Peer-Driven Insights

Identity & Access Management (IAM)

About this topic

Identity and Access Management (IAM) is a security and business discipline that includes multiple technologies and business processes to help the right people or machines to access the right assets at the right time for the right reasons, while keeping unauthorized access and fraud at bay.

Featured One-Minute Insights

Sept 2024

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?
How are U.S. CISOs Addressing Liability Risk?

Active Ambassadors in This Topic

Rathik Pathak

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

India
View All Community Ambassadors

Community Posts

What is the difference between SSO and SAML?

Read More Comments

What headline-trend or buzzword makes you cringe the most?

Big Data15%

Remote Work19%

Microservices / Containerization13%

CI / CD6%

Zero-Trust15%

Automation2%

Digital Transformation17%

Cloud / Cloud Native2%

DevOps or DevSecOps3%

Other (comment)1%

View Results

Do you penalize employees who fail phishing simulations at your organization?

Read More Comments

How does your organization prepare/handle a CIO departure? Or for any key IT member. What procedures or advice do you have in place proactively? Specifically to manage an abrupt decision.

Read More Comments

Google has announced it will be sending 10,000 users free "Titan" security keys to encourage high risk users to use two-factor authentication. What is your preferred 2FA method?

Password7%

Biometrics (Fingerprint, Face ID)46%

Hardware Tokens21%

SMS Text Message13%

Software Tokens11%

Other (share below)

View Results

Are you prioritizing passwordless access right now? If so, what are the main reasons behind the initiative, and what's the biggest challenge you've faced?

Read More Comments

How has GDPR and CCPA changed your use or procurement cybersecurity tools?

Read More Comments

Give an example of 1 bad and 1 good approach to communicating security risks.

Read More Comments

When we talk about supply chain risk today, are we really talking about third-party risk?

Read More Comments

What are you doing when it comes to preventing users from sending emails that could contain corporate data to their personal email addresses? Do you have controls in place or do you strongly discourage it through company policies? Many organizations have to deal with personal email addresses so blocking outbound emails to @gmail or other major players is out of the question. Thanks.

Read More Comments

What is the most important role of corporate culture in addressing the psychological impact of digital security?

Corporate culture has no influence on digital security.16%

Prioritizing digital security above other aspects in corporate culture.50%

Creating a work environment that supports mental well-being.17%

All of the above.16%

Your own perspective (Comment).1%

View Results

Does your organization conduct regular phishing simulations for internal team members?

Read More Comments

What is the IT organization being asked to enable in the transition back to on-premise work? What is at the top of your agenda?

Read More Comments

Should all users who fail phishing simulations, including C-Suite executives, face penalties?

Read More Comments

Which Zero Trust strategies have you found the most success with?

Read More Comments

What are your strategies for encouraging customer adoption of IT security measures?

Read More Comments