ICAM

Protecting Your Customers’ Identities: A New CIO’s Guide to Understanding CIAM Attack Vectors and Reducing Your Risks

April 25, 2023 Introduction As a cybersecurity professional, I’ve seen firsthand how important it is for businesses to have strong customer identity and access management (CIAM) systems in place. These systems allow companies to provide secure access to their products and services, while also protecting their customers’ sensitive information. However, with the rise of sophisticated […]

Protecting Your Customers’ Identities: A New CIO’s Guide to Understanding CIAM Attack Vectors and Reducing Your Risks Read More »

Transforming Your CIAM Program: A New CIO’s Guide to Building a Product-Led Team

Introduction As a new Chief Information Officer (CIO), you may be tasked with modernizing your organization’s Customer Identity and Access Management (CIAM) program. A key component of this transformation is transitioning towards a product-led approach, which emphasizes customer-centricity, agility, and cross-functional collaboration. In this blog post, we will discuss how a new CIO can engage

Transforming Your CIAM Program: A New CIO’s Guide to Building a Product-Led Team Read More »

What are the various privacy laws around the world

Privacy laws are legal frameworks that regulate the collection, use, and disclosure of personal information by organizations. The purpose of these laws is to protect individuals’ privacy and personal data from misuse, abuse, or unauthorized access. Privacy laws can take various forms, including federal, state, or local laws, as well as industry-specific regulations. Some of

What are the various privacy laws around the world Read More »

For those about to Rock! … introducing the ForgeRock Identity stack introductory bootstrap “sequester special”

I am offering an introductory special to ForgeRock’s Identity (I3) Stack.  I am calling this the “Sequester Special”. The Federales are cutting back budgets and furloughing the Air Traffic controllers (cough … why not the TSA agents at the airport instead) but this is your chance to capitalize on that. So what’s this all about? You get

For those about to Rock! … introducing the ForgeRock Identity stack introductory bootstrap “sequester special” Read More »

SAML IDP with multiple inbound URLs? possible? #SAML #IDM #identity #infosec

I had an interesting use case come up this morning and I am wondering if there are any “federation” products that can handle this use case.  My client would like to configure the IDP to handle different sets of users (let’s call them “internal” and “external”).  To avoid the external users from being redirected to

SAML IDP with multiple inbound URLs? possible? #SAML #IDM #identity #infosec Read More »

Implementing #OpenID with Oracle Identity Federation #Identity #OIF

I have a customer that is an Oracle Identity Management shop. They are looking to leverage OpenID to increase the ease of collaborating with internal and external partners as well as to reduce the cost of managing passwords for non-employees. They are also implementing other strategies to reduce the use of passwords in their environment,

Implementing #OpenID with Oracle Identity Federation #Identity #OIF Read More »

Federal #ICAM “Reading List” #IDM #Identity

I have had a number of conversations over the last few weeks regarding ICAM, which is the U.S. Government’s Identity, Credentialing, and Access Management initiative. Essentially, these are a set of guidelines, frameworks and specifications to assist Federal agencies in implementing Identity and Access Management. I have had my own library that I often refer

Federal #ICAM “Reading List” #IDM #Identity Read More »

Key points from #M-11-11 (#HSPD12 and #ICAM)

I just finished reading through the newly released M-11-11, “Continued Implementation of Homeland Security Presidential Directive (HSPD) 12 – Policy for a  Common Identification Standard for Federal Employees and Contractors“. Disclaimer: The following is my interpretation of M-11-11 … I have no authority or influence over actual requirements.  My opinions, interpretations or recommendations in no

Key points from #M-11-11 (#HSPD12 and #ICAM) Read More »

Scroll to Top