SailPoint’s Senior Director of Solutions and Product Marketing Jackie Brinkerhoff walks us through how SailPoint Predictive Identity can help enterprises today.
Learn more about SailPoint Predictive Identity.
Natalie Reina: Hello to our viewers at home, I’m Natalie Reina with Identity Talks and today I am with SailPoint’s Senior Director of Solutions and Product Marketing, Jackie Brinkerhoff and today we’re going to discuss all things SailPoint Predictive Identity and how SailPoint Predictive Identity can help you. So Jackie, last year we launched SailPoint Predictive Identity and I want to understand a little bit about what it is and how it can help organizations and enterprises today, reduce risk.
Jackie Brinkerhoff: Yeah so, you bet. So SailPoint Predictive Identity is our latest identity innovation and it infuses AI and machine learning into the entire identity governance process. So if you if you stop and consider what digital transformation has been introducing into organizations it’s really meant that there’s a lot of adoption of cloud platforms and cloud applications but there are so many more user types also, such as employees, contractors’, partners, those are the typical suspects.
But now there’s also software bots that people in organizations have to consider as well as a myriad of places where sensitive data is starting to live in Word documents and PowerPoints, and PDFs and other file types that are honestly prime breach targets. So what we’re able to see is, being able to see who has access to all those resources.
Determining if those users or people should have access and how are they using that access has gone so way beyond the human ability, especially if you’re an organization if you think about it, with like not only just hundreds but some of these large organizations have 10s of thousands, 10s of thousands of users. And so, you know, we really decided that there had to be an easier and better way to take all of that on and that’s where SailPoint Predictive Identity really was born.
And so to answer your question about risk, first of all, our Predictive Identity technology is a big game changer because if you look at it unlike other vendors who may be using AI to provide some interesting analytics and reporting, we’re really capturing every single access activity event that’s happening within the organization. And with that our machine learning then starts learning how the organization’s access behaviors and patterns come about.
And so why this is important is because now organizations can have their identity governance system provide them, or provide you, recommendations regarding if it’s safe to grant access to someone when they’re requesting it. And then, as well as analyzing peer groups and understanding where maybe there are outliers are and outliers regarding like risky user access. Where does that live? And you can’t really do that with human eyes and so being able to identify that and being able to then, you know, send off IT and security teams to go investigate and remediate is super important, especially in this day and age where risk is very prevalent.
So with regards to finding risk I like to think of it as Predictive Identity helps you find those risky needles in the haystack that you didn’t even know you had.
Natalie Reina: That’s great. And so when we’re talking about organizations that are large and small. Can you kind of walk me through how this would help either one of those? I mean, could this apply to a small organization or mid-market?
Jackie Brinkerhoff: Yeah. So what we’re seeing is that large organizations have been using identity for quite some time, they’re probably a bit more savvy when it comes to you know identity. Some of those smaller organizations like your mid-market enterprise, for instance, may be completely new to identity or they may think identity is simply access management and single sign on for instance.But identity is so much more than that.
So our Predictive Identity technology now really starts making identity much easier for those novice type of organizations to stand up. Get something up and running quickly, primarily because it’s delivered from the cloud and being able to configure it is much simpler and when it comes to administration a lot of what I was just talking about with the AI and ML technology makes it so much easier for an IT department to take on.
And with a smaller, like I’m going to call it, mid-sized organization, you know, they may not have an identity team. And so their IT department has to absorb any new technologies that comes in through the front door and you know the IT departments really, you know, needing to be very agile and have very small learning curves, because it’s yet one more thing to manage right?
So by using the AI and ML it’s really helping IT departments really be able to pick this up and start administering it and being successful at their identity program. And then, primarily because as you’re administering it, it helps guide and provide direction so that way they can intuitively understand, you know, again, as I mentioned earlier, is it safe to grant access, you know, who are my risky users?
But in addition to that, when you’re developing an identity program, you have to start with creating roles, for instance, and that can be a very arduous process, one that takes, can take months and interviewing correlating information. But we’re really making that a lot easier and being able to suggest and do an analysis, have the system analyzed and provide recommendations of what should your roles really look like?
So not only is it shaving time off of their, their schedule but again it just makes an entry into an identity governance program so much easier for them. And then when we as I was mentioning with the large organizations, the more savvy ones you know, they’ve been doing, this is not their first rodeo. They’ve been doing identity for quite some time and they may even have an identity team in place.
But what’s really cool for them is that AI and machine learning really is going to accelerating the time it takes to get things going. So for instance, I mentioned access modeling just now and the traditional process. And so what they can do now is get up and running very quickly. They can not only identify their role models that they should be using.
But what’s more important, especially for someone who’s been running identity program, they may understand this is once you get your roles in place and your policy setup, your organization is changing and continuously evolving. So if you have a reorganization, for instance, or you went through a divestiture or merger and acquisition, for instance. Your, your population is changing, but how fast can you act and update your roles and policies to keep up? And if you’re not keeping those policies up to date, then you’re creating, you’re leaving a security gap there for a cyber-attack or a breach to potentially happen.
And so this is where AI and ML that’s going to really come into play for them as being able to stay on top of their roles and keeping the policies up to date so that way they can keep their security programs, nice and tight. And as I was mentioning earlier with risk, you know, one of the bigger things that we hear from our customers, especially at the C-level conversation is what is our risk and what are you doing about it? And that’s kind of the, the million-dollar question right and so there, that is something that you’re, they’re always investigating. Where is my risk? Where could I potentially have issue? And what are we doing about remediating and taking care of it?
And that’s where AI and ML really come into play as I was talking about the needles in the haystack.But it’s also identifying you know when we’re, when you’re looking for risk, it’s, you know, how, how much risk do we have and then being able to report back up that something has been done to remediate it.Whether it’s, running a certification on their access and that can be quickly done again using the AI,ML technology and you don’t have to run the certification on the whole population. If you find one, two people that happened to have some risky type of attributes, you can just simply deploy a certification just on those particular folks.
And then finally, you know what we’re seeing is a lot of digital transformation, as I mentioned, moving to the cloud, adopting cloud platforms like AWS,Azure and Google Cloud Platform. You know, a lot of workloads are being put into the cloud, but the, the thing that we’re finding is that there’s, there’s a blind spot happening there. DevOps is quickly creating apps and services for customers, and rightly so, but IT security may not have necessarily the visibility, they need and so that’s where AI and ML comes into play. So that way now IT and security can start identifying you know who has access out of you know, to those cloud platforms to the critical systems out there and bringing those back under into under governance, if you will.
So, bottom line for these organizations to savvy as well as the mid-market is that they’ll get more visibility and they’ll be able to get more done. Which means that they’ll also be able to protect their environment, much better with less human effort.
Natalie Reina: That’s very informative. Thank you so much for your time todayJackie, this is really going to help a lot of people out. So be on the lookout for more informative videos from Jackie and from Identity Talks. This is Identity Talks, and we’ll see you next time. Thank you.
Find out how SailPoint can help your organization.