This session examines how traditional user-centric models fall short when workforce, partner, and customer identities intersect with a growing volume of service accounts, workloads, APIs, and AI-driven agents. We will explore how attackers chain human-focused techniques—like phishing, social engineering, and credential theft—with the abuse of machine identities and autonomous agents to move laterally and escalate privileges.

You will learn how IAM and security leaders will gain practical guidance to improve visibility across all three identity types, align governance and lifecycle controls for humans and non-humans alike, and build an actionable roadmap to bring human, machine, and agentic identities into a unified, risk-aware IAM strategy.