The State of Identity Security with Morey Haber
Morey Haber在2025年RSAC会议上探讨了身份安全现状及企业环境中的漏洞。他强调理解“真实特权”至关重要,攻击者常通过潜伏和横向移动提升权限。AI在检测异常行为方面虽有帮助,但也被用于加速攻击。Haber指出行业正进入调整期,基础安全措施如PAM、SIEM将重新成为焦点。他呼吁企业从合规转向真正的运营韧性。
2025-6-9 18:35:13
Author: securityboulevard.com(查看原文)
阅读量:15
收藏
At RSAC Conference 2025, BeyondTrust’s Chief Security Advisor Morey Haber offered a forward-looking take on the state of identity security and the real-world gaps that still exist in enterprise environments. With over two decades in the field and a perspective shaped by both hands-on roles and high-level advisory work, Haber emphasized what too many organizations overlook: the path to privilege is often shorter—and more invisible—than they realize.
One key takeaway is the growing importance of understanding “true privilege.” It’s not just about who has admin access on paper, but the latent, often unseen ways attackers can pivot between accounts to escalate privileges. That kind of lateral movement is still flying under the radar in many environments.
Haber also underscored a theme that’s come up again and again this year: AI is both an asset and a liability. On one hand, it’s helping organizations detect suspicious identity behaviors—like machine accounts suddenly acting human or vice versa. On the other, it’s being weaponized to accelerate identity-based attacks.
And then there’s the larger industry reckoning coming into view. Haber believes we’re entering a period of correction—less marketing, more fundamentals. Foundational security will be where focus returns: antivirus, SIEM, PAM. The flashy bolt-ons and overpromised vaporware? Expect a shakeout.
If there’s a throughline in his view, it’s this: Security teams need to move from checkbox compliance toward actual operational resilience. Identity, and the pathways attackers can exploit within it, is the new frontline. Knowing who has access to what—and how—isn’t just good hygiene anymore. It’s make or break.
Alan Shimel
Throughout his career spanning over 25 years in the IT industry, Alan Shimel has been at the forefront of leading technology change. From hosting and infrastructure, to security and now DevOps, Shimel is an industry leader whose opinions and views are widely sought after.
Alan’s entrepreneurial ventures have seen him found or co-found several technology related companies including TriStar Web, StillSecure, The CISO Group, MediaOps, Inc., DevOps.com and the DevOps Institute. He has also helped several companies grow from startup to public entities and beyond. He has held a variety of executive roles around Business and Corporate Development, Sales, Marketing, Product and Strategy.
Alan is also the founder of the Security Bloggers Network, the Security Bloggers Meetups and awards which run at various Security conferences and Security Boulevard.
Most recently Shimel saw the impact that DevOps and related technologies were going to have on the Software Development Lifecycle and the entire IT stack. He founded DevOps.com and then the DevOps Institute. DevOps.com is the leading destination for all things DevOps, as well as the producers of multiple DevOps events called DevOps Connect. DevOps Connect produces DevSecOps and Rugged DevOps tracks and events at leading security conferences such as RSA Conference, InfoSec Europe and InfoSec World. The DevOps Institute is the leading provider of DevOps education, training and certification.
Alan has a BA in Government and Politics from St Johns University, a JD from New York Law School and a lifetime of business experience.
His legal education, long experience in the field, and New York street smarts combine to form a unique personality that is always in demand to appear at conferences and events.
alan has 91 posts and counting.See all posts by alan
文章来源: https://securityboulevard.com/2025/06/the-state-of-identity-security-with-morey-haber/?utm_source=rss&utm_medium=rss&utm_campaign=the-state-of-identity-security-with-morey-haber
如有侵权请联系:admin#unsafe.sh
