|
|
Managing Director, MDR SecurityRajiv Shah has worked in the cyber, intelligence and security business for over 20 years, over which he has held a broad range of senior leadership roles with major multinational companies, working in the UK, USA as well as Australia. This has included business analysis, technical architecture, program delivery, operational management, strategy, business transformation, client relationship management and more. He now leads his own consulting business, MDR Security, and is a regular speaker at industry conferences and contributor to industry publications. Rajiv has a PhD in quantum physics and retains a keen interest in mathematics and science. |
Presentation: Who do you think you are? Digital identity and cybersecurity
Business analysts should be familiar with the importance of considering cyber security as a facet of much, if not all of the work that they do. In this presentation we will consider in more detail the challenge of knowing the identity of the user of a system and what this enables. This has always been important, but become even more so over the last 18 months – COVID-19 has meant that any corporate or public-facing system must be able to be securely accessed by users from anywhere, and users may need to be onboarded without ever physically being met by anyone from the organisation.
We will consider:
– The concept of digital identity within a single system
– Best practices for authenticating users, and providing them with the access that they need
– Digital identity within an ecosystem, ie how multiple systems can have shared view of who a user is; and why this can be useful
– Current and proposed approaches to manage digital identities
– The security and privacy related risks and opportunities that arise, and how to address these
Having developed a picture of digital identity, and how it should be considered as part of overall cyber security, we will conclude with some of the key questions that business analysts and others should be asking to ensure they maximise the opportunities of digital identity to better serve their customers and minimise security risks.
BABOK V3 Alignment: Chapter 09: Underlying Competencies
