Identity security is built on clear principles, but practitioners often conflate concepts like just-in-time access, least privilege, and zero standing privilege. In this conversation, Alex Leemon and Lori Robinson establish precise definitions and discuss the layered approach required for modern identity programs. They explain the differences between admin time authorization, runtime authorization, and continuous session monitoring, illustrating why context and policy are essential for effective least privilege and zero standing privilege enforcement.
Lori outlines the operational challenges organizations face, from policy administration to runtime access decisions. The discussion covers strategies for applying zero standing privilege, such as time-bound provisioning and dynamic, context-based approval, as well as the obstacles—such as legacy system requirements, entitlement mapping, and evolving audit and certification models. The session concludes with a look at how to apply unified identity controls across humans, machines, and agents, emphasizing the need for tailored approaches while maintaining consistency and rigor.
Learn practical steps for operationalizing zero standing privilege, how to adapt controls for new identity types like AI agents, and how SailPoint’s platform supports a unified, extensible framework that meets regulatory and audit expectations.
