Latest news with #IAM
Forbes
3 days ago
- Business
- Forbes
Multiplayer AI: The New Operating Model For Identity Security
Dr. John Pritchard is the Chief Product Officer at Radiant Logic, responsible for the company's global product vision. AI-powered deepfakes and credential attacks are rewriting the rules of cyber risk, with identity-related breaches now costing organizations an average of $4.45 million per incident and accounting for over 70% of successful attacks on enterprise infrastructure and supply chains. Despite record investments in detection and response, breaches keep making headlines. Why? I call this the identity security paradox: More technology doesn't equal protection, especially if tools—and the people and AI agents using them—don't work together. Identity is the primary attack surface in the enterprise. Most organizations built their identity security stack on a traditional combination of IAM, IGA and PAM, but the rapid proliferation of cloud apps, machine identities and AI agents outpace these traditional controls. The result? Siloed data, unmanaged privileged accounts and hidden nonhuman identities—each a potential attack vector. Gartner finds that 65% of organizations still lack IAM maturity, weighed down by technical debt and fragmented architectures. Point solutions deployed to 'fix' audit findings or compliance gaps create more complexity, not less. Attackers exploit these seams, moving laterally between systems and identities that aren't monitored holistically. CISA's Silentshield Red Team Assessment demonstrated that decentralized teams and poor communication allowed adversaries to persist undetected, even when individual groups spotted anomalies. The lesson is clear: Solo efforts—whether a lone expert, an isolated AI agent or a disconnected tool—cannot keep pace with adversaries who are increasingly agile, automated and collaborative. To close these gaps, interoperability must become the standard for tools and the people and AI agents using them. Interoperability means more than connecting dashboards or sharing alerts. It's about ensuring that identity security posture management (ISPM) and identity threat detection and response (ITDR) systems share data, context and workflows in real time, across both human and machine identities. Gartner recommends a 'system of systems' approach, built on identity fabric principles, to support zero trust and intelligent automation. This means breaking down technical and organizational silos so prevention and detection teams operate from a unified, continuously updated single source of truth for identity data—a concept Gartner identifies as foundational for modern identity security. This trusted, authoritative data layer enables faster, more accurate decisions and ensures that every team acts on the same intelligence. When ISPM and ITDR interoperate, and when human and AI teammates collaborate based on shared reference points, blind spots shrink and attackers have fewer seams to exploit. I call the next evolution in identity security: multiplayer AI—intelligent systems designed to amplify human capabilities through enhanced teamwork. Gartner predicts by 2027, 90% of successful AI implementations in cybersecurity will focus on tactical task automation and process augmentation, not full autonomy or staff replacement. Multiplayer AI enables human and AI collaboration, breaking down silos and bridging gaps between prevention and detection. AI excels at analyzing vast datasets, detecting patterns humans miss and automating repetitive processes. Critical decisions, like determining whether anomalies are a threat or false positives, still require human judgment and contextual understanding. Studies show organizations using collaborative AI models—human decisions based on AI recommendations—see faster response times, fewer security incidents and improved resilience. The key is not just technology, but teamwork: AI handles the heavy lift of data processing and pattern recognition, while humans provide creativity, ethical oversight and business context. Thankfully, the industry is moving quickly. With the meteoric rise of agentic AI, open standards like Model Context Protocol (MCP) and Agent2Agent (A2A) are enabling AI agents from different vendors, clouds and frameworks to communicate, share context and coordinate tasks securely. Technology partners including OpenAI, Microsoft and Google are already adopting these protocols, breaking down silos that limit automation's impact. For business leaders, agentic AI means specialized agents for threat detection, access management, compliance and user behavior analytics can now form ad hoc teams-automating complex workflows and adapt to new threats. By 2028, Gartner forecasts multiagent AI will account for 70% of threat detection and response implementations, primarily to augment—not replace—staff. Early adopters will see measurable results: Leveraging agent-to-agent collaboration is predicted to cut attacker dwell time in compromised environments by up to 50%, while accelerating response and reducing operational risk. When humans and AI work together, identity security becomes faster, smarter and more resilient. 1. Establish an interoperability baseline. Audit ISPM and ITDR tools for data sharing and workflow integration across human and machine identities. Ensure architectures support agent-to-agent interoperability using open standards like MCP and A2A, so specialized agents can collaborate and automate cross-vendor workflows. Set quarterly targets to reduce IAM tool integration gaps. 2. Pilot tactical AI augmentation. Start with a focused, data-driven use case, such as automated privilege review or anomaly detection. Track improvement in response time and risk reduction. 3. Build AI literacy and human oversight. Train teams on both the benefits and limits of AI, including where human verification is required in critical workflows. 4. Continuously review identity hygiene. Use AI-driven discovery to identify unused or risky accounts, but require human validation before making changes. Aim to reduce privileged account sprawl and remediate orphaned accounts as they are detected. 5. Measure what matters. Track outcome-driven metrics such as percentage reduction in excessive permissions, improvement in MFA deployment rates and decreased incident response times. For example, reducing excessive permissions by 20% and increasing MFA coverage to 95% of privileged accounts within one year. The next breach won't be stopped by just another dashboard or a new AI agent. Organizations that have achieved true interoperability across tools, teams and AI will be able to respond more accurately to security issues. Multiplayer AI and agent-to-agent collaboration will lead the blueprints for resilience in the age of AI turbulence. Start by assessing your current environment for interoperability gaps, unify your tools and teams and empower your people with AI that amplifies—not replaces—their expertise. In the high-stakes game of identity security, victory belongs to those who play as a team. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
Hans India
13-06-2025
- Hans India
Google Cloud Outage Disrupts Global Services Including Gmail, Spotify, and OpenAI
In the early hours of Thursday, a sudden and widespread disruption stemming from Google Cloud sent shockwaves across the internet. Popular platforms including Gmail, Spotify, OpenAI tools like ChatGPT, and smart home devices powered by Google Home and Nest experienced unexpected outages, leaving millions of users unable to access essential digital services. The root cause of the incident was traced to a severe malfunction in Google Cloud's Identity and Access Management (IAM) system—a backbone service that governs authentication and user access permissions across apps relying on Google Cloud. When IAM faltered, services that depended on it for user verification and login functionality began to fail in rapid succession. Reports of service disruptions started emerging around 1:51 PM ET, as users around the world noticed erratic behaviours across multiple platforms. Some encountered strange error messages, while others faced complete lockouts from their accounts or saw smart home devices become unresponsive. High-profile services like Gmail, Spotify, ChatGPT, and various smart home ecosystems were among the most visible victims of the outage. For many, the blackout highlighted just how deeply embedded cloud platforms are in daily life—from email and music to AI tools and home automation. While users and tech leaders began flagging the problem across social media platforms like X (formerly Twitter) early on, an official confirmation from Google was slower to arrive. It wasn't until 6:16 PM ET that Google posted an update on its Cloud status page, acknowledging the issue as a service-impacting event caused by IAM-related failures. Shortly after the update, recovery efforts began in earnest, and most services were back online by late evening. The ripple effect of the glitch also touched other infrastructure players. Cloudflare, which handles content delivery and internet security for numerous websites, confirmed disruptions as well—though it noted that only those parts of its services relying on Google Cloud were affected. Replit CEO Amjad Masad was among the first to publicly identify Google Cloud as the root of the issue. Following this early warning, Google confirmed that "multiple GCP products are experiencing impact due to Identity and Access Management Service Issue." The incident has reignited debate over the increasing centralization of the internet's architecture. With so many critical services concentrated on a few massive cloud platforms, even a small glitch can cause massive, cascading failures across the globe. While Thursday's outage was resolved in a matter of hours, it has sparked renewed calls for decentralized and more resilient internet infrastructure, capable of weathering future system-level failures more gracefully. As cloud services continue to grow in complexity and dominance, the need for diversified, fail-safe systems is becoming more urgent—a sentiment echoed by experts and users alike following this latest digital disruption.
India Today
13-06-2025
- India Today
Google Cloud glitch takes down Gmail, Spotify, OpenAI services in midnight outage: Story in 5 points
In a late-night disruption that rippled across the internet, several major platforms, including Gmail, Spotify, OpenAI, and smart home services, experienced outages due to a global glitch in Google Cloud's systems. The incident left users unable to access essential services for hours. Although most platforms have now recovered, the outage has once again raised concerns about the heavy dependence on a few cloud service providers that power much of today's internet. Here is the full story in 5 Cloud glitch takes down Gmail, Spotify, OpenAI services in midnight outage: Story in 5 points-A serious issue within Google Cloud's Identity and Access Management (IAM) system triggered a widespread outage on Thursday. The bug affected user authentication and access permissions, leading to failures across several dependent apps and services.-Major online services, including Gmail, OpenAI tools like ChatGPT, Spotify, and various Google Home/Nest devices, faced interruptions. Users reported strange error messages, failed logins, and connection problems across different apps and smart devices. The problems started around 1:51PM ET, when users began reporting issues while using services that rely on Google Cloud. -While users and company executives flagged the issue early on platforms like X (formerly Twitter), Google's official acknowledgement came later. At around 6:16PM ET, Google updated its Cloud status page, confirming a service impact tied to IAM failures. Recovery began shortly after, with most services restored by late which supports content delivery and security for various websites, also reported a disruption. However, it clarified that only parts of its service, which rely on Google Cloud, were affected. Replit CEO Amjad Masad was one of the first to publicly confirm that Google Cloud was behind the widespread outages. This early heads-up was followed by Google's confirmation that "multiple GCP products are experiencing impact due to Identity and Access Management Service Issue."-The incident has once again exposed how centralised the web's infrastructure has become. With so many essential services relying on a few big cloud providers, even a minor glitch can lead to global disruption. While this outage was resolved within hours, it has prompted fresh calls for decentralised and more resilient internet systems.
Hans India
11-06-2025
- Business
- Hans India
Revolutionising access control in the age of intelligent security
In today's volatile digital world, where breaches are measured in billions and trust is as valuable as data, few cybersecurity leaders are making waves like Vamsy Priya Anne. Indian-born and globally recognised, Vamsy is redefining how modern enterprises secure their most critical asset-access. With a deep command of Identity Governance and Administration (IGA) platforms like Saviynt and SailPoint, she has architected Identity and Access Management (IAM) strategies for Fortune 500 firms. Her work has not only fortified digital boundaries but also elevated enterprise efficiency and regulatory compliance. 'Security isn't just a checkbox,' Vamsy says. 'It's a strategic foundation. When you manage access intelligently, you unlock both trust and transformation.' Her efforts have led to measurable business impact: a sharp decline in SLA breaches, a dramatic reduction in operational tickets, and streamlined access provisioning with rigorous security controls. These aren't just numbers; they're the outcome of strategic foresight grounded in technical precision. Described by senior leadership as a 'game-changing hire' and 'the best strategic decision' for their IAM programs, Vamsy consistently operates at the intersection of innovation and governance. She has led complex role mining efforts, enforced segregation of duties, and implemented least-privilege models that are both scalable and audit-ready. Yet, Vamsy's impact extends beyond traditional boundaries. Recognising the limitations of static Role-Based Access Control (RBAC), she has emerged as a vocal champion for AI-driven access governance. Her influential paper, Enhancing Role-Based Access Control through Artificial Intelligence and Machine Learning, lays out a pioneering vision for adaptive IAM systems. 'Tomorrow's access control will be intelligent and autonomous,' she explains. 'With AI, we can predict threats, detect anomalies in real time, and enforce policies dynamically, without slowing down the business.' Her leadership has already enabled enterprises to pilot machine learning models that analyse user behaviour, flag anomalies, and adjust access policies on the fly. These implementations have drastically reduced the threat surface and elevated organisational resilience. 'She doesn't just align with best practices, she redefines them,' remarks a global program director. 'Vamsy builds frameworks that others follow.' From C-suite strategy sessions to mentoring cross-functional teams, Vamsy remains a vital force in IAM centers of excellence and digital transformation programs. Her rare blend of technical depth, strategic insight, and business empathy makes her one of the defining cybersecurity leaders of this era. In a field where change is constant and risk is global, Vamsy Priya Anne stands out, not just for what she secures but for how she leads.
Yahoo
11-06-2025
- Business
- Yahoo
Docusign Stock Just Got Hammered. Here's Why the Market Got It Wrong and Why the Sell-Off Could Be a Buying Opportunity.
Docusign shares crashed after the company lowered its full-year billings guidance. The reason it did could actually turn out to be a long-term positive. Meanwhile, the sell-off has left the stock at an attractive valuation. 10 stocks we like better than Docusign › Docusign (NASDAQ: DOCU) shares tanked after the provider of electronic signature solutions cut its full-year guidance on billings. Billings are the total value of custom contracts signed, and are a leading indicator of future revenue growth. Despite the cut in billings guidance, I think the market is overreacting. Let's explore why. Docusign was a pandemic winner that saw steep revenue growth in 2020 and 2021. However, this growth wasn't a new normal; instead, it was a pulling forward of demand that then caused revenue growth to slow significantly. Docusign was far from the only company to experience this, as companies like Zoom Communications and Peloton Interactive also got caught in this trap. Since then, Docusign has been looking to help reinvigorate growth. It almost sold itself to go private and work on its turnaround outside of the prying eyes of the public market, but it ended up balking at the price and remained a public company. Last year, its turnaround seemed to begin gaining momentum, but with the company cutting its billing guidance, investors once again are concerned about where it's headed. Docusign now expects full-year billings in a range of $3.28 billion to $3.34 billion, down from its prior outlook of between $3.3 billion and $3.35 billion. However, it said this was largely a result of timing, not demand, noting that a change in its go-to-market strategy is impacting the timing of renewals. It added that it sees an improved and accelerating outlook for billings growth by the end of fiscal 2026 (in January 2026). The company is shifting its focus from e-signature services to a more comprehensive Intelligent Agreement Management (IAM) platform, and in the process is looking to upsell customers to IAM. It has historically seen a lot of early renewals, but with IAM, customers are taking more time to evaluate whether or not to upgrade, which in turn impacts billings. So despite the market reaction, this could actually be a positive if more customers are exploring upgrading to IAM. On this week's earnings call (for the first fiscal quarter), Docusign called IAM the fastest-growing offering in its history, as the platform surpassed 10,000 direct customers in the quarter. It expects IAM to account for a double-digit percentage of its "subscription book of business" exiting the fiscal year. It highlighted that international IAM deals were up over 50% sequentially, while the new IAM self-service channel is showing early promise with 1,000 new IAM customers added within three weeks of its launch. Overall, Docusign turned in solid fiscal Q1 results. Revenue jumped 8% from a year ago to $763.7 million, while subscription revenue also rose by 8% to $746.2 million. Professional service revenue increased by 4% to $17.5 million. Adjusted earnings per share (EPS) climbed 10% to $0.90; that easily surpassed analyst expectations for adjusted EPS of $0.81 on revenue of $748 million, as compiled by LSEG. International markets continued to lead the way with revenue growth of 10%, or 13% in constant currency. International revenue was 28% of Docusign's total revenue mix. Billings grew 4% to $740 million for the quarter. That was below prior guidance of $741 million to $751 million. The company ended the quarter with more than 1.7 million customers, an increase of 10% compared to a year ago. Large customers spending over $300,000 annually rose by 6% year over year to 1,123. Dollar net retention in the quarter was 101%, unchanged from last quarter. Docusign continues to be a strong cash flow generator. It produced $307.9 million of operating cash flow in the quarter, with free cash flow of $279.6 million. It ended the quarter with cash and investments of $1.1 billion and zero debt, after repurchasing $161.7 million worth of shares in the quarter. It also initiated a new $1 billion share repurchase program. Looking ahead, the company increased its full-year revenue and subscription revenue forecasts while lowering its billings guidance. It now expects revenue to be in the range of $3.151 billion to $3.163 billion, with subscription revenue of $3.083 billion to $3.095 billion. Below is a chart of the full-year guidance changes: Metric March 13 Guidance June 5 Guidance Revenue $3.129 billion to $3.141 billion $3.151 billion to $3.163 billion Subscription revenue $3.062 billion to $3.074 billion $3.083 billion to $3.095 billion Billings $3.3 billion to $3.354 billion $3.285 billion to $3.339 billion Data source: Docusign earnings releases. For the second fiscal quarter, the company projected revenue of $777 million to $781 million and subscription revenue of $760 million to $764 million, each representing growth of 6%. Billings are forecast to be between $757 million and $767 million, which would be growth of about 5% at the midpoint of guidance. The sell-off in Docusign stock drops its valuation to a forward price-to-earnings (P/E) ratio of just over 21 times this year's analyst estimates, and a price-to-sales (P/S) ratio of under 5. Approximately 7% of its market cap is also in cash. That's a pretty attractive valuation for a high-gross-margin software-as-a-service (SaaS) company generating a lot of cash. Of course, when it comes to tech stocks, growth often takes priority over valuation. That means investors will focus on continued momentum in revenue and billings. While the shift to IAM is impacting renewal timing and weighing on near-term billings, it should ultimately be a positive driver for long-term revenue growth. In that context, the market looks to be overreacting to Docusign's lowered billings outlook. As a result, I'd view this pullback as a buying opportunity. Before you buy stock in Docusign, consider this: The Motley Fool Stock Advisor analyst team just identified what they believe are the for investors to buy now… and Docusign wasn't one of them. The 10 stocks that made the cut could produce monster returns in the coming years. Consider when Netflix made this list on December 17, 2004... if you invested $1,000 at the time of our recommendation, you'd have $669,517!* Or when Nvidia made this list on April 15, 2005... if you invested $1,000 at the time of our recommendation, you'd have $868,615!* Now, it's worth noting Stock Advisor's total average return is 792% — a market-crushing outperformance compared to 173% for the S&P 500. Don't miss out on the latest top 10 list, available when you join . See the 10 stocks » *Stock Advisor returns as of June 9, 2025 Geoffrey Seiler has positions in Zoom Communications. The Motley Fool has positions in and recommends Docusign, Peloton Interactive, and Zoom Communications. The Motley Fool has a disclosure policy. Docusign Stock Just Got Hammered. Here's Why the Market Got It Wrong and Why the Sell-Off Could Be a Buying Opportunity. was originally published by The Motley Fool Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
