Identity Security
Foundational identity security concepts: ISPM, IVIP, attack paths, shadow admins, identity hygiene, and the modern identity-first security model.
15 terms in Identity Security
What is Identity Security?
Identity security is the discipline of protecting human and non-human identities, the credentials they use, and the access they hold across an organization's environment.
Why Identity is the New Security Perimeter
Cloud, SaaS, remote work, and APIs have erased the network perimeter. Identity has replaced it as the primary security boundary. Here's why — and what it means for defenders.
What is Identity Risk Management?
Identity risk management is the discipline of identifying, prioritizing, and reducing risks tied to human and non-human identities and their access. Learn what it means, why it matters, and how to do it well.
What is an Identity-Based Attack?
Identity-based attacks abuse legitimate identities, credentials, sessions, or trust relationships rather than exploiting software vulnerabilities. Learn the most common types and how to defend against them.
What is Privilege Escalation?
Privilege escalation is the process by which an attacker (or insider) gains higher permissions than they were originally granted. Learn the types, real-world examples, and how to defend against it.
What is Lateral Movement?
Lateral movement is how attackers move from one system or identity to another inside an environment, expanding access without triggering detection. Learn the techniques, examples, and defenses.
What is Credential Theft?
Credential theft is the act of stealing usernames, passwords, hashes, tokens, certificates, or session cookies to impersonate a legitimate identity. Learn the techniques, real examples, and defenses.
What is Toxic Combination in Identity Security?
A toxic combination is a set of permissions, roles, or attributes that — while individually safe — combine to create unacceptable risk. Learn what they are, common examples, and how to detect them.
Identity Security Checklist for Beginners
A practical, beginner-friendly checklist for building identity security from the ground up — covering authentication, privilege, lifecycle, NHIs, AI agents, monitoring, and continuous improvement.
What Is Identity Security Posture Management (ISPM)?
Identity Security Posture Management, or ISPM, is the continuous practice of discovering, assessing, and reducing identity-related risk across human and non-human identities, access, permissions, and trust relationships.
What Is an Identity Visibility & Intelligence Platform (IVIP)?
An Identity Visibility & Intelligence Platform (IVIP) unifies identity and access data across cloud, SaaS, on-premises, and IAM tools into actionable intelligence.
What Is Identity Attack Surface?
The identity attack surface is the full set of identity-related entry points, credentials, permissions, and trust relationships an attacker could exploit.
What Is Attack Path Management (APM)?
Attack Path Management, or APM, is the continuous practice of discovering, analyzing, prioritizing, and reducing the routes an attacker could use to move from an initial foothold to critical assets.
What Is a Shadow Admin?
A Shadow Admin is an identity that can achieve administrative outcomes without being explicitly labeled as an administrator, hidden in nested groups or permissions.
What Is Identity Hygiene?
Identity hygiene is the ongoing practice of keeping the identity environment clean, accurate, and minimal: removing stale accounts, right-sizing access, and reviewing credentials.
See your identity risk clearly.
Start with a 1-day Proof of Value in your own environment.