Securing Non-Human Identities Part 3: Azure
Eric Kedrosky, CISO and Director of Cloud Security Research, Sonrai Security
Identities in a modern enterprise public cloud deployment are numerous and critical to securing your data. Non-human identities – like servers, VMs, serverless functions, applications, etc. – are being created at a rapid pace, sometimes by services without a person ever involved.
Azure has given us tools to help govern access, but rapid innovation breeds complexity. Governance requires a new approach that meets this reality of ephemeral compute and complex webs of permission combinations. This is the third in a multi-part series on nonhuman identities. This session focuses on Azure but touches elements of multi-cloud management as well. We’ll discuss: