← All glossary categories

Identity Security

Foundational identity security concepts: ISPM, IVIP, attack paths, shadow admins, identity hygiene, and the modern identity-first security model.

15 terms in Identity Security

6 min read

What is Identity Security?

Identity security is the discipline of protecting human and non-human identities, the credentials they use, and the access they hold across an organization's environment.

Identity SecurityISPMIAM
5 min read

Why Identity is the New Security Perimeter

Cloud, SaaS, remote work, and APIs have erased the network perimeter. Identity has replaced it as the primary security boundary. Here's why — and what it means for defenders.

Zero TrustPerimeterCloud Security
7 min read

What is Identity Risk Management?

Identity risk management is the discipline of identifying, prioritizing, and reducing risks tied to human and non-human identities and their access. Learn what it means, why it matters, and how to do it well.

Identity RiskRisk ManagementISPM
6 min read

What is an Identity-Based Attack?

Identity-based attacks abuse legitimate identities, credentials, sessions, or trust relationships rather than exploiting software vulnerabilities. Learn the most common types and how to defend against them.

Identity AttackPhishingMFA Fatigue
7 min read

What is Privilege Escalation?

Privilege escalation is the process by which an attacker (or insider) gains higher permissions than they were originally granted. Learn the types, real-world examples, and how to defend against it.

Privilege EscalationLateral MovementActive Directory
6 min read

What is Lateral Movement?

Lateral movement is how attackers move from one system or identity to another inside an environment, expanding access without triggering detection. Learn the techniques, examples, and defenses.

Lateral MovementPass-the-HashActive Directory
7 min read

What is Credential Theft?

Credential theft is the act of stealing usernames, passwords, hashes, tokens, certificates, or session cookies to impersonate a legitimate identity. Learn the techniques, real examples, and defenses.

Credential TheftPhishingInfostealer
7 min read

What is Toxic Combination in Identity Security?

A toxic combination is a set of permissions, roles, or attributes that — while individually safe — combine to create unacceptable risk. Learn what they are, common examples, and how to detect them.

Toxic CombinationSeparation of DutiesIdentity Risk
7 min read

Identity Security Checklist for Beginners

A practical, beginner-friendly checklist for building identity security from the ground up — covering authentication, privilege, lifecycle, NHIs, AI agents, monitoring, and continuous improvement.

Identity SecurityChecklistBeginners Guide
6 min read

What Is Identity Security Posture Management (ISPM)?

Identity Security Posture Management, or ISPM, is the continuous practice of discovering, assessing, and reducing identity-related risk across human and non-human identities, access, permissions, and trust relationships.

ISPMIdentity SecurityPosture Management
6 min read

What Is an Identity Visibility & Intelligence Platform (IVIP)?

An Identity Visibility & Intelligence Platform (IVIP) unifies identity and access data across cloud, SaaS, on-premises, and IAM tools into actionable intelligence.

Identity VisibilityIntelligence PlatformIAM
5 min read

What Is Identity Attack Surface?

The identity attack surface is the full set of identity-related entry points, credentials, permissions, and trust relationships an attacker could exploit.

Identity Attack SurfaceAttack Surface ManagementLateral Movement
5 min read

What Is Attack Path Management (APM)?

Attack Path Management, or APM, is the continuous practice of discovering, analyzing, prioritizing, and reducing the routes an attacker could use to move from an initial foothold to critical assets.

Attack Path ManagementLateral MovementPrivilege Escalation
5 min read

What Is a Shadow Admin?

A Shadow Admin is an identity that can achieve administrative outcomes without being explicitly labeled as an administrator, hidden in nested groups or permissions.

Shadow AdminPrivilege EscalationDelegated Control
5 min read

What Is Identity Hygiene?

Identity hygiene is the ongoing practice of keeping the identity environment clean, accurate, and minimal: removing stale accounts, right-sizing access, and reviewing credentials.

Identity HygieneStale AccountsLeast Privilege

See your identity risk clearly.

Start with a 1-day Proof of Value in your own environment.

We respect your privacy

We use cookies to keep this site secure and working properly. With your permission, we also use optional cookies to understand usage and improve the experience. Cookie Policy

You can change your choice at any time.

Identity Security Glossary | Identity Security Terms | Forestall