www.terrapinn.com/exhibition/identity-week-america Asia: https://www.terrapinn.com/exhibition/identity-week-asia/ Connect with us on LinkedIn: Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/ Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/ Visit the show on the web at idacpodcast.com and follow @IDACPodcast on Twitter.

Listen to this episode from CISO Series Podcast on Spotify. All links and images for this episode can be found on CISO Series. This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is my guest, Thom Langford, CISO, Velonetic. In this episode: Why do lots of businesses pledge to never pay ransomware demands? And why do their priorities quickly change when they need to get the business back to normal after an attack occurs? What good is a pledge like that without the infrastructure and organizational commitment to make it possible? Thanks to our podcast sponsor, CyberMaxx CyberMaxx offers MaxxMDR, our next-generation managed detection and response (MDR) solution that helps customers assess, monitor, and manage their cyber risks. MaxxMDR fuels defensive capabilities with insights from offensive security, DFIR, and threat hunting, on top of a technology-agnostic deployment model. We think like an adversary but defend like a guardian.

Listen to this episode from The Didi & Lital Show on Spotify. Didi and Lital discuss the stressful process of moving homes, the desire for chaos and change in life, and their personal home renovation project focusing on the importance of recessed outlets. They touch on their differing opinions on change and how managing a home project can cause 'hysteria mode'. The conversation shifts to the professional realm, discussing unified management systems within corporate and tech environments. They explore the challenges and necessities of unifying management for better efficiency, including the importance of single sign-on (SSO), persona-centric approaches, and the pitfalls of aiming for a 'single pane of glass' in product management. The discussion includes practical advice for startups on integrating into existing ecosystems and emphasizes the need for understanding user journeys and the importance of standards and APIs for easier integration. The episode wraps up with advice on developing unified platforms, considering real-life disunity among various professional roles.Topics:00:27 The Stress of Moving and Embracing Change01:31 Home Improvement Woes: The Quest for Recessed Outlets03:51 Unified Management Systems: From Home Chaos to Business Solutions07:14 The Evolution of Unified Management in Business10:09 Understanding Customer Needs: The Key to Successful Product Management15:41 The Evolution of User Interfaces and Consistency in Tech16:33 The Importance of a Unified User Experience16:50 Streamlining Security Operations with Unified Platforms17:38 Challenges of Tool Consolidation and Training18:19 The Basics of Effective Tool Use and Integration25:08 Leveraging Standards and APIs for Startup Success27:24 Strategic Integration and Management for Startups31:24 Understanding Your User and Building for the Future36:04 Closing Thoughts on Unified Platforms and User-Centric Design