Identity has become one of the largest drivers of enterprise risk, yet many organizations still approach it as an access management problem rather than a security and resilience issue. As human, non human and privileged identities continue to grow, fragmented tools, manual processes and poor visibility make it harder to know where risk truly lives.
This executive luncheon brings security leaders together for a candid, moderated discussion on how identity strategies must evolve to keep pace with the business. The conversation will explore how organizations are simplifying identity complexity, reducing identity-driven attack paths and using automation and governance to create more consistent, defensible access decisions. Attendees will share practical insights on what actually reduces risk at scale and what modern identity programs must prioritize next.

1.  Where do you believe your greatest identity risk exists today, and how confident are you that you can see and control it? (Human, non human, privileged, third party)
2. How much of your identity risk is driven by complexity and manual processes rather than technology gaps? What breaks first as identity scales?
3. In practice, how are you using identity to support Zero Trust rather than just talking about it? Where has it worked, and where has it stalled?
4. What signals tell you that your identity strategy is actually reducing risk? What are you measuring today, and what do you wish you could measure?
5. If identity were treated as a core security discipline rather than a set of tools or a compliance check box, what would change in how you invest, operate or govern it?