“Identity is the new attack surface. It is the new control plane.”

“Identity is a thread that connects all of our distributed applications, our distributed infrastructure, our distributed customer experiences and employee experiences.”

“Everything is connected by identity. IAM cannot be considered a silo.”

“By 2023, organizations that have increased gender diversity of their security teams by 10% will have 23% fewer losses from security events.”

There are three trends in IAM:

• Cybersecurity mesh architecture is a new approach to decentralize enforcement of centralized decision making.

• Rise of a new type of managed security service provider (MSSP) that is building their own orchestration up, building their own analytics system, and they are integrating with the best of breed technologies.

• Higher risk, remote interactions. Identity trust must be elevated.

“More than ever, talk to the business, make sure you align with the business - more than ever that needs to happen. Sit down with your CIO and ask them what is our application strategy for the next two to five years, what are the experiences we want to enable?”

“Every cybersecurity incident is a Rubik's Cube. There are many ways to solve it, but different perspectives are required to see those differing approaches.”

“Neurodivergent individuals are well suited to cybersecurity activities, but are being “filtered-out” by traditional HR processes and competency models.”

There are eight practical steps for CISOs and IT leaders to follow to attract and include neurodivergent employees in the workplace:

• Build the business case

• Scope the program

• Create the recruitment process

• Elevate awareness and understanding

• Create dynamic support ecosystem

• Communicate do’s and don’ts

• Design an inclusive workplace environment

• Overcome inclusion challenges

“Not investing in neurodivergent talent is not a myth. It is a malpractice.”

“We are standing at the nexus of data security and privacy. They intersect, both forces move closer to each other and produce an intersection that you should use for your business.” 

“A common focus of data security and privacy is preventing unauthorized data access.”

“Securing your data against unauthorized access at the same time enables sharing data. Securing data does not mean locking data away.”

“Focus on the nexus of data security and privacy to gain competitive advantage, reduce breaches and support data sharing.”

“Tune your data security governance and data security controls for data sharing economies.”

“Decommission siloed legacy controls that lock away your data.”