Identity and access management. Welcome to the identity of the center podcast. I'm Jeff. And that's Jim. Hey, Jim. Hey. Jeff. How's it going? It's good. It's Friday. And Friday night was a good thing Mother's Day. And it's looked at looking like this. Crazy weather throughout the u.s. There's a snowstorm, hit the Northeast. I think. I think we'll be okay here in Chicago, but it's been kind of rainy the last few days. Yeah. I'm the southeast. Look like it. Son. Seasonably cool.
Usually it's the time of year where it starts getting. I'm sure you'd be uncomfortable to sit down with normally right now. Low humidity and I mean this is this is great living. Whether yeah, the high heat and humidity is something that really are my Is My Kryptonite and I think I think you know that well, I know the humidity is, I mean, you know, I might as well share their story with everybody Jeff Perry. Yeah. I know. I always tell it which is the
time. We went to Orlando in January for Lando. It's humid. It was In the 80s, I think but humidity is always the thing that I really hate about Florida and really kind of any human location. Pretty sure it was 74 degrees away man. It was like 100 degrees and it was like a thousand percent humidity. And it was not not my favorite type of whether that's for sure. That's very so, it's Friday. And today is May 8th. Yesterday though was May 7th. And that was world s word day.
How did you celebrate? I mean, you know, it's like Christmas for me. I just I celebrate the password but up a password tree. No, I just reminded myself that that quote from From Office Space. I celebrate his entire collection. I celebrate all of my password. I mean, you know, I think that I'm just gonna sound so original here, but passwords are crap. They really should have been eliminated long ago because now the internet is such an integral part of our everyday life and
her. So ingrained in how we authenticate over the internet. They're almost barely imagine a world without passwords yet. That's where we need to head. Yeah. Password is not modern authentication. That's for sure. You know, once you get a hold of a password, it's really just a matter of time. Even if it's encrypted, right, you're running. If you gotta encrypted hash somewhere, you're running rainbow tables and once that has been cracked, once it's cracked everywhere.
And that's you know, why? The guidance is always have a different password for each website, but The reality of the world, right? That's very hard to do. Most people pick, you know, one, two or three different passwords and they just start adding numbers to it. The becomes very easy to solve for. I like the concept of moving towards, you know, password list, but I don't think we're quite there yet though. It is gaining in popularity. I've had a couple of passwords
that I reuse. So one of the, one of the things that I read a long time ago that I thought was, Good advice. Was that because I don't use a password safe to have kind of a framework for how you use password, think so, or really kind of critical applications that I want to make. Sure, never get cracked. I either ensure that one. They have multi factor or two that I'm using a unique path. In other words. They invest the Life Energy and making sure I have a unique password for that.
Site, I like that. The Life Energy. Yeah. Well, I've had I think some of my energy to have like, you know extra passwords that you don't have elsewhere and to remember them. And then there are sites where it's like, okay, I am not going to store my credit cards with this, you know, online Commerce site. I'm probably going to buy something or here once or twice. I'm, they're making me create an account. So I'm just going to reuse that same password of used million time.
And so I do that. And one thing I've noticed is that Google Chrome now has a feature to kind of Shame you. And it's I think it's a really cool feature which is like, oh, hey boss, you're you know, this pastor is already on the dark web. Holy moly. Wow, because I need to go make a change. Yeah. Yeah, like, okay. Maybe I should stop using that one from now on. But yeah, you know, that's that's kind of been my Approach. Is that either ensure the multi-factor or I'm using a
fresh new password. He really taking a risk based approach, then to ask for it is it is a risk-based approach and partially the laziness because they know if I were to use a password safe, I could be doing something much more secure by I find that there's a certain level of inconvenience involved with doing that especially when you have many devices. And those devices span different ecosystems.
We've got like, you know, some apple stuff, and you grab some Microsoft stuff, and some Google stuff. And you want to just be able to log into something. I'm making excuses, specially for somebody to use in this industry, but it kind of shows. Chose the problem, even somebody who understands all the risks of doing things, exactly. The way I do them. I do them my way. Anyhow, you accepted the risks. I fall on the other side of it. I use a password manager. I use LastPass.
And, you know, I wouldn't say I've always done it, but since I've become more involved with security, I've tried to go more random passwords and the struggle of, you know, cross devices and different. Since between Apple and Microsoft IOS and Android, I'm someone who is constantly jumping around between all of those services. So, I've settled on LastPass as my password manager, because they have an app, basically for everything.
And that lets me really kind of tame the Beast a little bit. So I use, you know, randomized passwords and, you know, all the different complexity things and I try and I been trying to make a more conscious effort of having a different password for
each website. If I have it as I come across it, you know, I've been going to the password change process to kind of get it synced up and that so far has worked pretty well for me. You know, my my workflow stretches across Windows machines back Mac OS and iOS or phone and tablet. And I found LastPass has made it a lot easier for me. So obviously we don't have sponsors on this show. Otherwise, we'd have a better dream situation as Ron mentioned.
Weak. But, you know, it's something that I've been using for years and it's free at least the version, you know that I'm using and it works. Well, so now we work in the company of under 100 employees and so we don't have managed devices, but I can imagine that, you know, if you were working in a corporation, you could have a number of passwords for the corporation and personal may, or may not be allowed to install last.
Passing the corporate devices. Yeah. Yeah, that's why you've got to make sure that I mean, you know, use MFA even on that your I'm using, you know, a password by itself that is not used anywhere else just facility for that.
I mean, it is a lot of work and I think it covers up the problem which is passwords just inherently are insecure and I'm excited about password lists, you know, future, whether you know, how often or how quickly that comes along, you got things like Windows. Hello, and you know that akator apps and so forth. I Recently, there was an article that at Microsoft's ignite, 2019, which is about six months
ago. There were 100 million people that were using password, password list of logins every month and that includes things like Windows. Hello. It's gonna cater app, you know? Push-based and then different security type. He's like, etcetera and they've seen as of a couple days ago that's grown by 50% already. So now 150 million people are using Capital. So I think it's great. You know, I think it's a step in the right direction, but I'll be
happy when we can finally say. Yeah, the password truly is dead. But I have a feeling that's going to be your carrying something else. That's your password. Right? It's a lot of companies are focusing on your phone as kind of, like, your secondary off, or even maybe even primary authentication in some cases, right? And having a session of tiger over who was with earlier this week and we're talking about, you know, the whole idea behind
like why? Don't companies or why don't more folks invest in, you know, hard tokens. And part of it is that it seems like something is like there. It's hot. It's the now, but the next thing is right around the corner. And so, how much, how many dollars would you invest in something? Like that? Knowing is probably going to be
obsoleted in a couple of years. Yeah, I can imagine, you know, going back to my operations days having to manage RSA tokens and, you know, having to deal with the logistics of Hardware Keys, is a challenge, right? I mean, you've got to get them out to people, people lose them. They break, you know, they're not configured, right? And accomplish the things going wrong. Now, that was admitted really 15 years ago, roughly. So now, the process has gotten a
lot better right now. It's now it's more of a app-based thing on your phone, but I think it'll be interesting to see how this space of all is because there's also other things to right. There Li keyboard analysis, you're typing Cadence, right? Can be a way to biometrically authenticate, which I find interesting. I'm trying to remember a typing. DNA was one of the examples that we've looked at in the past as brand of evaluate space, but I'm waiting for, you know, natural language.
You know, when is the computer from Star Trek going to be there and be able Bill natural language queries of the negate based on voice patterns and prints Pollock. Good stuff has kind of routine, you know, absolutely anything we can do to get closer to. What did they have in Star Trek, where it was a room where it was like a virtual reality Beyond Holodeck. I mean, that is like, that's everything right there. I don't think I've ever heard.
Well, that's why I think that's kind of where VR is right now and You know, I've I've dabbled around with it here and there and it is very good. But your it's still for the most part. Unless you've got a really good set up a tethered experience. So we are stuck in a room or you have a wire something connected to you. And there's there's Wireless versions of it out there too. But you're still very limited by the space.
I have seen that there are some like, you know, like laser tag type style games right that take place in giant warehouses where it's a VR experience, but man, I'd hate to be running, you know. Headfirst and correction tool wall or something like that, right? Exactly boundaries, but I think you know, it's the beginnings of it. It's like anything else at some point. It'll miniaturize and get
cheaper and become standard. Microsoft been trying to make hololens a thing for years and hasn't caught on the consumer space. But this is all things that we are PR is going to to go the route of 3D TV. Well, I don't know. I know a lot of people were like with 3D TV was hot. A lot of I don't care about that. I don't want that. I thought it was the coolest thing ever. I think it's very cool. But a lot of people it makes a
lot of people sick. Yeah, they it's not good enough to the Quality, where the experience in the Fidelity, can trick the mines for all people. The other thing too, is the discomfort people who wear glasses, have to put something over there, you know, over that to be able to see things. It's and I used to wear glasses, but right before I had, you know, Like done in that. Struggle is real.
Trust me, you know, putting a VR mask over your glasses is not the most comfortable thing in the world and there's a lot of different things that kind of go into the comfort of it. Who knows, maybe maybe Holograms will become, you know, the thing at some point when you have first are working together, you were really into VR useful. A lot of money on it. What were you saying with that? Now? Are you doing much? I'm staring at it right now. It's in a box underneath my, my computer desk.
Here. It's kind of a hassle for me to kind of pull out and put together. The technology definitely works but it is like I mentioned have a tethered experience and I really haven't been using it. It's probably time for me to say goodbye to it. But for those wondering, I have the eight of the HTC Vive there's Oculus, which is owned by Facebook. Now, they have another, you know, product out there as well.
That's pretty good. But yeah, I find myself not using it and it's not for Anything other than I guess, General laziness. Let's put it that way. Yeah, that's what I mean. It has to be worth the time investment for you. Otherwise, you're not going to do it. Yeah. I mean there's there's a lot to set up for that one. I think the newer versions are a lot better where you don't have to put these base station ups. And you know, you don't have
wires come over the place. I think Oculus is has gotten that part, right? The experience is a lot better and you know, who knows from a virtual workspace perspective, you know, that might be A method to look at maybe. Maybe your mask your VR mask will become your device. Right? Right. Or yeah. So, with the vrms word, did they have any kind of facial recognition or daddy Mac?
Yeah, I think the one that would make the most sense would probably be some sort of retinal scan, because you've got your eyes with in this enclosed area. You know, that would probably Drive the cost up quite a bit. So, you know, as the prices come down might make sense to when you put your mask on it, you know, it does a nice can and authenticate you that way. It'd be tough to do. Facial recognition because mask is covering half your face at least at this point, based on
current technology. So, I think it's the same problem that a lot of people are having wearing masks out right now because of covid. You know, face ID, doesn't work because you're you got a mask covering up and Apple has recognized as a problem and, you know, supposedly in the next iOS Point update that they're releasing, you know, they'll have a solution for that which will find find interesting to see how they're going to keep the security.
But also, you know, make it still user friendly. So I think that's that's something to kind of keep an eye on punished and ha ha. Yeah, right. So you keep this on the password K conversation. And you know, I think that they would multi-factor. Here's the way I look at multi factor is yes. Usually one of those factors is a password, which is going to complete. But then the second factor is usually something out of band or some biometric.
And while we know a lot of the out of Baron methods can be cracked, I take from many, many use cases this to still try up. In other words. It creates an open for her role. That going ahead and crack the is too much effort for what you're feeling. Now. I think of you are National Secrets or potentially even like financial data. You know, SMS text is a second
factor is not strong enough. However, if you're protecting, you know, their ability to upload to Facebook or something, it probably is The problem with Facebook. This one came to my name's Facebook has become an identity provider that people under so many different things that it kind of concerns me that, you know, game.
So active. Somebody's Facebook isn't about just doing their pictures are putting up a, you know, stupid Post-its. What can you then Branch off to do when you have hijacked a Facebook account? So find out the best. Example, but if you thought of something else, save more trivial, you're having a second factor is an SMS text or an authenticator app name of authenticator app, like, for me and you and probably most people
listening to this. We don't think of authenticator app to his company not far and but I keep the person I use them in my world who is a non computer person is my dad. I just imagine trying to explain to him how to set up Google Authenticator. Yep, I get I get a panic attack, even thinking about trying to have a conversation with him.
Yeah, there is definitely a hurdle to get to gain entry be able to do that easily and I always pick on Apple as a good example of how they've kind of common eyes and Fa. For example, you know iOS specifically has MFA built into the OS itself. It's very easy to Use and they've kind of people are used to. Okay. I'm going to get a code summer right on my phone or whatever it is. Whether it's SMS or a popup on the device and Android does something similar as well and other devices as well.
But or other voices, I should say, but yeah, trying to explain here. I want you to load the OCTA app, right? And then register the app to app with systems. It's easy for you and I because we get it. But yeah, I can see how, you know, people struggle with that. I've been trying to get my wife to use LastPass, you know, for years because Constantly, you know, having her log in a different machines, you know,
what's my Microsoft s approval? I don't know what's your password and then, you know, she's sitting there kind of thinking about it. Like, well, why don't you use a password manager? And she's like, well, why don't we just use the same password for everything?
All right, so she knows that much, I think, as far as you know, me educating her, she knows that's bad and, you know, when she spots something that's weird at her company, you know, she'll tell me about, I'm like, oh, you wouldn't believe this. So, I've kind of turned her into a little bit of password or identity. Kind of, you know, evangelist, but worry, it's not easy right to spotting things that are weird companies. And obviously, I think the thing
that I see every day. I want to send you money or this time scanners like oh my God believe. Right. The IRS is wants to refund your money and you need to pay them back and Apple gift cards or Google. Now. Those are those are obviously legitimate because you know, the IRS accepts a gift cards has been. Yeah, of course, I mean, what would take a couple gift cards because hey at some point there might be working for more than US currency. That's another, that's another
conversation. So some of them are ones, especially And when they were persistent, like, you know, this is the final warning, your Apple ID is about to be disabled got like seven of these now maybe and you think, no, you know, anything do you open them? And by the way, when you open an email, a lot of times has been reached email email or have a tracking bit is what you usually call it. Other words. It's like some image that wanted to need one. Solar to be an image.
It's like it's a unique URL that says, you know, this particular email is open by this particular user. Now. They know they have somebody on the other end who potentially always, at least billable enough to open their email and now they've got someone, they're going to keep sending those spam emails. Do, some of them are looking great. I mean, they take but you just have to be diligent. Agent to follow certain rules, not click on links that are in
those emails. I mean if you just simply from PayPal, be redirected to your PayPal app or go directly to paypal.com., Don't trust the email, the link in the email and usually, you know, if you really know you're doing you can tell if it's a fake URL, but it's just better to be pushing talking about educating. And I think there's a big thing that companies do is come up with cyber.
Security awareness, training, education, programs to get, people, especially around phishing attempts, to be able to spot them and not fall, prey to them. And then I know a lot of companies are going out and trying to screw fissuring users and Spearfish.
That's a very intense, very technical particular individual and trying to convince them that an email from somebody else within the organization that may be is their boss or somebody higher up and say, it's directed directly at them and, you know, versus regular fishing, which is where you can send it to everybody in the company for fishing is kind of like I see is like, you know, you're you're just cast on the line and whatever. B. B spearfishing, you know, you're going after a Big Tuna.
Right? That's really very specific, specific thing. You're looking for specific person. Yeah, usually there's somebody who's high up in the organization, who would have access to sensitive data or might have some information in their email. Those are usually people who can be correct. Sometimes they go out for system administrators and system administrators. You would hope are a little more sophisticated than to fall for
phishing attempt. But I think that obviously, if you are able to get your hands in there, credential could be much. More valuable. Yeah, I'm glad you brought this fishing thing because came across an article this week and it's it's from Barracuda networks, and they had commissioned a research Company by name of census wide. With I've never heard of, hopefully this isn't any type of fake news or whatever they
surveyed. They went out and surveyed 1,000 different business decision makers across the United Kingdom. U.s. France and Germany, so obviously not Global, but enough. Representation, I think the draw some conclusions and one of the things that they saw was over half of them. 51 percent had seen an increase in phishing attacks since this whole covid-19 and shift to the remote working model took place.
So I think it's definitely a, you know, on the rise, you've got Bad actors who are trying to take advantage of the situation. And, you know, part of that is the train that goes along with it. Over half again, said that their Workforce wasn't proficient or properly trained in cyber risk associated with remote working. So, remote working is brand new
for a lot of companies, right? This is not something that they've had to consider, you know, in the past and now all of a sudden, you know, within a span of a week, two weeks right now. They've got most of our courses working from home. They've had to put in, you know, very tactical probably processes to kind of keep the business running. You know, throughout this up and
demek. So I think it highlights some of the things that maybe people are already seeing or, you know, should be aware of. But there's always more training that can be done. But I thought it was interesting that, you know, over half basically are saying yeah, we're seeing a rise in fishing because of the whole pandemic and I would expect that that number will continue to grow.
Because I expect that, you know, most companies, at least big ones have announced that they're going to extend, you know, work, From home as a primary method through the, at least the end of this year, you know, some are already saying, you know, for summer of next year, you know, full you're out. So it's something I think that as people in the identity space. We need to make sure that are communicating to the folks that we work with colleagues Etc. Right?
To be able to hopefully improve level of security that's out there and at least just make people aware of hey, you know what, you may see, you know, an uptick in and phishing attacks. Yeah, and then a couple things, I mean, you little my radar of the key things there and I'm going to pick on the non-security thing for our. So it's the increase and semi at least semi permanence of work from home. I've been a proponent of this for a long time.
I've worked from home for a decade and I feel like it's probably not for everybody and there's definitely some benefit to everybody being in the same place. So I'm going to make that statement. However, from a quality-of-life perspective and the ability for a company to I think retain employees allowing work from home. Look what's the average commute in the United States to and from work. It's probably more than a half hour each way, right? It's probably a half hour to an hour.
Each way. People are sending a an hour to two hours a day. Ten, you know, five to ten hours a week of their light sitting in their car. Burning fossil fuels spending money on parking wear and tear on their car. And and it's just a reduced quality of life. I think versus the ability to work from home. Now, every job. I understand all the caveats. I'm not going to Go through them
all. But to me this up, that could be a positive development to come out of this is that I think a lot of companies were afraid to even try it and maybe I've maybe companies out. There may be some situations or finding this is very suboptimal. But I bet you there are some organization or anything or, you know, we could, we could actually do this. We just save money on Commercial, Real Estate and improve the lives of our Hawaii's by you know allowing work from home either more or
all the time. Yeah. I feel like there's a lot of people who I've been told over the years. The job that they can't do. Remotely can absolutely be done remotely. Yes, the technology is there now. It is, you know, not something that's, you know, new or Cutting Edge and you're waiting for other people to take out all the bugs and wrinkles for it. You know, it's like anything
else that's out there. It's Infrastructure is configured correctly in your following good hygiene on security and you know identity management than I feel like the most most people could probably do some if not all of their work from home and I'm a big fan of it. I've worked for companies in the past that did not have work from home and have slowly, you know, at least when I was there kind of come to an agreement. Okay, you can work from home,
one Friday a month, right? And It became okay every Friday right or something along those lines and this has really thrust. I think that decision-making back to the Forefront to say look. What are we? You know, what are we doing here? I think I think life is a lot easier when you can do from home, but it is not definitely not for everybody. Like you mentioned.
I think there is some discipline that needs to be there because you know, you may have deadlines or there's work that needs to get done within a certain amount of time and you may have distractions at home or, you know, there's two Any other things that might be competing for time, especially right now with kids at home from school, right? I can see that being an issue when you're trying to manage children in the house as well as work responsibilities.
So I think fortune on a companies are recognized that and kind of working around it, but there is definitely things to consider just from that side, but I am, I am a huge proponent of being able to work from home, when it makes sense for all the
reasons you listed. I think that the biggest thing that I'm seeing since the pandemic started is that people who maybe even wear work from home folks, traditionally now have her kids home either because schools have been canceled or a closed and you know where they might be able to rely on even you know, other family members watching their kids or however they had child. Care who seems dried up.
And so now you've got a four-year-old and five-year-old kids hanging on their parents while they're trying to work. Also, totally different situation than what I've run into traditionally with people who are work from home, who designed their life around, making sure that that doesn't happen or event. Only happens on, you know, weird things like snow days or whatever, not thinking, like it's like the everyday occurrence.
Mercer people that I've been working with, who were working for other companies, where they work from home. They've worked out a situation. So say, you know, Mom and Dad are both room working from home now. And now the kids are there. They're figuring out some way to split the working hours, so that there's somebody's watching the kids and keeping them away. So I saw a really funny video. The other day was a guy doing a television interview and and one
of his kids boss. through the gears, you know, the mom like That was good those golden. But yeah, I so I mean and now to pull it all together. So I think one of the biggest risks overall with working from home is if you rely on passwords to get to as your only form of authentication to get the services, whether they be proud services or to get back into the internal Network, I mean then it's huge.
Obviously, you've got open to the outside world at those passwords are weak, because, I think what's happening, is that companies are now having to open things up in a way. They haven't in the past, and one of the things I'm going to put it on in there. We don't like our podcasts to be a commercial, but it is that being, who's one of our partners have been male and female that, I think it's either for the current customers or I'm not sure if anybody can use it.
For anybody where you can essentially start leveraging, their multi-factor authentication Service for free to help, secure your remote Workforce during the pandemic. So I mean, to me that's like if you're in a situation now where you're humming ha I'm head sleeping at night because, you know, your, your entry from the outside world is just secured by
password. Look into this, looking to whether or not this free service is something that That you could Leverage The you to protect ya. If ya if your work from home, I don't think you could seriously say that you're, you're, you know, have the right security for just using password. I think that that is a no-brainer.
Hey, if you're doing any type of remote work, there needs to be that second Factor somewhere to make sure you've got the proper level Purity or, you know, what something that I found disturbing in that same report and I'll put this report into the show notes. So that people can find it wherever they get their podcast. That usually is some sort of detail page. We also get questions on that. It'll be in there. 40% of respondents have cut their
cybersecurity budgets. As a cost-saving measure measure to help tackle. The covid-19 crisis. So I think that's scary because now you're you know, you've got more people working from home. And theoretically you're spending Less on security to cover those people. Not not a direct one-to-one correlation, but people cutting cybersecurity has time when there's going to be more phishing attacks more, you know, everything else that goes along with with that. I think it's just a terrible
combination. And you know, the other thing I think that was really interesting was half of them would consider asks, what would half of the the companies would consider making Workforce reductions if it meant company, data protection, could be properly funded. So they're cutting funding. But the way that they see, Buying back that funding is by doing reductions in an already terrible job market because of you know, all the shutdown that
are happening. So I think it's I think it's a really interesting and you know, unfortunate approach to it. I think this is a time when security should not be on the table for cuts, especially if you are doing the work from home type stuff that is become so prevalent. Well, I think yeah, I mean we could do it. In the airline industry, how can you not uncover front? Turn over every stone. Look for places to God, you know, they put their businesses in the tank.
At the same time. It just creates a perfect job for me to talk to you. So bright, you know, you don't if you do and damned if you don't, I do think a couple of things because, you know, you've got to expect that this and done. Was going to end at some point and that things will shift back to normal. And one of the things that we saw was that cybersecurity professionals were in high demand for this habit and you know, higher than them other field.
And so if you wind up cutting Workforce and on the way funding Workforce isn't free is not like we're paying you, you know a thousand dollars a week. Week and then we're going to get rid of you and it's going to cost us nothing. There's there's some kind of residual cost people paying, you know, on a separate offense or thumping, get rid of somebody. If you have turn around, six months later. Hire somebody back into that position. Are you got the cost of recruiting somebody?
I'm being realistic. Just seeing what's going on in certain industries. They might not have any choice. So that might be enough to you for a company. The mountain is better place to eat. You feeling pain, higher, the price of cyber security. People are pretty good out on the streets right now.
I don't think there's not many Industries hiring a they were released the unemployment numbers today and something like 16 percent unemployment in the United States must have great has been that low or that high since the Great Depression, but it feels like it's going to be a temporary. Things are starting to open back up, but I have talked to people who are extremely worried that I'm not that worried about it, but other people. I'm sorry.
I'm turning to see restaurants, open up and the Mexican restaurant. That's been my house. Was, they had a line outside on Cinco de Mayo. I think people are ready to get back to things or move. A lot of people are worried about things. So I feel like a lot of people, I think, the next we will be listed in a month or two months. I'm doorbell and see if the pandemic spikes again. If it doesn't, then maybe a safe
to go out again. To feel like there's different levels of passion that people are following depending on their risk tolerance. Yeah, I think everybody's making a risk-based decisions. And you know, I'm happy staying at home, letting all the guinea, pigs out. Figure it out. I'm definitely one of your guinea pigs definitely. But yeah, I think going back to
the point of, you know, talent. I think there will definitely be Talent available, but I think security, you know, security has always been a hot Market. It or positions and for people looking to get into the space and I don't see that dropping any time soon because I think if anything right this, this current situation highlights the need for good security, especially these as these companies get hit, whether it's fishing or ransomware, you know, or even just taking in.
Now, a flood of, you know, e-comm customers that weren't there before because you were a traditional brick and mortar restaurant. Right, or some other type of business. I see a lot of a lot of companies that have now gotten into the consumer. I am game and have no idea what they're doing, right? And are figuring out as they go. So I think, I think, you know, the, the identity space, specifically, than security is very strong position right now. I don't see that going going
down anytime soon. Right here, advice for somebody who's just getting into. This industry would be Continue to do so, it's okay to do. So get some experience in your watch YouTube videos, check out ID Pro, which is an organization specifically for identity professionals. That voice that I'm a member of. They have a good body of knowledge that's designed for people to get into and start to learn things. You know, it's not and it's not
just for newbies. It's, you know, for people who maybe focus on one specific area, but want to brush up on another area. Maybe you're, you're great on the identity governance, but you need to bone. Up on the sonication or offers a right. I think there's something out there but it's like any other job. You've got to keep your skills relevant and current and be able to adapt to the changes that are that are part of the natural ebb and flow of business.
And as long as you do that, you know, I feel like you'll you'll have done everything within your power. To make yourself, marketable, and hireable and relevant to an organization. Absolutely. And listen to the podcast. That's a no-brainer. Jim. I mean, we you know, we should obviously be the number one source for all have any information. All right. Well, I think that's probably a good spot to leave it for this week. Anything else you want to bring
up Jim before we wrap up? No, I think, you know, just yeah, shout out to all the mothers out there who know Mother's Day. We all have one and most mothers do an amazing job. Abso shout out to all the mothers, especially identity and access management mother's right on. So if you Mother's Day everyone stay healthy and I think with that we'll leave it and we'll
talk to y'all in the next one. You've been listening to the identity of the center podcast for more episodes of visit identity at the center.com.
