Cyber Security Weekly Podcast

Cyber Security Weekly Podcast


Episode 183 - Identity Attack Vectors: Implementing an Effective Identity and Access Management Solution – Interview with author Morey Haber, CISO & CTO, BeyondTrust

January 05, 2020

We interview Morey Haber, Chief Information Security Officer (CISO) and Chief Technology Officer (CTO) of BeyondTrust on the publication of his latest book, ‘Identity Attack Vectors: Implementing an Effective Identity and Access Management Solution’, co-authored with Darren Rolls, CISO & CTO, SailPoint


This latest book is the third in a series with Apress books, with the previous two being Privileged Attack Vectors and Asset Attack Vectors.


10 E-Books are available to Listeners! Listen in for details.


As a solution, Identity Access Management (IAM) has emerged as the cornerstone of enterprise security.  Managing accounts, credentials, roles, certification, and attestation reporting for all resources is now a security and compliance mandate. When identity theft and poor identity management is leveraged as an attack vector, risk and vulnerabilities increase exponentially.


As cyber attacks continue to increase in volume and sophistication, it is not a matter of if, but when, an organisation will have an incident. Threat actors target accounts, users, and their associated identities, to conduct their malicious activities through privileged attacks and asset vulnerabilities.


Poor identity and privilege management can be leveraged to compromise accounts and credentials within an organisation. The book covers how role-based identity assignments, entitlements, and auditing strategies can be implemented to mitigate the threats leveraging accounts and identities and how to manage compliance for regulatory initiatives.


Identity Attack Vectors details the risks associated with poor identity management practices, the techniques that threat actors and insiders leverage, and the operational best practices that organisations should adopt to protect against identity theft and account compromises, and to develop an effective identity governance program.


Key Topics covered in the book:



  • The concepts behind an identity and how their associated credentials and accounts can be leveraged as an attack vector

  • How to implement an effective Identity Access Management (IAM) program to manage identities and roles, and provide certification for regulatory compliance

  • Where identity management controls play a part of the cyber kill chain and how privileges should be managed as a potential weak link

  • How to build upon industry standards to integrate key identity management technologies into a corporate ecosystem

  • How to plan for a successful deployment, implementation scope, measurable risk reduction, auditing and discovery, regulatory reporting, and oversight based on real-world strategies to prevent identity attack vector.


Morey has more than 20 years of IT industry experience and joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. He currently oversees BeyondTrust technology management solutions for vulnerability, and privileged and remote access. In 2004, he joined eEye as Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.


Recorded 25 November 2019.


FURTHER LISTENING


Episode 176 - Privileged Access Management (PAM) and analysis of the BeyondTrust Microsoft Vulnerabilities Report 2019 https://blubrry.com/mysecurity/51406933/episode-176-privileged-access-management-pam-and-analysis-of-the-beyondtrust-microsoft-vulnerabilities-report-2019/


Episode 172 - Privileged Access Management (PAM) with BeyondTrust CISO & CTO, Morey Haber https://blubrry.com/mysecurity/48710291/episode-172-privileged-access-management-pam-with-beyondtrust-ciso-cto-morey-haber/


Episode 148 - Privileged Access Management, SingHealth Breach & Beyond Trust solution addressing ASD Top4 - Essential 8 https://blubrry.com/mysecurity/43342483/episode-148-privileged-access-management-singhealth-breach-beyond-trust-solution-addressing-asd-top4-essential-8/