IDPro’s addition of key corporate members and expansion of its CIDPRO™ certification and learning opportunities highlights the growing recognition of Read more
CIDPRO™ - the Certified Identity Professional program – designation signifies an explicit skill set and experience within the identity industry Read more
An Identity Correlation Framework Identity correlation is simply the process of mapping an account from an application or system back Read more
Looking for more Industry News? Check out the archive.
Since 2017, IDPro® has been growing, evolving, and supporting the practitioners working in the field of digital identity. From our founding to launching CIDPRO® in 2021, we’ve worked to build a strong, connected IAM community.
Now, it’s time to welcome a new leader to help shape IDPro’s future. With the board size set at nine members, we have one open seat for an engaged and enthusiastic professional to join us in July 2025.
What It Means to Be on the IDPro Board
This isn’t a ceremonial role: It’s hands-on! IDPro’s board is operational, which means rolling up your sleeves to keep things moving. Board members typically contribute 10–15 hours per month, participating in monthly meetings, managing projects, and engaging with existing and potential members.
If you’re passionate about the practice and the profession of digital identity and want to actively contribute to the success of IDPro, we’d love to see you throw your hat in the ring. As a board member, you’ll:
✅ Help steer IDPro’s strategic direction ✅ Support financial health and organizational growth ✅ Strengthen the IAM community and professional network ✅ Work alongside industry leaders and practitioners ✅ Gain leadership experience and visibility in the field
We value collaboration, inclusivity, and diversity; we encourage identity professionals from all backgrounds to apply.
Ready to Nominate?
If you or someone you know would be a great fit, now’s the time to act! Self-nominations are welcome—after all, who knows your passion and skills better than you?
📩 To apply, email director@idpro.org for the nomination packet. 📅 Deadline for completed nominations: April 30, 2025.
This is your chance to make a real impact in the world of digital identity. We can’t wait to see who steps forward!
Since its inception in 2017, IDPro® has been on a journey of growth and innovation. From our founding to the 2021 global launch of CIDPRO®—Certified Identity Professional—we’ve been steadily elevating the IAM profession worldwide.
This year, we bid farewell to three board members: Janelle Allen, Jon Lehtinen, and Bill Nelson. The IDPro board has also decreased the number of board members to seven. Consequently, we’re on the lookout for one passionate, dedicated individual to join the IDPro board of directors in June 2024.
We encourage you to nominate yourself for this prestigious role if you share our enthusiasm for:
Championing IDPro’s mission
Shaping the organization’s growth and strategic direction
Strengthening IDPro’s financial health and stability
Giving back to the global IAM community
Collaborating with other thought leaders and experts
Expanding your professional network
Developing your leadership skills and gaining industry recognition
We eagerly anticipate board nominations—including self-nominations—that embody these values.
Our board members actively contribute 10-15 hours per month to various responsibilities, including monthly board meetings, project management, and engaging with current and prospective members. You can learn more about the structure of the board, the decision making processes, and more, by reviewing our bylaws.
At IDPro, we celebrate our team-oriented, inclusive approach that transcends cultures, nationalities, and time zones. We eagerly anticipate board nominations that embody these values. We firmly believe that diversity within the industry benefits everyone, and we welcome identity practitioners and qualified individuals from all backgrounds to apply.
If you or someone you know fits the bill and is eager to contribute to the ongoing success and growth of IDPro, don’t miss this chance to make a difference in the world of digital identity – submit your nomination today! We can’t wait to see the incredible talent and enthusiasm you bring to the table.
If you’re interested in being an IDPro Board nominee, please contact director@idpro.org today to receive the application packet with the necessary questionnaire and other useful material. Completed nominations are due by April 30, 2024.
IDPro’s addition of key corporate members and expansion of its CIDPRO™ certification and learning opportunities highlights the growing recognition of the digital identity industry
January 5, 2023 8:00 AM Eastern Standard Time BEAVERTON, Ore. –(Business Wire)– IDPro®, an open, global non-profit association created to define, support and improve the digital identity profession, continues to build momentum as a key organizational community within the identity and access management (IAM) industry, onboarding membership from multiple organizations in 2022 including CVS Health, Easy Dynamics, Radiant Logic, Target, AllState, Mass Mutual, Identity Fusion, Cross River, ADP, CoClo, IDENTOS and Kenoxa GmbH. IDPro furthers the discussion on important digital identity trends by providing professional certification, through the Certified Identity Professional (CIDPRO™) exam, and learning opportunities, through the Body of Knowledge (BoK).
News Highlights
Identity management is a multibillion-dollar global industry with growth expected to double in the next five years, creating a demand for IAM certification and learning opportunities.
IDPro fills these gaps by providing its members with an engaged digital identity community that emphasizes digital identity-centric learning and discussion while actively supporting them through the CIDPRO certification exam, which provides industry professionals with a foundational and consistent measurement of industry knowledge.
IDPro has added 11 member companies in 2022, growing to almost 40 total member companies and over 1,000 identity professionals. Each member helps IDPro to support the digital identity profession while standardizing key terminologies and furthering the discussion on IAM industry topics.
The CIDPRO exam provides identity professionals with a credential that validates their foundational IAM industry knowledge. The completion of the CIDPRO beta exam in 2022 demonstrates its importance as an essential piece in validating identity experts’ industry knowledge.
IDPro’s BoK, a compendium of curated articles that serves as a robust IAM learning resource, celebrated its second anniversary in March, highlighting its continued impact as a foundational educational opportunity for digital identity professionals.
“Our organization’s CIDPRO certification exam enables industry professionals to demonstrate their IAM knowledge, allowing organizations to support their digital identity divisions,” said Heather Vescent, Executive Director and President, IDPro. “IDPro’s membership growth proves that industry recognition is increasing – companies need vendor neutral education to support their digital identity professionals. With IDPro’s continued growth, these opportunities become increasingly more foundational and important for the industry as a whole.”
About IDPro®
IDPro is an open, global non-profit association created to define, support and improve the digital identity profession. The organization aims to enable a diverse, supportive and inclusive identity community that:
Provides globally recognized industry certification through theCIDPRO Exam.
CIDPRO™ – the Certified Identity Professional program – designation signifies an explicit skill set and experience within the identity industry
June 22, 2021 12:00 PM Eastern Daylight Time HILLSBORO, Ore.–(BUSINESS WIRE)–IDPro®, an open, global non-profit association created to define, support and improve the digital identity profession, today announced the CIDPRO™ (Certified Identity Professional) program.
“The CIDPRO professional designation is a global credential that validates personal experience and defines a standard skill set for the IAM industry”Tweet this
During her keynote presentation at Identiverse, Sarah Cecchetti, IDPro co-founder and chair of the Certification Committee, announced the open registration for the CIDPRO exam. The CIDPRO designation provides identity professionals and employers with a method for validating foundational Identity Access Management (IAM) industry knowledge. Developed through a meticulous peer-review process with a diverse team of global identity professionals, CIDPRO is a long-awaited, rigorous, vendor-neutral certification program.
To obtain the CIDPRO designation, candidates must pass the CIDPRO exam which tests the individual’s knowledge in a range of industry subject matter including functional and operational elements of an identity solution, core concepts of security for identity, and rules and standards as well as identifiers, identity lifecycle and identity proofing.
“The CIDPRO professional designation is a global credential that validates personal experience and defines a standard skill set for the IAM industry,” said Ian Glazer, IDPro Founder and President. “In addition to increasing credibility through verified vendor-neutral foundational knowledge, CIDPRO also demonstrates commitment to the industry.”
Registration for the CIDPRO exam is now open and interested candidates are encouraged to register.
About IDPro®
IDPro® is an open, global non-profit industry association created to define, support, and improve the digital identity profession through knowledge sharing, mentoring, education, and certification. To learn more, visit idpro.org.
IDPro® is a registered trademark of IDpro. All other trademarks are the property of their respective owners.
OpenID Connect is used in a number of places for strong identity assurance, i.e. the Relying Party uses the end-user claims provided by an OP to verify the user’s identity in order to fulfil regulatory or legal requirements, such as anti-money laundering, or in the context of fraud Prevention.
As one fundamental challenge, OpenID Connect (and other standards in this field) do neither reveal what trust framework the OP complies with for collection, verification, and maintenance of particular end-user claims nor do they communicate to the Relying Party important metadata about the verification process, such as when the verification took place, what evidence was checked and using what methods.
This information is essential for a Relying Party seeking to use OpenID Connect for strong identity assurance in order to fully document the assurance level and circumstances under which data was obtained for auditing purposes and to map the assurance level of the OP (or generally speaking the claim source) to the expected trust framework and assurance level of the Relying Party. For example, a RP could intend to use data verified and maintained under anti-money laundering law in the context of the local telecommunications law. Whether this is possible might depend on the verification method or evidence employed for a particular user as some methods allowed in the anti-money laundering context might not be allowed in the telecommunications context.
The eKYC & Identity Assurance Working Group at the OpenID Foundation is working towards OpenID Connect extensions for supporting strong identification use cases. The working group started in January 2020 and took over and continues the previous work on OpenID Connect for Identity Assurance (https://openid.net/specs/openid-connect-4-identity-assurance-1_0.html), which started in the AB/Connect Working Group in early 2019.
OpenID Connect introduces the “verified_claims” structure that is used as a container to convey a set of end-user claims along with the related metadata about trust framework, time, evidence, and methods.
The following example shows a user info response containing, beside other claims, verified claims maintained by the OP in accordance with the German Anti-Money Laundering law, indicated by the trust_framework value “de_aml”.
As illustrated by the example, verification data and end-user claims are conveyed in the separate sub-container elements “verification” and “claims”. The example also illustrates that the concept allows to mix verified and other claims in the same assertion while retaining a clear boundary between them.
Verified claims can also be provided through aggregated and distributed claims, making OpenID Connect for Identity Assurance a suitable tool for combining verified claims from different sources while keeping the clear relationship between the end-user claims and the assurance levels and metadata.
OpenID Connect for Identity Assurance recently passed the 2nd Implementers Draft voting and is already implemented in a number of products and services. It has been tested against the requirements from different jurisdictions by the broad membership of the working group from Asia, Europe, and North America.
As the current specification has gotten stable now, the working group is looking into further topics, e.g. identity assurance for legal entities, and intends to work towards conformance testing for OpenID Connect for Identity Assurance.
Anyone interested in the topic of strong identity assurance and wanting to contribute is highly welcome. The working group holds a weekly call on Wednesday at 3 pm UTC. More information can be found at the working group page https://openid.net/wg/ekyc-ida/ .
Torsten Lodderstedt
CTO, yes.com
When Web Browsers Attack – Browsers, Privacy Preservation, and Identity Flows
The world of web browsers is grappling with a deceptively simple mandate: Protect users from third-party tracking. It’s like a motherhood-and-apple-pie statement: having third parties track individual behavior is a significant issue. Legislation around the world agrees that third-party tracking is a Bad Thing.
But what happens when the technology used by advertisers for third-party tracking is the same technology used by enterprise and academic identity federations to support SSO? Suddenly, that simple mandate of “protect against third-party tracking” can potentially disrupt scholarship and business in significant ways. During Identiverse 2020, Vittorio Bertocci presented “Browser Features vs Identity Protocols: An Arms Race?” If you’re not familiar with how third-party tracking works, and how it is indistinguishable (as far as the web browser is concerned) from identity flows, this 30-minute session is something you need to view.
The good news is that even the browser vendors are still in the early stages of figuring out exactly what they want to do. That allows the broader IAM community to engage in the conversation and ensure that all the major use cases are considered. Discussion on this topic has, at least in part, moved into the W3C’s Web Incubator Community Group through Google’s webID project (https://github.com/WICG/WebID). While the webID developers have, to date, focused solely on the consumer space, issues have been raised to highlight enterprise SSO and academic federation requirements. The good news is, now that this discussion is happening in a public forum, more people can get involved. The bad news is that WICG attracts web API developers; additional expertise will almost certainly be needed in the privacy space and standards development.
The browser vendors are expected to be responsive to the issue of third-party tracking. Given they are still very early in the game of figuring out exactly what they want to do means now is the time for interested parties to get involved and be a part of figuring out a solution that will work for more than just one use case. IAM practitioners, particularly those that support their enterprise SSO environment or who are engaged in supporting academic research and scholarship, should get involved now to help build a robust and implementable solution for all.
Heather Flanagan
Translator of Geek to Human
Spherical Cow Consulting, LLC
News from the Amsterdam Digital Identity Meetup
During the spring and summer the Amsterdam Digital Identity meetup has been running a series of talks around modern authentication and how the different authentication options relate to each other.
We started in January with Multi Factor Authentication where Brian Kloof shared his experience of rolling out Azure AD MFA at a global retailer. In March we learned more about Windows Hello for Business where Pim Jacobs talked about how you implement WHFB in enterprise environments. Finally we got a run through of the FIDO2 standard and how to implement Yubikey in an Azure AD centric enterprise from Per Erngard.
The main conclusion from these talks is that each technology is one piece of the puzzle of minimizing the usage of passwords within an enterprise. MFA will add an additional layer of security on top of password. The main challenge with MFA is the roll out, especially in Corona times as the usual approach of requiring enrollment on corporate premises or via VPN is a lot harder to implement when the majority of the staff is working from home.
Some of our members have chosen to soften the enrollment requirements to get staff onboarded despite the downside that you lose the strong onboarding. Many enterprises are taking advantage of the integration with self service password reset functions that more and more MFA vendors are offering to get an improved user experience and lower help desk password reset call volumes.
Windows Hello For Business is getting increasingly popular and the consensus from our members is that it is a very good option for staff that are provided with company managed Windows 10 laptops that have Windows Hello compatible cameras or fingerprint readers. Some of our members have been trying to roll this out using PIN codes, but that has not been successful as the user experience improvement simply is not big enough.
FIDO2 offers an interesting way of providing very strong authentication for users who do not have personal laptops, but share kiosk style machines. This approach is especially interesting for retailers, hospitality, and healthcare companies that have a lot of staff who are not assigned a personal laptop and who need to be able to quickly log in and log out. If you have an Azure Active Directory centric environment the FIDO2 integration offers an attractive way to increase the authentication strength for key identities and applications.
In the fall we are planning talks on identity analytics in cooperation with Forgerock as well as external identities in AAD with Microsoft. We are also hoping to be able to get back to physical meetings but the online meetings have been very well attended and have facilitated some very good discussion. If you are interested and want to learn more, visit https://www.meetup.com/Amsterdam-Digital-Identity-Meetup-Group/ and sign up.
Martin Sandren
Domain Architect IAM at Ahold Delhaize
An Identity Correlation Framework
Identity correlation is simply the process of mapping an account from an application or system back to its authoritative origination point. This is important in order to more simply understand the what, where, when, and how of the account’s reason for existing and if it should exist where it is with the capabilities that it manifests. That understanding is much simpler when the account is correlated to a known quantity.
Examples:
The account is an end user account on the enterprise directory and it belongs to employee Susan who is allowed to have the account because the employee is actively working for the company.
Or the account is an enterprise directory account is a service account belonging to an employee Mr. Tumnus and is assigned privileges X, Y, Z to do function Foo. It was requested and approved on <date> and was certified on <date>.
Or the account is a database privileged account belonging to manager Lucy and is assigned privileges H, I, J in order to process the function called Bar and is authenticated using another account belonging to Lucy on the enterprise directory.
Or the account is a bot account WW with access to applications G, H, Y, the enterprise directory, and belongs to consultant Edward who works in the robotics process automation program.
Or the account was disabled because it belongs to consultant Peter who has left the firm.
Or the account is unknown and needs to be disabled, investigated.
The following simple framework is for practitioners in highly regulated identity spaces. Certain conditions may be curiously vexing in large and long-established companies that simply don’t exist in spaces where everything is new, and where everything can’t be made new again by dropping into a new clean space.
The framework here isn’t a fit for every situation, as if anything could be, but has proven useful in certain situations for resolving recurring issues once and for all, rather than catching up at various points in time. Admittedly, it may seem dull, and a bit of a grind, but we are yet to find any tool, software vendor, consulting firm, or magic bullet that can take the place of doing the work, sticking to a plan, and most importantly, taking the first step if it needs to be taken.
An Identity Correlation Framework
Partnership
An effective evergreen process requires on-going partnership between identity practitioners, the business they serve, security, risk, compliance, architecture, dev-ops and other stakeholders to ensure that applications and systems are built and managed in a manner that allows continuous adherence to standards and adaptability to changing conditions and technologies. Much to the chagrin of practically everyone at times, identity and access management is not a project with an end date; it is a continual and extensible managed process.
Pillar A : Onboarding Identities with a Unique
Identifier (Expansion of oft-used process)
Humans are traditionally identified uniquely and it may be useful to apply that model to almost every account in the enterprise. Humans in the enterprise, employees, consultants, third parties, are probably uniquely identified already. It isn’t terribly difficult to do the same for nonhuman accounts.
Why? Consider that there may be more requested nonhuman accounts distributed in systems and applications across your enterprise than there are for all of your employees, consultants, and third party humans combined, and consider how much time is spent trying to identify who owns those accounts, what they are for, or even when they were last used.
Just as your human resource system maintains the manager relationship, insertion of a unique identifier and accountable account owner into the non-human account request and provisioning process will eliminate much of the headache around nonhuman accounts. Implementation of an automated process to update accountable owners of accounts as owners move across or leave the organization will go a long way toward eliminating the troublesome practice of maintaining account ownership data in applications when that data is impractical to maintain or simply ignored. An upstream system handling the job on everyone’s behalf has significant benefits, and can be implemented very inexpensively.
How? Review the types of accounts that are problematic and how to insert a unique identifier into the request process for those accounts. Include general categorization of account type. Assign an owner. Replace the owner if the owner terminates. Provide a process for requesting and approving ownership changes from one active person to another.
The Category Naming Conundrum: Function and Privilege Over Nomenclature
The significant differentiator between nonhuman accounts should be the level of privilege and the account’s function, rather than nomenclature. Classifications and naming conventions that aim to provide guidance are often not well understood, not accurate, and not maintainable over time. What is the difference between a service account and a functional account as a category? Let the debate begin, or prevent it by keeping the naming of categories assigned to unique identifiers simple. Information about the account privilege and function is far more useful when derived from the account and its privilege itself. The category of ‘employee’ does not attempt to denote anything material about an account other than that it belongs to an employee. Other data is derived elsewhere. Use the same for nonhuman practice accounts.
Pillars B and C: Maintenance
Once the process is started, keep doing it. Attention to housekeeping (deletion of deprecated applications from the IAM systems, purging of aging account data, will simplify the process. Connection with an enterprise application portfolio EAP system as an authoritative source of application status information and other application metadata can streamline the process.
There may be account data captured in some applications that won’t correlate to an authoritative source and tagging will help to, at minimum, categorize them into buckets for further review. For example, a tagged out of the box account (OOTB) may need to be checked to ensure appropriate controls are applied but filtered out of the uncorrelated account totals.
Maintenance includes the applying of typical identity management functions for automation of termination, transfer, access certification, etc.
Pillar D: Apply Governance
Examples of applying governance include:
Producing a report on correlation percentages with a threshold for highlighting applications that don’t meet an
Testing anticipated correlation rates as part of the system development lifecycle in advance of an application’s first aggregation or significant update. Set a high bar.
Sending an alert when an application moves negatively across the threshold and investigating the cause.
Be flexible in assisting application teams understand why their accounts don’t correlate – this may be a simpler task for identity personnel than for an individual application team.
Where feasible, make recommendations to application teams to request unique identifiers for existing nonhuman accounts or to determine where a related correlated account already exists – such as on the underlying authentication system.
Pillar E: Manage Application and System Identity Requirements
Company application build or buy requirements and security assessments may benefit from being updated to account for identity specific account correlation requirements.
Apply a periodic review of newer applications that have presented significant challenges – review approval process and identify causes, with lessons learned sessions and process updates to follow. Add all newly implemented applications to correlation reporting and dashboards.
To conclude, practicing the steps outlined here may be a good step if you are suffering from the need to periodically clean-up your identity data or track-down its owners, or the more serious consequences of not knowing the who, what, where, and how of accounts on your network.
An IDPro Founding Member
In Favor of the Shift
A spring without baseball allows time for reflection about the big issues in life—about what really matters. As a result of these few past empty months, I’ve come to a realization: the defensive shift is good for baseball.
The defensive shift occurs when the defense plays out of its typical alignment. Instead of being distributed across the field relatively evenly, the shift typically involves the third baseman or shortstop moving over to the right side of the field. At times, this shift can become extreme. One of the prime examples being this four-man configuration used by the Los Angeles Dodgers in August of 2014:
Over the past few years, many have decried this defensive tactic, claiming that it is against the spirit of fair play, or puts hitters at too much of a disadvantage. But the shift is not new. While the origin of the shift dates back to the 1920’s, it became well-known as a response to Red Sox legend Ted Williams. He had hit an unheard of .406 in 1941, in 1946 he was hitting .476 headed into May, and opposing teams were desperate to slow him down. Williams was a left-handed pull hitter, making him a candidate for a unique defense.
Despite still hitting .348 from 1947 to 1957, Williams had difficulty adjusting to the shift. He hit 1000 of his 1252 ground ball outs in the 1950s to the right-hand side alone.
But there are ways to beat the shift, which brings us to Mickey Mantle. He, like Williams, faced the shift during his career with the New York Yankees. Mantle, however, modified his approach to beat the shift in multiple ways: (1) Hit it out of the park: he hit 536 total home runs, good enough for 18th on the all-time list (in his 500 th HR in 1956, you can see the shift being usedagainst him.) (2) Hit to the undefended side of the field: Mantle was also a switch hitter, so he could just change sides of the plate and hit to left. (3) Bunt: this is perhaps the most controversial option, but it is one that serves the team if it advances the runner . . . and it won Mantle the Triple Crown (league-best batting average, home run total, and runs-batted-in) in 1956, over none other than Ted Williams himself.
In August of 1956, Mantle was eight games ahead of Babe Ruth’s 60 home run pace. He outdistanced Williams by 28 home runs and 48 RBI, but the batting average was a close contest. Mantle, however, continued to beat the shift by bunting. Over the course of the year, he attempted 21 bunts, the most of his career, and hit safely in 12 of those at bats. Here you can see the bunts against the shift and their impact in the Triple Crown race:
Mantle’s innovative approach had won him the Triple Crown, and the Yankees went on to win the World Series in seven games in 1956.
The shift was good for Mantle—it forced him to develop his game in new ways, to develop new skills, and to exploit new opportunities. While Williams allowed his focus to be on the defense, and what was being taken away, Mantle sought new ways to develop his offense.
We’re in a similar position when it comes to identity. We are often focused on what we must prevent rather than on what we can enable; we are continually reacting rather than being proactive in our identity-driven security strategy.
When any shift occurs, our tendency is to hunker down in our safe zone, worrying about what could possibly go wrong. To do more than survive, though—to successfully beat any shift—we should examine our options and adapt; we should diversify and develop our game. We should play offense rather than defense.
Mantle, when asked why he was bunting so much in 1956, was quoted as saying, “When I triedto bunt for a hit, it was because we had to get something started. I figured that winning thepennant was the most important thing of all. Sure, I wanted to break Ruth’s record, but not at the expense of winning.” Like Mantle, we must focus on what is the most important thing—what “winning” is for our organizations—and adapt our strategy to achieve that.
Some of these strategy modifications may be home runs: Rethinking the core of identity itself. Reorienting our approach around identity—equipped with adaptive technologies such as machine learning—can flip an organization to offense, proactively providing access to users before they even know that they need it.
Others are the equivalent of switch-hitting: a new perspective that we might not have considered before. Exploring the reuse of new forms of digital identity can open up new long-term opportunities for new markets and partnerships. Implementing privacy controls and securing the data of customers and employees—even before governments mandate these controls—can help prove that the organization can be trusted with sensitive data.
Bunting should not be neglected, either. Every small step towards securing resources with identity is a step towards “winning.” Often this means expanding the visibility of an identity program into the dark corners of previously uncontrolled apps.
The shift, then, rather than being a negative for our organizations and for baseball, forces aggression, forces adaptation, forces innovation—it forces the advancement of the game. To ban the shift is to kill opportunity and to settle for the status quo.
The shift is good for baseball. But don’t get me started on the designated hitter.
Mike Kiser
Global Security Advocate, Office of the CTO
SailPoint
Why the World Needs IDPro
So, June is always a big month for the Identity Industry. Identiverse Virtual is in full swing and many of us are having virtual reunions with our fellow Identerati. While it’s a very different Identiverse this year, there’s actually a lot I like about the virtual conference experience. No more “feast or famine” with scheduling; we can attend every session that interests us and never worry about a time conflict. It’s kind of nice that the recordings are showing up within an hour or so after the session, which means I don’t have to worry about “work” intruding on my conference time. In fact, more people from my company have been able to join Identiverse than we’ve ever been able to send in the past. Another very cool aspect of the virtual experience is the live chat throughout the sessions. While the chat can sometimes get distracting, it’s also really slick being able to ask the speaker a question and see a live response, all while the presentation is still running, uninterrupted. Plus, of course, many of us are veterans of Identiverse and the Cloud Identity Summit before it. We’ve come to know each other through these conferences, and our membership in IDPro. It’s great getting to chat with each other during the sessions, especially since this year, we aren’t going to be meeting up in person so much.
Which brings me to my next observation. There has been a lot of great conversation spilling over from the Identiverse chats into the IDPro and Identiverse Virtual workspaces on Slack.
Janelle Allen recently asked this question in the #identity-geek channel on IDPro: “Did you know you were doing identity when you started identity?” More than a dozen of our fellow IDPro members chimed in to share their experiences with much more than yes or no answers. There were stories. And with few exceptions, there was the expected theme we’ve come to know in this industry. Many of us had no idea, for years, that what we were doing was managing “Identity”. It was LDAP directories. Account Management. Directories of email addresses. Record matching in health care systems. PKI strong authentication and authorization.
Sometimes it was “Security” work. Some of us were even cautioned against getting too close to that work: “If you screw up the security they’ll fire you.” Some of us arrived here by being assigned to fledgling SSO projects. Some of us were pushed. Nearly all of us learned what we know through experience, making mistakes along the way, and surviving them. If you want to read the full set of stories, hop over to #identity-geek on the IDPro Slack. (Don’t worry, they’re all short stories!)
For all its importance, Identity is still a small part of the overall Information Security industry, and there aren’t all that many places we can turn to for guidance as we develop our careers. This is why IDPro is so valuable to us as Identerati. Being able to come together with our industry peers and share ideas and stories, ask questions and actually receive useful replies, find mentors, and learn from each other is what IDPro offers us. And with the recently released collateral in the IDPro Body of Knowledge and our upcoming certification program, we’re enabling the next generation of Identity Professional to learn the right lessons and skills in far less time than our shared curriculum took at the school of hard knocks.
My thanks to Janelle, Mark, Vittorio, Ludo, Lance, Lorrayne, Bertrand, Matt, Catherine, David, Paul, Corey, Dean, Vipin, Patrick, Michelle, and Marc for the great stories. Keep it going!
If you need an invitation to our Slack workspace, shoot an email to director@idpro.org and we’ll hook you up .
Greg Smith
IDPro Editorial Committee
Lets get in touch ...
Please use the below contact form to leave your message with us. We will be pleased to respond as soon as possible.
Contact Us
This website uses cookies to ensure you get the best experience on our website.
You can revoke your consent any time using the Revoke consent button.
