Identity and Access Management

Identity and access management is the foundation of secure systems and has always been a critical part of our cybersecurity practice.

I help teams design and implement identity systems that are secure, usable, and practical to operate. This includes MFA and passwordless authentication, SSO and federation, identity lifecycle management, and access architecture for users and APIs. The goal is to create an identity system that makes access understandable and enforceable for the people who rely on it, while also being manageable and adaptable for the teams that operate it.