Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest Posts

5 privileged access management best practices to thrive in the hybrid and multi-cloud era

The world is becoming more cloud-native every day. Infrastructure spending is estimated to rise by 19.3 percent in 2024, partly driven by ‘new and existing mission-critical workloads.’ Investment and innovation is going hand-in-hand, as new and established businesses race to modernize architecture and provision applications. At the same time, many are demanding hyperscale and high-performance cloud providers to run AI and machine learning services.

The impact of quantum computing on PAM: Preparing for the future

Quantum computing is poised to revolutionize the world. From simulating atoms and molecules to mapping and modeling in medicine, the potential use cases are vast and still unfolding. It may seem far on the horizon, but for those in cybersecurity, especially privileged access management, now is the time to start planning.

PAM Essentials: A breakthrough in secure access solutions

We're excited to announce new capabilities of One Identity’s Cloud PAM Essentials, launched in March 2024, featuring our innovative Secure Gateway secure tunnel solution. This groundbreaking product offers a VPN-less solution designed to provide secure, seamless access to your critical resources. The journey from initiation to market release took just nine months, a testament to our team's dedication and efficiency.

Continuous Threat Exposure Management (CTEM): A new era in proactive cyber defense

Do we need a new cybersecurity framework? According to Gartner, the answer is yes. Since 2022, they have championed CTEM, a five-stage approach designed to shrink attack surfaces and minimize cyber threat exposure through continuous risk assessment and mitigation. At its core, CTEM advocates for regularly testing your defenses to find vulnerabilities in your system and fortify your organization’s security with risk mitigation strategies.

Mastering modern access control with RBAC and ABAC

Managing access to resources efficiently and securely within today’s complex IT environments is paramount. Two prominent access control models, Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC), play crucial roles in this endeavor. Understanding their relationship and how they can be integrated is essential for optimizing security and operational efficiency.

Unlocking the potential of machine identities: A Glimpse into One Identity's Unified Identity Platform future

Machine identities are growing faster than human identities, with a growth rate of 10 to 45 times higher. This complexity is compounded as more organizations adopt multi-cloud and hybrid strategies, a trend forecasted to continue through 2024. There’s also the rise in endpoints, as more machines become IoT-connected, leading to widening attack surfaces.

Securing non-human identities in hybrid environments

Securing non-human identities is just as critical as managing human ones in today's complex IT landscapes. Non-human identities, such as service accounts, application identities, and IoT devices, play pivotal roles in automation and system integration. Managing these identities in hybrid environments, where on-premises Active Directory (AD) integrates with cloud-based Entra ID (formerly Azure AD), presents unique challenges.

Tackling identity sprawl: The new scourge of IAM

Account creation is no longer as simple as entering a username and password. At least, in the modern enterprise, where a login often means unlocking access to applications, system and networks. IT leaders face the challenge of balancing accessibility with the protection of the valuable data held within. And at a time when the average organization’s employees are using 1,000+ separate apps.

We need to talk about cybersecurity spending

Security budgets naturally compete with other priorities for funding, and finance departments traditionally prioritize immediate financial gains over long-term investments. Cybersecurity, with its focus on prevention, is often seen as an element that’s ‘nice to have’ rather than a necessity. Especially when compared to tangible projects with quicker returns, cybersecurity initiatives can be left chronically underfunded. Where do we spend? And where are the attacks coming from?

The new normal of remote work and the need for Zero Trust

The COVID-19 pandemic triggered a seismic shift in how we work, propelling remote work from a niche option to the mainstream. Organizations scrambled to adapt, often prioritizing business continuity over security. However, as the dust settles, it's clear that this new normal of remote work isn't going anywhere. This presents a significant challenge: how do we secure a workforce that's no longer confined within the traditional office perimeter?