At Identity Automation, we bet big on user experience from day one. We started with the premise of UI designs for new self-service and delegation tools. During our early days, I had worked with numerous vendor products, all of which I felt were overly complicated and more constrained than they needed to be. Since then we have continued to innovate. 

Built with the future of user experience in mind, today we released RapidIdentity 3.3, which includes some exciting new feature additions to RapidIdentity. 

At the end of April we published a couple pieces of content focused on rogue employees, a security threat facing nearly every company in the world. Rogue employees are those fully vetted users inside your company who probably have no malicious intent to cause harm, but end up doing so regardless, for a variety of reasons ranging from laziness to oversights to hoarding access.

A few weeks ago, James Litton and I touched down in Munich to speak at Kuppingercole's European Identity & Cloud Conference 2015, where we also had the pleasure of speaking with innovation leaders shaping the future of IT. I wanted to share some of my thoughts and observations from the event:

Our team is gearing up for Interop 2015 in Las Vegas next week and we’re excited to be part of a great event! What we’re looking forward to the most is helping you find new ways to address your current IT headaches and plan for the future. 

Internal security vulnerabilities are the most likely ‘attacks’ a business faces. Many of the biggest attacks actually originate from inside your enterprise and come from fully authenticated users - your employees. Some of these intrusions stem from employees bypassing security standards, while others are caused by employees who may not know the security standards. But the threat we’re seeing more and more is the employee we refer to as the access hoarder.

Last week, Steven Norton published a blog post to The Wall Street Journal’s CIO Journal about increases in ‘next-gen’ security spending. It was a good post highlighting something that I think most people are aware of - enterprise security threats are very real and more and more enterprises are putting technologies and processes in place to prevent them.

In every identity project the topic of user account naming conventions comes up. We have seen just about every convention possible. More often than not, environments have more than one convention because over time they changed the convention but grandfathered in the existing accounts. Inevitably I’m asked, “What is the best user account naming convention for us to use?”

When we meet with a customer, we first like to build a common ground with regards to nomenclature. In the identity management field this is especially true because terms are used differently by different people/organizations. We find this to be especially true with discussions around the topic of SSO (Single Sign-On).

Today I read an article in NetworkWorld entitled “BYOD early adopters cite sticker shock”. I have discussed BYOD with many of our customers and, personally, I can’t buy into it. To explain, here is my take on BYOD, the good, the bad and the ugly.