'Strong authentication really comes down to the assurance level you can achieve when you are trying to identity proof and, subsequently, authenticate an individual' Tim Li, Deloitte Click To Tweet
Tim Li, Principal at Deloitte and Cyber Government and Public Services Industry Leader is in the studio today. In this wide ranging interview, he talks about everything from identity management to issues in automation.
One entertaining segment he talks about what happens when “bots” don’t work properly: Bots Gone Bad.
He uses his two decades of experience in federal IT to put identity management in perspective. The conversation began with Tim’s take on privilege misuse and compromised credentials. He contrasted concepts like identity management in point solutions with ecosystems.
When it comes to cybersecurity, some report “insider threats account for 43% of all data breaches.” Tim agreed, then expanded on his rationale
It is obvious that today’s federal identity management is fragmented and decentralized. The question remains, how to incorporate best practices for identity management. Tim addresses the concepts of Zero Trust and micro-segmentation of networks.
When it comes to the DoD, there is an initiative called Cybersecurity Maturity Model for Cybersecurity that addresses identity management issues. Katie Arrington, CISO for Assistant Secretary for Defense Acquisition, was quoted as saying that the CMMC is a new way of thinking about cybersecurity.
Tim agrees with the fact that a single point solution or a “checkbox” kind of solution will not allow federal IT professionals to scale with today’s large data stores and a wide range of cloud options.