#404

Описание: This episode is sponsored by Bravura Security. Learn more at bravurasecurity.com/idac

This is a Sponsor Spotlight episode of the Identity at the Center podcast. Jim McDonald and Jeff Steadman are joined by Bart Allan, General Manager at Bravura Security, to discuss why enterprise password management remains a critical piece of identity security even as organizations pursue passwordless strategies. Bart shares Bravura's history dating back to 1992, starting with self-service password reset and evolving into a full identity security platform spanning identity management, privileged access management, and enterprise password management. The conversation digs into the uncomfortable truth that while organizations may get 80% of their applications onto modern authentication, the remaining 20% still rely on passwords, creating real security risk. Bart explains how treating enterprise passwords the way organizations treat privileged credentials, with automated rotation and centralized management, can remove the human element from password creation and reduce exposure to breaches and social engineering. The group also discusses help desk social engineering attacks, breach recovery challenges, deployment strategies for rolling out an enterprise password manager, and the emerging role of password managers as passkey managers for portability. The episode wraps with some outdoor adventure stories from Bart and Jim.

Connect with Bart:   / bartholomewallan  

Connect with us on LinkedIn:

Jim McDonald:   / jimmcdonaldpmp  

Jeff Steadman:   / jeffsteadman  

Visit the show on the web at idacpodcast.com

TIMESTAMPS
00:00 - Introduction and welcome
01:00 - Sponsor Spotlight overview and Bravura Security introduction
01:52 - Bart Allan's background in identity
03:30 - History of Bravura Security from 1992 to today
05:39 - How the Bravura name came to be
07:00 - What makes Bravura unique in the identity market
08:33 - Why password management still matters
09:58 - The uncomfortable truth about passwords and the 80/20 problem
13:00 - Personal vs enterprise password managers
16:00 - The last mile to passwordless and legacy systems
19:00 - Why storing passwords is not enough without active management
22:00 - Help desk social engineering and the human element
25:00 - Breach response and the fog of war
31:00 - Scattered spider scenarios and credential reset at scale
35:00 - Is a password manager the only viable option for the final 20%?
38:00 - The future of password managers as passkey managers
40:00 - Tips for deploying an enterprise password manager
42:45 - Measuring success with an enterprise password manager
45:17 - Lighter side of the conversation begins
46:00 - Bart's backcountry skiing avalanche story from Rogers Pass
50:30 - Jim's lightning storm story from backpacking in Yosemite
52:53 - Final thoughts from Bart on the passwordless journey
54:00 - Wrap up and outro

KEYWORDS
IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Bravura Security, Bart Allan, password management, enterprise password manager, passwordless, passkeys, privileged access management, identity security, help desk social engineering, breach recovery, credential rotation, self-service password reset, identity verification, IAM operations, shadow IT, FIDO, sponsor spotlight, password vault, legacy systems