Here’s a six minute highlight reel of last week’s CISO Series Video Chat: “Hacking Privileged Identities Gone Bad: An hour of critical thinking about accidental and malicious behavior from humans and machines causing havoc in the cloud”.

Watch the full video

Joining me in this discussion was:

Got feedback? Join the conversation on LinkedIn.

Huge thanks to our sponsor CloudKnox

CloudKnox Security is the market leader within Gartner’s newly defined Cloud Infrastructure Entitlement Management (CIEM) segment. CloudKnox transforms how organizations implement the principle of least privilege in the cloud and empowers security teams to proactively address accidental and malicious credential misuse by continuously detecting and mitigating insider risks.

Best Bad Ideas

“Change a shared admin account password for users per a request, so just the last user request has it.” – Wil Tulaba, senior security administrator, Cognex Corporation

“Play ‘Chutes & Ladders’ as a drinking game. Every time you slide down a chute you must change your PAM vendor.” – Dutch Schwartz, strategic lead, AWS Global Security Services Team, AWS

Best quotes from the chat room

“AI bias is definitely a huge issue and can reflect human bias- it all depends what sort of data the algorithms are trained and tuned on.” – Mel Cox, director of sales, Continuity Focus

“High level execs should not have access to a lot of corporate data. I don’t have access to customer data and I should not. Only operation folk.” – Jeff Costlow, deputy CISO, ExtraHop

“I think PAM is MORE about process than the tech used. Tech can help but does not take the place of functional role based access for general users, privilege users and the process a you use to define who needs access to what, for how long and implementing reviews on a defined cadence.” Mathew Biby, CISO, Satcom Direct