Episode 147 - GluuFederation/identerati-office-hours GitHub Wiki
Title: Dynamic Security Orchestration
- Host: Mike Schwartz, Founder/CEO Gluu
- Guest: Darran Rolls, Identerati of no rank
Channels
Description
What is Dynamic security orchestration? How can enterprises weave contextual identity signals into access decisions. In this session, we’ll explore how continuous, contextual identity and just-in-time controls can unlock safer, more adaptive governance without ripping and replacing what you already have. We'll discuss how a new identity component--the "Identity Event Hub"--can receive identity relevant events, end sessions, notify teams and initiate identity operations to provision/deprovision access.
Homework
-
Sailpoint Navigate 2025 Linkedin Post
-
Zero Standing Privilege: Marginal Improvement on the Wrong Enterprise Security Paradigm
Takeaways
-
⚡ Sailpoint Navigate 2025 had strong attendance. If 2023 and 2024 were not quite as exuberant, IMHO that's consistent across many software vendors of identity infrastructure industry. Perhaps more customers showing up means there are more challenges unsolved.
-
⚡ SGNL's use of a graph to model the world, and hook workflows based on changes to the graph is a really interesting idea. It provides a mechanism to map events to workflows.
-
⚡ Invoking an identity workflow through Sailpoint is just one of many possible outcomes to an event. For example, the Event Hub could also revoke tokens, forcing re-authentication or logout.
-
⚡ The SGNL event hub looks interesting, and I like the strategy to do token exchange with the transaction token grant. But they don't present any vision about how they will govern the policies in their embryonic PDP. And ironically neither does Sailpoint. So this partnership presents another one-off silo of policy, which is just what Ian Glazer said is bad in his Navigate session. How will the policies in the event hub integrate with all the other policies in the rest of the enterprise? crickets chirping...