Industry Insight

What Are ICAM and FICAM?

For organisations and government agencies alike, strong identity management is paramount. Millions of people share sensitive, personal information with commercial and public bodies every day, so companies and public sector agencies have a responsibility to secure their assets. This is where ICAM and FICAM come in. What is ICAM? Identity,…

Adapt to the Cloud Operating Model Part 3: Taking the DevSecOps Journey

This is the third and final blog post in our Adapt to the Cloud Operating Model series. With any organisational change that impacts people, process, and technology, it’s best to take it in stride. When talking with customers about their Zero Trust security initiatives, an analogy I often use is: “if Google’s BeyondCorp is the peak of Mt. Everest,…

What Is SMS Authentication and Is It Secure?

SMS authentication—also known as SMS-based two-factor authentication (2FA) and SMS one-time password (OTP)—allows users to verify their identities with a code that is sent to them via text message. A form of two-factor authentication, it often acts as a second verifier for users to gain access to a network, system, or application, and is a good…

Today’s Mobile Security Threats: What Are They and How Can You Prevent Them?

Viruses, spyware, and other malware can affect more than just desktop computers and laptops. Mobile devices are vulnerable as well. As the threat landscape continues to evolve, it’s important that we not only understand these risks—but how we can protect ourselves against them. In this post, we’ll take a closer look at the mobile phone security…

What Is Identity Governance and Administration?

Identity governance and administration (IGA) is a policy-based approach to identity management and access control. As the name implies, IGA systems merge identity governance and identity administration to provide additional functionality beyond traditional identity and access management (IAM) tools. Particularly, they offer valuable support in…

What Is an API?

API is an acronym that stands for “application programming interface,” and it allows apps to send information between each other. While there are numerous protocols and technologies involved, the underlying purpose of APIs is always the same: to let one piece of software communicate with another. APIs (sometimes described as web services) work in…

Adapt to the Cloud Operating Model Part 2: The Critical Role of Identity

This is the second blog post in our Adapt to the Cloud Operating Model series. Identity is at the heart of any organisation; it forms the foundation for a productive and secure workforce, and it enables digital teams to build lasting and scalable customer experiences. In the cloud, identity isn’t just about people—it covers the full spectrum of…

What Is Attribute-Based Access Control (ABAC)?

Attribute-based access control (ABAC) is an authorisation model that evaluates attributes (or characteristics), rather than roles, to determine access. The purpose of ABAC is to protect objects such as data, network devices, and IT resources from unauthorised users and actions—those that don’t have “approved” characteristics as defined by an…

Magic Links: Passwordless Login for Your Users

Magic links are a form of passwordless login. Instead of the user entering any login credentials to sign in, they are sent a URL with an embedded token via email, and sometimes via SMS. Once the user clicks that link to authenticate, they are redirected back to the application or system having successfully signed in—as if they used a “magic”…

What Is Best-of-Breed Technology?

“Best-of-breed technology” refers to the leading applications, systems, or software in a niche or category. When organisations take a best-of-breed (or “best-in-breed technology”) approach to building their technology stack, it involves selecting various tools that serve specific purposes. Put another way, instead of purchasing a product suite…

Industry Insight

Tags

Archive