web analytics

SHARED INTEL Q&A: When every IoT Device and AI assistant has an identity — who’s in control? – Source: www.lastwatchdog.com

shared-intel-q&a:-when-every-iot-device-and-ai-assistant-has-an-identity-—-who’s-in-control?-–-source:-wwwlastwatchdog.com
Rate this post

Source: www.lastwatchdog.com – Author: bacohido

As enterprise adoption of generative AI accelerates, security teams face a new identity dilemma — not just more users and devices, but a growing swarm of non-human agents and autonomous systems requesting access to sensitive assets.

Related: Top 10 Microsoft Copilot risks

At the same time, traditional identity and access management (IAM) tools are buckling under the pressure of cloud sprawl, decentralized architectures, and constant change.

The result? An urgent need for a smarter approach — one that helps teams see, understand, and act on who has access to what, across human, non-human, and AI identities, in real time.

For this Q&A, we engaged Jim Alkove, co-founder and CEO of Oleria and former Chief Trust Officer at Salesforce. Alkove breaks down why identity is the new battleground — and how a usage-aware, unified identity platform can help CISOs regain visibility and control.

LW: GenAI tools like Copilot are transforming workflows — but also introducing new access-related risks. Where are the blind spots showing up most?

Alcove: AI co-pilots like Microsoft Copilot are surfacing a critical gap: excessive access permissions and sprawling data exposure. In the past, employees couldn’t easily find everything they had access to, so some risk stayed hidden. Now, GenAI makes that access visible — and dangerous.

These tools honor existing permissions, which gives organizations a false sense of security. The problem isn’t that AI breaks the rules — it’s that the rules were too loose to begin with.

It’s a real blocker. A recent Gartner survey found that 40% of IT managers have paused GenAI deployments over security concerns. The root of it all? Excessive, invisible access. Getting to least privilege — and keeping it — is the only way to move forward.

LW: What’s the core identity problem Oleria is solving — and why now?

Alcove: Identity really has become the biggest security challenge we face today. The numbers are staggering — more than 80% of breaches now stem from identity issues. And it’s not just human users anymore. In many enterprises, non-human identities — things like service accounts, automation scripts, and AI agents — outnumber people by 80 to 1.

The problem is that most legacy tools just weren’t built to handle this. They still rely on static snapshots and manual reviews, which simply can’t keep up with the pace or complexity of modern environments.

That’s why we built Oleria from the ground up with a completely different approach. At its core, our platform gives security teams real-time clarity and control, without slowing innovation. It’s designed to help you see exactly who — or what — has access to what, how that access is being used, and whether it poses a risk.

We unify identity data from everywhere — cloud platforms, HR systems, SaaS apps, even homegrown tools — and map it into a single, dynamic access graph. That gives you a live picture of your entire identity landscape.

From there, we continuously monitor usage patterns to spot issues that traditional tools often miss — like dormant accounts, creeping privileges, or weak MFA setups.

And finally, we help teams take meaningful action. You can automate clean-up tasks, enforce least privilege as things change, or just ask Oleria Copilot something as specific as, “Who hasn’t used their admin rights in the last 30 days?” and get an answer you can act on immediately.

LW: You talk about unifying posture, governance, and detection. What does that enable that siloed tools miss?

Alcove: Traditional IAM tools grant access — but they rarely help you govern it over time. You get fragmented snapshots that miss key risks.

By combining governance, posture, and detection into one system, Oleria gives security teams a complete, real-time picture. We connect all identity data into one graph and layer usage intelligence on top.

That integration lets teams spot dormant access, risky permissions, and misconfigurations as they happen — and act immediately.

LW: Security teams are often overwhelmed by identity alerts. How are you helping customers cut through the noise?

Alcove: Security teams don’t need more alerts. They need answers.

Oleria provides real-time context. We monitor behavior across identity types and flag anomalies — things like unused privileges, privilege creep, and policy violations.

With Oleria Copilot, you can just ask: “Which service accounts haven’t been used in 30 days?” and get a precise, actionable answer.

It’s all about helping teams focus — and move — faster.

LW: Non-human and AI identities are exploding. What needs to evolve to secure them?

Alcove: Non-human identities — service accounts, scripts, AI agents — outnumber humans 80 to 1 in many orgs. And most of them are invisible, over-permissioned, and unmanaged.

These identities often have no owner. They operate in the background, with too much access and too little oversight.

As AI speeds up the creation of machine identities, this problem will only grow. Organizations need NHI-specific governance: ownership, usage tracking, and lifecycle controls.

That’s what we help enable — continuous discovery, monitoring, and remediation. Because securing these identities isn’t optional. It’s how you prepare for a future where machines operate at scale.

LW: Compliance mandates around AI and data access are growing fast. How can companies stay ahead?

Alcove: Compliance can’t be a checkbox exercise anymore. Companies need audit-ready visibility — and the ability to prove least privilege at any moment.

Oleria helps do that by eliminating manual reviews and showing access in real time. You get instant answers to tough questions: “Who can see this dataset?” “Which AI agents accessed it last week?”

That kind of transparency is what regulators — and your board — will expect going forward.

LW: What does the future of identity look like — and how should CISOs prepare?

Alcove: The future is adaptive, continuous, and AI-powered. Static snapshots aren’t enough.

CISOs need platforms that offer real-time intelligence and can respond at machine speed. That means usage-based visibility, continuous enforcement, and smart automation.

We’re building Oleria to be that platform — so teams can move faster than the threats.

Acohido

Pulitzer Prize-winning business journalist Byron V. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be.

(LW provides consulting services to the vendors we cover.)

The post SHARED INTEL Q&A: When every IoT Device and AI assistant has an identity — who’s in control? first appeared on The Last Watchdog.

Original Post URL: https://www.lastwatchdog.com/shared-intel-qa-when-every-iot-device-and-ai-assistant-has-an-identity-whos-in-control/

Category & Tags: Q & A,Top Stories – Q & A,Top Stories

Views: 2

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

CISO2CISO Notepad Series
How Can We Structure Cybersecurity Teams To Better Integrate Security In Agile At Scale?
How Can We Structure Cybersecurity...
OCCUPYTHEWEB
Linux Basics for Hackers by Occupytheweb
Linux Basics for Hackers by...
NIST
Digital Forensics and Incident Response (DFIR) Framework for Operational Technology (OT) by NIST – Eran Salfati and Michael Pease
Digital Forensics and Incident Response...
Think Big Blog
Top 10 TED Talks to Learn about Cyber Security
Top 10 TED Talks to...
NCSC
NCSC Cyber Security for Small Business “SMEs” Guide.
NCSC Cyber Security for Small...
Practical DevSecOps
API Security Fundamentals – Your Handy Guide to Building an Unhackable System by practical-devsecops.com
API Security Fundamentals – Your...
Marcos Jaimovich
Nuevo Firewall para IA , un Cacharro nuevo para nuestro SOC y los equipos de Ciberseguridad !
Nuevo Firewall para IA ,...
Vendict
The 2024 CISO Burnout Report by Vendict
The 2024 CISO Burnout Report...
Mohammad Alkhudari
Cybersecurity Strong Strategy step by step Guide collected by Mohammad Alkhudari 2024
Cybersecurity Strong Strategy step by...
Marcos Jaimovich
The Silent Spectre Haunting Your Network: QPhishing, the CISO’s Unspoken Nightmare.
The Silent Spectre Haunting Your...
Marcos Jaimovich
Goodbye to Traditional: Why Conventional Cybersecurity Tools are No Longer Sufficient for the Future of Digital Threats ?
Goodbye to Traditional: Why Conventional...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...

LASTEST PUBLISHED POSTS

Cyberint
Retail Threat Landscape Report Q1-Q3 – November 2024 Summary by Cyberint a Check Point Company
Retail Threat Landscape Report Q1-Q3...
NCSC
Protecting Critical Supply Chains – A Guide to Securing your Supply Chain Ecosystem
Protecting Critical Supply Chains –...
Culture AI
Time to Adapt – The State of Human Risk Management in 2024 by Culture AI.
Time to Adapt – The...
National Cyber Security Centre
Engaging with Boards to improve the management of cyber security risk.
Engaging with Boards to improve...
Microsoft Security
2024 State of Multicloud Security Report by Microsoft Security
2024 State of Multicloud Security...
bugcrowd
Inside the Mind of a CISO 2024 The Evolving Roles of Security Leaders 2024 by bugcrowd
Inside the Mind of a...
Mohammad Alkhudari
Cybersecurity Strong Strategy step by step Guide collected by Mohammad Alkhudari 2024
Cybersecurity Strong Strategy step by...
Lacework
CISO’s Playbookto Cloud Security by Lacework
CISO’s Playbookto Cloud Security by...
MITRE - Carson Zimmerman
Ten Strategies of a World-Class Cybersecurity Operations Center by MITRE
Ten Strategies of a World-Class...
SILVERFRONT - AIG
Identity Has Become the Prime Target of Threat Actors by Silverfort AIG.
Identity Has Become the Prime...
CYZEA.IO
Enterprise Information Security
Enterprise Information Security
IGNITE Technologies
ENCRYPTED REVERSE
ENCRYPTED REVERSE

More Latest Published Posts

WORLD BANK GROUP
Global Cybersecurity Capacity Program
Global Cybersecurity Capacity Program
Gary Hinson
Getting started withsecurity metrics
Getting started withsecurity metrics
EDPS
Generative AI and the EUDPR.
Generative AI and the EUDPR.
Bright
2024 Guide to Application Security Testing Tools
2024 Guide to Application Security Testing Tools
HADESS
Hacker Culture
Hacker Culture
Quuensland Govermment
RISK ASSESSMENT PROCESS HANDBOOK
RISK ASSESSMENT PROCESS HANDBOOK
Ministry of MOS Security
HIPAA SIMPLIFIED
HIPAA SIMPLIFIED
Hacker Combat
How Are Passwords Cracked?
How Are Passwords Cracked?
CIS - Center for Internet Security
How to Plan a Cybersecurity Roadmap in Four Steps
How to Plan a Cybersecurity Roadmap in Four Steps
ACSC Australia
Information Security Manual
Information Security Manual
Kaspersky
Incident Response Playbook: Dark Web Breaches
Incident Response Playbook: Dark Web Breaches
ninjaOne
Endpoint Hardening Checklist
Endpoint Hardening Checklist
HADESS
Important Active Directory Attribute
Important Active Directory Attribute
ISA GLOBAL CYBERSECURITY ALLIANCE
IIoT System Implementation and Certification Based on ISA/IEC 62443 Standards
IIoT System Implementation and Certification Based on ISA/IEC 62443 Standards
Rajneesh Gupta
IAM Security CHECKLIST
IAM Security CHECKLIST
sqrrl
Hunt Evil
Hunt Evil
Searchinform
How to protect personal data and comply with regulations
How to protect personal data and comply with regulations
Giuseppe Manco
Threat Intelligence Platforms
Threat Intelligence Platforms
CSA Cloud Security Alliance
Hardware Security Module(HSM) as a Service
Hardware Security Module(HSM) as a Service
IGNITE Technologies
CREDENTIAL DUMPING FAKE SERVICES
CREDENTIAL DUMPING FAKE SERVICES
IGNITE Technologies
A Detailed Guide on Covenant
A Detailed Guide on Covenant
NIST
Computer Security Incident Handling Guide
Computer Security Incident Handling Guide
IGNITE Technologies
DIGITAL FORENSIC FTK IMAGER
DIGITAL FORENSIC FTK IMAGER
Accedere
Cloud Security Assessment
Cloud Security Assessment
YL VENTURES
CISO Reporting Landscape 2024
CISO Reporting Landscape 2024
CISO Edition
Reporting Cyber Risk to Boards
Reporting Cyber Risk to Boards
CIOB
CIOB Artificial Intelligence (AI) Playbook 2024
CIOB Artificial Intelligence (AI) Playbook 2024
INCIBE & SPAIN GOVERNMENT
Nuevas normativas de 2024 de ciberseguridad para vehículos
Nuevas normativas de 2024 de ciberseguridad para vehículos