I'm excited to share another in-depth research piece I've worked on for several months: The Future of Cloud-Native Identity Security. This research was done in collaboration with Alex Krongold of SentinelOne Ventures and Daniel Bartus at Felicis. We talked to many Identity leaders, CISOs, and founders to examine the modern workforce identity landscape and the crucial trends shaping its future. Here are some highlights: Traditionally, the identity landscape has involved: 1) Authentication (led by Microsoft Security and Okta) 2) Identity Governance and Administration (led by SailPoint ) 3) Privileged Access Management (led by CyberArk) As more enterprises move to the cloud and a proliferation of SaaS Apps continues to raise visibility concerns into digital identities, we anticipate a future consolidated identity platform that resembles something like this: 1) Visibility/Posture management 2) Authentication/Validation 3) Lifecycle Management (IGA + PAM + CIEM) 4) Analytics/Intelligence Layer 5) Identity Detection & Response (ITDR) This platform combines some of the components of the market map below. Emerging vendors like P0 Security, Veza, ConductorOne, Opal Security and many more are gradually creating this futuristic workforce identity platform. We continue to be impressed by CrowdStrike, SentinelOne, and Cisco's role within ITDR. If you're new to the identity ecosystem, the report gives you a full, in-depth overview. Please refer to the full report for a detailed overview of the identity landscape: https://lnkd.in/gQ-EaZCX *** A big thank you to P0 Security (An RSA Sandbox finalist) and Veza for supporting my research work and enabling me to go deep into this market. Thank you to all the founders, CEOs and identity leaders who spoke to us.
Excellent analysis, Francis Odum! I was wondering why Teleport was missing from this matrix. Teleport has a complete suite of solutions for most identity security problems.
Brian Joe
1mo
Thanks for sharing Francis Odum - love the depth here. Do you think identity visibility will converge with cloud/workload/config visibility, i.e. CNAPP type platforms adding an "identity" feature, or do you see those being separate for the foreseeable future? For example I don't see Wiz on your graphic...yet?
Josiah H.
1mo
Should Semperis be in ITDR
Most comprehensive analysis I've seen on the very much fragmented identity security vendor landscape 🔥 🚒
Taha Mubashir
1mo
Another great piece by Francis Odum
Wondering why cisco Duo wasn’t mentioned under authentication and access control Francis Odum 😊
Be sure to check out Silverfort. We Extend MFA protection to all your cloud and on-prem resources, including those that traditional MFA cannot support. Automate the discovery, monitoring and protection of all service accounts in your environment without password rotation. Prevent ransomware attacks from propagating within your environment, limiting their impact to just the initially infected machine. www.Silverfort.com
Ashis Das
1mo
Shouldn’t #jumpcloud be somewhere on this chart? https://www.linkedin.com/company/jumpcloud/
Divio
1mo
It's fascinating to read such an in-depth analysis on how the traditional pillars of authentication, identity governance, and privileged access management are evolving. Would love to read more about how the rise of passwordless authentication and zero trust initiatives are shaping the future of identity security. Keep up the stellar research Francis Odum & team! 👏 Looking forward to more of your analysis.
Software Investor | Cybersecurity Researcher & Instructor @ Software Analyst
1moSpecial thanks to all those who helped provide their thoughts and expertise: Shashwat Sehgal, Umaimah K., Balaji Parimi, Alex Bovee Graham Neray, Ofir Har-Chen, Brian Pontarelli, Rich Dandliker, Jason Garoutte, Matt Caulfield, many more.