技術長辦公室

Free Provisioning and Governance Connectors from SailPoint

When I hear about something being given away for free, I always ask myself “is this like a free beer or a free cat?” Obviously, free beer has very little downside – taken in moderation of course. A free cat, on the other hand, comes with obligations and hidden ongoing […]

Feet on the Street: Thinking Ahead at Gartner Catalyst

We’ve just wrapped up a great 3 days at the Gartner Catalyst conference in San Diego, and I wanted to put down a few words about an IAM session that I thought was very notable and thought-provoking. On day one of the event, Gartner track lead Ian Glazer hosted a […]

SCIM: The Right Standard at the Right Time

I’m excited to report that the Simple Cloud Identity Management (SCIM) working group has unanimously approved the SCIM 1.0 specification. SailPoint contributed heavily to both the working group process and the development of the spec. With this week’s big move forward, I wanted to share my thoughts on why SCIM […]

Governance in Run-time Access Control World

The Yin and Yang of Governance for XACML I chuckled when I read Ian Glazer’s blog post, “A Chronic Identity Pain.” Ian referred to himself as “an old provisioning guy” – being a few years his senior, it made me think, “Does that make me an old-old provisioning guy?” 🙂 […]

The Value of Taking a Governance-based Approach to Provisioning

In case you missed it, SailPoint recently announced a new provisioning solution based on identity governance. I believe this announcement not only signaled a fundamental change in approach from “old school” provisioning systems, but also sent a much needed life preserver to companies struggling with a provisioning quagmire. I know […]

A Technical View of BPM & Identity Governance

Building on Mark’s post from earlier this week, I want to add that I think the industry needs to get out of the mindset of thinking of “the business of identity” as an IT tools problem. For sure, provisioning has the potential to provide a consistent transactional “bus” for the […]

Goldman Sachs Tries to Catch a Thief

I came to work this morning to read a Bloomberg article, “Goldman May Lose Millions From Ex-Worker’s Code Theft,” about a recent data breach. The details are still coming in, but allegedly a former computer programmer from Goldman Sachs, Sergey Aleynikov, downloaded and stole a copy of proprietary trading software. […]

The World is Flat When Integrating Governance and Compliance

In his recent Network World column, “The Regional, Cultural and National Differences of Identity Management,” Dave Kearns discussed a panel he moderated at last week’s European Identity Conference: On a panel called “Is there a difference between the European way of doing IAM/GRC and the rest of the world?” I […]

Virtualizing an Identity Appliance

These days I spend a lot of time on the road talking to customers, prospects, and business partners. I’m fortunate to spend time with some of the smartest people in the industry and hear about the kinds of projects that are still being funded in troubled times. Of all of […]

Feet on the Street: Thoughts from Gartner’s IAM Summit in London

This week I’m over in London meeting with customers and partners at the Gartner IAM Summit. Gartner analyst Earl Perkins kicked off a packed conference this morning with his keynote address, “Enabling Governance and Risk Management in an Age of Business Challenges.” A couple of points made by Earl rang […]