RBAC and ABAC cannot contain privilege sprawl, and in fact contribute to it. Dynamic authorization based on signals and data from across an enterprise can bring us closer to a "least privilege" access model.

In October of 2021 I drove to Google’s Irvine office to turn in my employee badge and laptop. It was four years after Google acquired my last company and a new adventure beckoned. It would seem unnatural for anyone to walk away from such a great job working …

While the “Identity” part of Identity and Access Management is looking better than it used to, the “Access Management” part is still very much a wild-west landscape. Identity has benefited from robust multi-factor authentication, anomaly detection and password …