1
00:00:08,700 --> 00:00:16,300
Identity and access management. 
Welcome to the identity of the 

2
00:00:16,300 --> 00:00:17,900
center podcast. 
I'm Jeff. 

3
00:00:17,900 --> 00:00:19,100
And that's Jim. 
Hey, Jim. 

4
00:00:19,700 --> 00:00:20,200
Hey. 
Jeff. 

5
00:00:20,200 --> 00:00:21,800
How's it going? 
It's good. 

6
00:00:21,800 --> 00:00:25,600
It's Friday. 
And Friday night was a good 

7
00:00:25,600 --> 00:00:29,600
thing Mother's Day. 
And it's looked at looking like 

8
00:00:29,600 --> 00:00:31,500
this. 
Crazy weather throughout the 

9
00:00:31,500 --> 00:00:34,900
u.s. 
There's a snowstorm, hit the 

10
00:00:34,900 --> 00:00:36,300
Northeast. 
I think. 

11
00:00:36,300 --> 00:00:38,500
I think we'll be okay here in 
Chicago, but it's been kind of 

12
00:00:38,500 --> 00:00:42,200
rainy the last few days. 
Yeah. 

13
00:00:42,200 --> 00:00:44,100
I'm the southeast. 
Look like it. 

14
00:00:44,100 --> 00:00:45,700
Son. 
Seasonably cool. 

15
00:00:46,700 --> 00:00:48,900
Usually it's the time of year 
where it starts getting. 

16
00:00:49,400 --> 00:00:53,400
I'm sure you'd be uncomfortable 
to sit down with normally right 

17
00:00:53,400 --> 00:01:03,300
now. 
Low humidity and I mean this is 

18
00:01:03,400 --> 00:01:06,600
this is great living. 
Whether yeah, the high heat and 

19
00:01:06,600 --> 00:01:10,200
humidity is something that 
really are my Is My Kryptonite 

20
00:01:10,200 --> 00:01:13,200
and I think I think you know 
that well, I know the humidity 

21
00:01:13,200 --> 00:01:16,800
is, I mean, you know, I might as
well share their story with 

22
00:01:16,800 --> 00:01:18,100
everybody Jeff Perry. 
Yeah. 

23
00:01:18,100 --> 00:01:20,500
I know. 
I always tell it which is the 

24
00:01:20,500 --> 00:01:23,100
time. 
We went to Orlando in January 

25
00:01:27,300 --> 00:01:28,900
for Lando. 
It's humid. 

26
00:01:28,900 --> 00:01:32,900
It was In the 80s, I think but 
humidity is always the thing 

27
00:01:32,900 --> 00:01:35,900
that I really hate about Florida
and really kind of any human 

28
00:01:35,900 --> 00:01:40,100
location. 
Pretty sure it was 74 degrees 

29
00:01:41,000 --> 00:01:44,000
away man. 
It was like 100 degrees and it 

30
00:01:44,000 --> 00:01:46,000
was like a thousand percent 
humidity. 

31
00:01:57,300 --> 00:02:00,700
And it was not not my favorite 
type of whether that's for sure.

32
00:02:01,300 --> 00:02:06,900
That's very so, it's Friday. 
And today is May 8th. 

33
00:02:06,900 --> 00:02:11,200
Yesterday though was May 7th. 
And that was world s word day. 

34
00:02:11,600 --> 00:02:15,400
How did you celebrate? 
I mean, you know, it's like 

35
00:02:15,400 --> 00:02:19,400
Christmas for me. 
I just I celebrate the password 

36
00:02:20,500 --> 00:02:24,900
but up a password tree. 
No, I just reminded myself that 

37
00:02:25,000 --> 00:02:28,600
that quote from From Office 
Space. 

38
00:02:28,600 --> 00:02:31,000
I celebrate his entire 
collection. 

39
00:02:31,600 --> 00:02:36,100
I celebrate all of my password. 
I mean, you know, I think that 

40
00:02:36,800 --> 00:02:41,100
I'm just gonna sound so original
here, but passwords are crap. 

41
00:02:41,700 --> 00:02:46,700
They really should have been 
eliminated long ago because now 

42
00:02:46,700 --> 00:02:52,500
the internet is such an integral
part of our everyday life and 

43
00:02:52,800 --> 00:02:55,100
her. 
So ingrained in how we 

44
00:02:55,100 --> 00:02:59,900
authenticate over the internet. 
They're almost barely imagine a 

45
00:02:59,908 --> 00:03:04,500
world without passwords yet. 
That's where we need to head. 

46
00:03:05,300 --> 00:03:06,900
Yeah. 
Password is not modern 

47
00:03:06,900 --> 00:03:08,400
authentication. 
That's for sure. 

48
00:03:09,900 --> 00:03:13,200
You know, once you get a hold of
a password, it's really just a 

49
00:03:13,208 --> 00:03:14,800
matter of time. 
Even if it's encrypted, right, 

50
00:03:14,800 --> 00:03:16,900
you're running. 
If you gotta encrypted hash 

51
00:03:16,900 --> 00:03:20,700
somewhere, you're running 
rainbow tables and once that has

52
00:03:20,700 --> 00:03:22,400
been cracked, once it's cracked 
everywhere. 

53
00:03:22,400 --> 00:03:24,300
And that's you know, why? 
The guidance is always have a 

54
00:03:24,308 --> 00:03:27,900
different password for each 
website, but The reality of the 

55
00:03:27,908 --> 00:03:29,700
world, right? 
That's very hard to do. 

56
00:03:30,000 --> 00:03:33,300
Most people pick, you know, one,
two or three different passwords

57
00:03:33,300 --> 00:03:34,800
and they just start adding 
numbers to it. 

58
00:03:34,800 --> 00:03:36,400
The becomes very easy to solve 
for. 

59
00:03:38,200 --> 00:03:41,200
I like the concept of moving 
towards, you know, password 

60
00:03:41,200 --> 00:03:43,400
list, but I don't think we're 
quite there yet though. 

61
00:03:43,400 --> 00:03:47,800
It is gaining in popularity. 
I've had a couple of passwords 

62
00:03:47,800 --> 00:03:52,100
that I reuse. 
So one of the, one of the things

63
00:03:52,100 --> 00:03:58,600
that I read a long time ago that
I thought was, Good advice. 

64
00:03:58,800 --> 00:04:06,400
Was that because I don't use a 
password safe to have kind of a 

65
00:04:06,500 --> 00:04:10,200
framework for how you use 
password, think so, or really 

66
00:04:10,600 --> 00:04:14,000
kind of critical applications 
that I want to make. 

67
00:04:14,000 --> 00:04:17,899
Sure, never get cracked. 
I either ensure that one. 

68
00:04:17,899 --> 00:04:20,800
They have multi factor or two 
that I'm using a unique path. 

69
00:04:21,399 --> 00:04:24,700
In other words. 
They invest the Life Energy and 

70
00:04:24,700 --> 00:04:26,700
making sure I have a unique 
password for that. 

71
00:04:27,100 --> 00:04:29,000
Site, I like that. 
The Life Energy. 

72
00:04:29,300 --> 00:04:30,500
Yeah. 
Well, I've had I think some of 

73
00:04:30,508 --> 00:04:34,100
my energy to have like, you know
extra passwords that you don't 

74
00:04:34,100 --> 00:04:36,000
have elsewhere and to remember 
them. 

75
00:04:36,200 --> 00:04:40,400
And then there are sites where 
it's like, okay, I am not going 

76
00:04:40,400 --> 00:04:44,200
to store my credit cards with 
this, you know, online Commerce 

77
00:04:44,200 --> 00:04:45,600
site. 
I'm probably going to buy 

78
00:04:45,600 --> 00:04:49,300
something or here once or twice.
I'm, they're making me create an

79
00:04:49,300 --> 00:04:51,600
account. 
So I'm just going to reuse that 

80
00:04:51,600 --> 00:04:53,600
same password of used million 
time. 

81
00:04:55,100 --> 00:04:58,600
And so I do that. 
And one thing I've noticed is 

82
00:04:58,600 --> 00:05:02,000
that Google Chrome now has a 
feature to kind of Shame you. 

83
00:05:02,700 --> 00:05:06,800
And it's I think it's a really 
cool feature which is like, oh, 

84
00:05:06,800 --> 00:05:09,800
hey boss, you're you know, this 
pastor is already on the dark 

85
00:05:09,800 --> 00:05:11,800
web. 
Holy moly. 

86
00:05:11,800 --> 00:05:14,900
Wow, because I need to go make a
change. 

87
00:05:15,100 --> 00:05:16,600
Yeah. 
Yeah, like, okay. 

88
00:05:16,600 --> 00:05:18,800
Maybe I should stop using that 
one from now on. 

89
00:05:20,100 --> 00:05:23,500
But yeah, you know, that's 
that's kind of been my Approach.

90
00:05:23,500 --> 00:05:35,000
Is that either ensure the 
multi-factor or I'm using a 

91
00:05:35,500 --> 00:05:38,800
fresh new password. 
He really taking a risk based 

92
00:05:38,800 --> 00:05:43,000
approach, then to ask for it is 
it is a risk-based approach and 

93
00:05:44,000 --> 00:05:48,200
partially the laziness because 
they know if I were to use a 

94
00:05:48,200 --> 00:05:55,500
password safe, I could be doing 
something much more secure by I 

95
00:05:55,500 --> 00:05:59,500
find that there's a certain 
level of inconvenience involved 

96
00:05:59,500 --> 00:06:03,200
with doing that especially when 
you have many devices. 

97
00:06:03,200 --> 00:06:07,400
And those devices span different
ecosystems. 

98
00:06:07,700 --> 00:06:10,700
We've got like, you know, some 
apple stuff, and you grab some 

99
00:06:11,100 --> 00:06:13,600
Microsoft stuff, and some Google
stuff. 

100
00:06:13,600 --> 00:06:17,000
And you want to just be able to 
log into something. 

101
00:06:19,600 --> 00:06:22,100
I'm making excuses, specially 
for somebody to use in this 

102
00:06:22,100 --> 00:06:25,300
industry, but it kind of shows. 
Chose the problem, even somebody

103
00:06:25,300 --> 00:06:30,400
who understands all the risks of
doing things, exactly. 

104
00:06:30,400 --> 00:06:32,100
The way I do them. 
I do them my way. 

105
00:06:32,100 --> 00:06:36,200
Anyhow, you accepted the risks. 
I fall on the other side of it. 

106
00:06:36,200 --> 00:06:39,100
I use a password manager. 
I use LastPass. 

107
00:06:39,200 --> 00:06:44,000
And, you know, I wouldn't say 
I've always done it, but since 

108
00:06:44,000 --> 00:06:47,300
I've become more involved with 
security, I've tried to go more 

109
00:06:47,300 --> 00:06:51,700
random passwords and the 
struggle of, you know, cross 

110
00:06:51,700 --> 00:06:55,300
devices and different. 
Since between Apple and 

111
00:06:55,300 --> 00:06:58,300
Microsoft IOS and Android, I'm 
someone who is constantly 

112
00:06:58,300 --> 00:07:01,000
jumping around between all of 
those services. 

113
00:07:01,100 --> 00:07:05,400
So, I've settled on LastPass as 
my password manager, because 

114
00:07:05,400 --> 00:07:06,900
they have an app, basically for 
everything. 

115
00:07:08,200 --> 00:07:11,900
And that lets me really kind of 
tame the Beast a little bit. 

116
00:07:11,900 --> 00:07:17,100
So I use, you know, randomized 
passwords and, you know, all the

117
00:07:17,108 --> 00:07:20,400
different complexity things and 
I try and I been trying to make 

118
00:07:20,400 --> 00:07:22,800
a more conscious effort of 
having a different password for 

119
00:07:22,800 --> 00:07:25,700
each website. 
If I have it as I come across 

120
00:07:25,700 --> 00:07:30,200
it, you know, I've been going to
the password change process to 

121
00:07:30,400 --> 00:07:35,000
kind of get it synced up and 
that so far has worked pretty 

122
00:07:35,000 --> 00:07:36,900
well for me. 
You know, my my workflow 

123
00:07:36,900 --> 00:07:43,100
stretches across Windows 
machines back Mac OS and iOS or 

124
00:07:43,100 --> 00:07:46,400
phone and tablet. 
And I found LastPass has made it

125
00:07:46,407 --> 00:07:48,800
a lot easier for me. 
So obviously we don't have 

126
00:07:48,800 --> 00:07:50,700
sponsors on this show. 
Otherwise, we'd have a better 

127
00:07:50,700 --> 00:07:53,800
dream situation as Ron 
mentioned. 

128
00:07:54,000 --> 00:07:56,500
Weak. 
But, you know, it's something 

129
00:07:56,500 --> 00:07:59,000
that I've been using for years 
and it's free at least the 

130
00:07:59,000 --> 00:08:01,000
version, you know that I'm using
and it works. 

131
00:08:01,000 --> 00:08:06,100
Well, so now we work in the 
company of under 100 employees 

132
00:08:06,100 --> 00:08:12,300
and so we don't have managed 
devices, but I can imagine that,

133
00:08:12,400 --> 00:08:16,800
you know, if you were working in
a corporation, you could have a 

134
00:08:16,800 --> 00:08:21,000
number of passwords for the 
corporation and personal may, or

135
00:08:21,000 --> 00:08:23,800
may not be allowed to install 
last. 

136
00:08:23,900 --> 00:08:27,700
Passing the corporate devices. 
Yeah. 

137
00:08:53,800 --> 00:08:57,000
Yeah, that's why you've got to 
make sure that I mean, you know,

138
00:08:57,400 --> 00:09:00,600
use MFA even on that your I'm 
using, you know, a password by 

139
00:09:00,600 --> 00:09:03,400
itself that is not used anywhere
else just facility for that. 

140
00:09:03,400 --> 00:09:07,200
I mean, it is a lot of work and 
I think it covers up the problem

141
00:09:07,200 --> 00:09:12,200
which is passwords just 
inherently are insecure and I'm 

142
00:09:12,200 --> 00:09:16,400
excited about password lists, 
you know, future, whether you 

143
00:09:16,400 --> 00:09:18,700
know, how often or how quickly 
that comes along, you got things

144
00:09:18,700 --> 00:09:21,200
like Windows. 
Hello, and you know that akator 

145
00:09:21,200 --> 00:09:25,200
apps and so forth. 
I Recently, there was an article

146
00:09:25,200 --> 00:09:30,400
that at Microsoft's ignite, 
2019, which is about six months 

147
00:09:30,400 --> 00:09:32,700
ago. 
There were 100 million people 

148
00:09:33,000 --> 00:09:35,600
that were using password, 
password list of logins every 

149
00:09:35,600 --> 00:09:37,700
month and that includes things 
like Windows. 

150
00:09:37,700 --> 00:09:39,200
Hello. 
It's gonna cater app, you know? 

151
00:09:39,200 --> 00:09:42,400
Push-based and then different 
security type. 

152
00:09:42,400 --> 00:09:46,100
He's like, etcetera and they've 
seen as of a couple days ago 

153
00:09:46,100 --> 00:09:50,700
that's grown by 50% already. 
So now 150 million people are 

154
00:09:50,700 --> 00:09:52,400
using Capital. 
So I think it's great. 

155
00:09:53,700 --> 00:09:56,000
You know, I think it's a step in
the right direction, but I'll be

156
00:09:56,000 --> 00:09:58,400
happy when we can finally say. 
Yeah, the password truly is 

157
00:09:58,400 --> 00:10:00,500
dead. 
But I have a feeling that's 

158
00:10:00,500 --> 00:10:02,700
going to be your carrying 
something else. 

159
00:10:02,700 --> 00:10:03,700
That's your password. 
Right? 

160
00:10:03,700 --> 00:10:06,700
It's a lot of companies are 
focusing on your phone as kind 

161
00:10:06,700 --> 00:10:10,300
of, like, your secondary off, or
even maybe even primary 

162
00:10:10,400 --> 00:10:13,300
authentication in some cases, 
right? 

163
00:10:13,500 --> 00:10:17,300
And having a session of tiger 
over who was with earlier this 

164
00:10:17,300 --> 00:10:21,500
week and we're talking about, 
you know, the whole idea behind 

165
00:10:21,900 --> 00:10:25,400
like why? 
Don't companies or why don't 

166
00:10:25,500 --> 00:10:30,500
more folks invest in, you know, 
hard tokens. 

167
00:10:31,000 --> 00:10:36,200
And part of it is that it seems 
like something is like there. 

168
00:10:36,200 --> 00:10:39,900
It's hot. 
It's the now, but the next thing

169
00:10:39,900 --> 00:10:43,000
is right around the corner. 
And so, how much, how many 

170
00:10:43,000 --> 00:10:44,800
dollars would you invest in 
something? 

171
00:10:44,800 --> 00:10:46,900
Like that? 
Knowing is probably going to be 

172
00:10:46,900 --> 00:10:52,000
obsoleted in a couple of years. 
Yeah, I can imagine, you know, 

173
00:10:52,000 --> 00:10:55,900
going back to my operations days
having to manage RSA tokens and,

174
00:10:56,400 --> 00:11:00,000
you know, having to deal with 
the logistics of Hardware Keys, 

175
00:11:01,400 --> 00:11:04,300
is a challenge, right? 
I mean, you've got to get them 

176
00:11:04,300 --> 00:11:07,300
out to people, people lose them.
They break, you know, they're 

177
00:11:07,300 --> 00:11:09,100
not configured, right? 
And accomplish the things going 

178
00:11:09,100 --> 00:11:12,400
wrong. 
Now, that was admitted really 15

179
00:11:12,400 --> 00:11:14,900
years ago, roughly. 
So now, the process has gotten a

180
00:11:14,908 --> 00:11:16,900
lot better right now. 
It's now it's more of a 

181
00:11:16,900 --> 00:11:21,300
app-based thing on your phone, 
but I think it'll be interesting

182
00:11:21,300 --> 00:11:24,600
to see how this space of all is 
because there's also other 

183
00:11:24,600 --> 00:11:26,700
things to right. 
There Li keyboard analysis, 

184
00:11:27,100 --> 00:11:31,300
you're typing Cadence, right? 
Can be a way to biometrically 

185
00:11:31,300 --> 00:11:32,900
authenticate, which I find 
interesting. 

186
00:11:34,300 --> 00:11:37,000
I'm trying to remember a typing.
DNA was one of the examples that

187
00:11:37,000 --> 00:11:42,400
we've looked at in the past as 
brand of evaluate space, but I'm

188
00:11:42,400 --> 00:11:44,800
waiting for, you know, natural 
language. 

189
00:11:44,800 --> 00:11:48,900
You know, when is the computer 
from Star Trek going to be there

190
00:11:48,900 --> 00:11:52,000
and be able Bill natural 
language queries of the negate 

191
00:11:52,000 --> 00:11:53,600
based on voice patterns and 
prints Pollock. 

192
00:11:53,600 --> 00:11:59,100
Good stuff has kind of routine, 
you know, absolutely anything we

193
00:11:59,100 --> 00:12:03,600
can do to get closer to. 
What did they have in Star Trek,

194
00:12:03,600 --> 00:12:08,400
where it was a room where it was
like a virtual reality Beyond 

195
00:12:09,800 --> 00:12:13,000
Holodeck. 
I mean, that is like, that's 

196
00:12:13,000 --> 00:12:15,300
everything right there. 
I don't think I've ever heard. 

197
00:12:16,800 --> 00:12:19,600
Well, that's why I think that's 
kind of where VR is right now 

198
00:12:19,600 --> 00:12:22,900
and You know, I've I've dabbled 
around with it here and there 

199
00:12:22,900 --> 00:12:25,500
and it is very good. 
But your it's still for the most

200
00:12:25,500 --> 00:12:26,700
part. 
Unless you've got a really good 

201
00:12:26,700 --> 00:12:31,000
set up a tethered experience. 
So we are stuck in a room or you

202
00:12:31,000 --> 00:12:32,800
have a wire something connected 
to you. 

203
00:12:32,800 --> 00:12:34,800
And there's there's Wireless 
versions of it out there too. 

204
00:12:34,800 --> 00:12:36,800
But you're still very limited by
the space. 

205
00:12:37,200 --> 00:12:42,900
I have seen that there are some 
like, you know, like laser tag 

206
00:12:42,900 --> 00:12:46,400
type style games right that take
place in giant warehouses where 

207
00:12:46,800 --> 00:12:49,900
it's a VR experience, but man, 
I'd hate to be running, you 

208
00:12:49,900 --> 00:12:51,700
know. 
Headfirst and correction tool 

209
00:12:51,700 --> 00:12:53,300
wall or something like that, 
right? 

210
00:12:53,300 --> 00:12:57,200
Exactly boundaries, but I think 
you know, it's the beginnings of

211
00:12:57,200 --> 00:12:59,000
it. 
It's like anything else at some 

212
00:12:59,000 --> 00:13:00,800
point. 
It'll miniaturize and get 

213
00:13:00,800 --> 00:13:03,400
cheaper and become standard. 
Microsoft been trying to make 

214
00:13:03,400 --> 00:13:06,600
hololens a thing for years and 
hasn't caught on the consumer 

215
00:13:06,600 --> 00:13:10,400
space. 
But this is all things that we 

216
00:13:10,400 --> 00:13:14,500
are PR is going to to go the 
route of 3D TV. 

217
00:13:15,400 --> 00:13:17,600
Well, I don't know. 
I know a lot of people were like

218
00:13:18,000 --> 00:13:22,000
with 3D TV was hot. 
A lot of I don't care about 

219
00:13:22,000 --> 00:13:23,200
that. 
I don't want that. 

220
00:13:23,500 --> 00:13:25,100
I thought it was the coolest 
thing ever. 

221
00:13:26,000 --> 00:13:27,800
I think it's very cool. 
But a lot of people it makes a 

222
00:13:27,800 --> 00:13:32,300
lot of people sick. 
Yeah, they it's not good enough 

223
00:13:32,300 --> 00:13:37,300
to the Quality, where the 
experience in the Fidelity, can 

224
00:13:37,300 --> 00:13:40,500
trick the mines for all people. 
The other thing too, is the 

225
00:13:40,500 --> 00:13:43,900
discomfort people who wear 
glasses, have to put something 

226
00:13:43,900 --> 00:13:46,900
over there, you know, over that 
to be able to see things. 

227
00:13:46,900 --> 00:13:49,600
It's and I used to wear glasses,
but right before I had, you 

228
00:13:49,600 --> 00:13:52,900
know, Like done in that. 
Struggle is real. 

229
00:13:52,900 --> 00:13:56,400
Trust me, you know, putting a VR
mask over your glasses is not 

230
00:13:56,400 --> 00:13:59,000
the most comfortable thing in 
the world and there's a lot of 

231
00:13:59,000 --> 00:14:01,200
different things that kind of go
into the comfort of it. 

232
00:14:03,000 --> 00:14:05,900
Who knows, maybe maybe Holograms
will become, you know, the thing

233
00:14:05,900 --> 00:14:09,800
at some point when you have 
first are working together, you 

234
00:14:09,800 --> 00:14:12,200
were really into VR useful. 
A lot of money on it. 

235
00:14:12,500 --> 00:14:13,700
What were you saying with that? 
Now? 

236
00:14:13,700 --> 00:14:16,700
Are you doing much? 
I'm staring at it right now. 

237
00:14:16,700 --> 00:14:19,900
It's in a box underneath my, my 
computer desk. 

238
00:14:20,000 --> 00:14:23,300
Here. 
It's kind of a hassle for me to 

239
00:14:23,300 --> 00:14:24,800
kind of pull out and put 
together. 

240
00:14:24,800 --> 00:14:29,100
The technology definitely works 
but it is like I mentioned have 

241
00:14:29,100 --> 00:14:31,700
a tethered experience and I 
really haven't been using it. 

242
00:14:31,700 --> 00:14:33,700
It's probably time for me to say
goodbye to it. 

243
00:14:33,700 --> 00:14:38,100
But for those wondering, I have 
the eight of the HTC Vive 

244
00:14:38,100 --> 00:14:40,100
there's Oculus, which is owned 
by Facebook. 

245
00:14:40,100 --> 00:14:43,300
Now, they have another, you 
know, product out there as well.

246
00:14:43,300 --> 00:14:46,100
That's pretty good. 
But yeah, I find myself not 

247
00:14:46,100 --> 00:14:51,600
using it and it's not for 
Anything other than I guess, 

248
00:14:51,600 --> 00:14:53,200
General laziness. 
Let's put it that way. 

249
00:14:55,000 --> 00:14:58,800
Yeah, that's what I mean. 
It has to be worth the time 

250
00:14:58,800 --> 00:15:00,500
investment for you. 
Otherwise, you're not going to 

251
00:15:00,500 --> 00:15:01,600
do it. 
Yeah. 

252
00:15:01,600 --> 00:15:04,300
I mean there's there's a lot to 
set up for that one. 

253
00:15:04,300 --> 00:15:06,400
I think the newer versions are a
lot better where you don't have 

254
00:15:06,400 --> 00:15:09,500
to put these base station ups. 
And you know, you don't have 

255
00:15:09,500 --> 00:15:11,800
wires come over the place. 
I think Oculus is has gotten 

256
00:15:11,800 --> 00:15:14,400
that part, right? 
The experience is a lot better 

257
00:15:14,400 --> 00:15:18,500
and you know, who knows from a 
virtual workspace perspective, 

258
00:15:18,500 --> 00:15:21,900
you know, that might be A method
to look at maybe. 

259
00:15:22,100 --> 00:15:25,500
Maybe your mask your VR mask 
will become your device. 

260
00:15:26,100 --> 00:15:27,600
Right? 
Right. 

261
00:15:27,600 --> 00:15:31,400
Or yeah. 
So, with the vrms word, did they

262
00:15:31,400 --> 00:15:37,200
have any kind of facial 
recognition or daddy Mac? 

263
00:15:50,700 --> 00:15:52,600
Yeah, I think the one that would
make the most sense would 

264
00:15:52,600 --> 00:15:54,900
probably be some sort of retinal
scan, because you've got your 

265
00:15:54,900 --> 00:15:57,600
eyes with in this enclosed area.
You know, that would probably 

266
00:15:57,600 --> 00:16:01,600
Drive the cost up quite a bit. 
So, you know, as the prices come

267
00:16:01,600 --> 00:16:04,200
down might make sense to when 
you put your mask on it, you 

268
00:16:04,200 --> 00:16:07,400
know, it does a nice can and 
authenticate you that way. 

269
00:16:07,900 --> 00:16:11,200
It'd be tough to do. 
Facial recognition because mask 

270
00:16:11,200 --> 00:16:13,100
is covering half your face at 
least at this point, based on 

271
00:16:13,100 --> 00:16:15,400
current technology. 
So, I think it's the same 

272
00:16:15,400 --> 00:16:17,700
problem that a lot of people are
having wearing masks out right 

273
00:16:17,700 --> 00:16:21,200
now because of covid. 
You know, face ID, doesn't work 

274
00:16:22,000 --> 00:16:24,400
because you're you got a mask 
covering up and Apple has 

275
00:16:24,400 --> 00:16:29,100
recognized as a problem and, you
know, supposedly in the next iOS

276
00:16:29,100 --> 00:16:31,400
Point update that they're 
releasing, you know, they'll 

277
00:16:31,400 --> 00:16:34,500
have a solution for that which 
will find find interesting to 

278
00:16:34,500 --> 00:16:37,000
see how they're going to keep 
the security. 

279
00:16:37,500 --> 00:16:40,200
But also, you know, make it 
still user friendly. 

280
00:16:40,500 --> 00:16:42,400
So I think that's that's 
something to kind of keep an eye

281
00:16:42,400 --> 00:16:45,500
on punished and ha ha. 
Yeah, right. 

282
00:16:45,900 --> 00:16:49,300
So you keep this on the password
K conversation. 

283
00:16:50,000 --> 00:16:52,200
And you know, I think that they 
would multi-factor. 

284
00:16:52,300 --> 00:16:56,000
Here's the way I look at multi 
factor is yes. 

285
00:16:56,000 --> 00:16:59,100
Usually one of those factors is 
a password, which is going to 

286
00:16:59,100 --> 00:17:01,900
complete. 
But then the second factor is 

287
00:17:01,900 --> 00:17:05,700
usually something out of band or
some biometric. 

288
00:17:06,700 --> 00:17:11,500
And while we know a lot of the 
out of Baron methods can be 

289
00:17:11,500 --> 00:17:17,000
cracked, I take from many, many 
use cases this to still try up. 

290
00:17:17,000 --> 00:17:19,300
In other words. 
It creates an open for her role.

291
00:17:19,900 --> 00:17:25,900
That going ahead and crack the 
is too much effort for what 

292
00:17:25,900 --> 00:17:26,700
you're feeling. 
Now. 

293
00:17:26,700 --> 00:17:33,100
I think of you are National 
Secrets or potentially even like

294
00:17:33,700 --> 00:17:38,000
financial data. 
You know, SMS text is a second 

295
00:17:38,000 --> 00:17:43,100
factor is not strong enough. 
However, if you're protecting, 

296
00:17:43,700 --> 00:17:47,600
you know, their ability to 
upload to Facebook or something,

297
00:17:47,600 --> 00:17:51,400
it probably is The problem with 
Facebook. 

298
00:17:52,500 --> 00:17:56,100
This one came to my name's 
Facebook has become an identity 

299
00:17:56,100 --> 00:17:59,500
provider that people under so 
many different things that it 

300
00:17:59,500 --> 00:18:02,000
kind of concerns me that, you 
know, game. 

301
00:18:02,000 --> 00:18:04,500
So active. 
Somebody's Facebook isn't about 

302
00:18:04,500 --> 00:18:10,700
just doing their pictures are 
putting up a, you know, stupid 

303
00:18:10,700 --> 00:18:14,000
Post-its. 
What can you then Branch off to 

304
00:18:14,000 --> 00:18:17,500
do when you have hijacked a 
Facebook account? 

305
00:18:17,500 --> 00:18:20,700
So find out the best. 
Example, but if you thought of 

306
00:18:20,708 --> 00:18:24,800
something else, save more 
trivial, you're having a second 

307
00:18:24,800 --> 00:18:29,200
factor is an SMS text or an 
authenticator app name of 

308
00:18:29,200 --> 00:18:32,500
authenticator app, like, for me 
and you and probably most people

309
00:18:32,500 --> 00:18:35,100
listening to this. 
We don't think of authenticator 

310
00:18:35,100 --> 00:18:39,400
app to his company not far and 
but I keep the person I use them

311
00:18:39,500 --> 00:18:43,900
in my world who is a non 
computer person is my dad. 

312
00:18:44,200 --> 00:18:47,700
I just imagine trying to explain
to him how to set up Google 

313
00:18:47,700 --> 00:18:53,400
Authenticator. 
Yep, I get I get a panic attack,

314
00:18:53,400 --> 00:18:56,200
even thinking about trying to 
have a conversation with him. 

315
00:18:57,000 --> 00:19:02,600
Yeah, there is definitely a 
hurdle to get to gain entry be 

316
00:19:02,600 --> 00:19:08,200
able to do that easily and I 
always pick on Apple as a good 

317
00:19:08,200 --> 00:19:11,300
example of how they've kind of 
common eyes and Fa. 

318
00:19:11,300 --> 00:19:17,100
For example, you know iOS 
specifically has MFA built into 

319
00:19:17,100 --> 00:19:19,300
the OS itself. 
It's very easy to Use and 

320
00:19:19,300 --> 00:19:21,100
they've kind of people are used 
to. 

321
00:19:21,100 --> 00:19:22,400
Okay. 
I'm going to get a code summer 

322
00:19:22,400 --> 00:19:24,100
right on my phone or whatever it
is. 

323
00:19:24,100 --> 00:19:27,500
Whether it's SMS or a popup on 
the device and Android does 

324
00:19:27,500 --> 00:19:29,900
something similar as well and 
other devices as well. 

325
00:19:29,900 --> 00:19:34,400
But or other voices, I should 
say, but yeah, trying to explain

326
00:19:34,400 --> 00:19:37,000
here. 
I want you to load the OCTA app,

327
00:19:37,000 --> 00:19:38,800
right? 
And then register the app to app

328
00:19:38,800 --> 00:19:41,800
with systems. 
It's easy for you and I because 

329
00:19:41,800 --> 00:19:44,300
we get it. 
But yeah, I can see how, you 

330
00:19:44,300 --> 00:19:46,600
know, people struggle with that.
I've been trying to get my wife 

331
00:19:46,600 --> 00:19:49,800
to use LastPass, you know, for 
years because Constantly, you 

332
00:19:49,800 --> 00:19:52,000
know, having her log in a 
different machines, you know, 

333
00:19:52,000 --> 00:19:54,000
what's my Microsoft s approval? 
I don't know what's your 

334
00:19:54,000 --> 00:19:56,500
password and then, you know, 
she's sitting there kind of 

335
00:19:56,500 --> 00:19:58,400
thinking about it. 
Like, well, why don't you use a 

336
00:19:58,400 --> 00:20:01,500
password manager? 
And she's like, well, why don't 

337
00:20:01,500 --> 00:20:03,600
we just use the same password 
for everything? 

338
00:20:04,800 --> 00:20:08,000
All right, so she knows that 
much, I think, as far as you 

339
00:20:08,000 --> 00:20:11,000
know, me educating her, she 
knows that's bad and, you know, 

340
00:20:11,000 --> 00:20:13,400
when she spots something that's 
weird at her company, you know, 

341
00:20:13,400 --> 00:20:15,600
she'll tell me about, I'm like, 
oh, you wouldn't believe this. 

342
00:20:15,600 --> 00:20:18,400
So, I've kind of turned her into
a little bit of password or 

343
00:20:18,400 --> 00:20:21,100
identity. 
Kind of, you know, evangelist, 

344
00:20:21,100 --> 00:20:26,600
but worry, it's not easy right 
to spotting things that are 

345
00:20:26,600 --> 00:20:31,400
weird companies. 
And obviously, I think the thing

346
00:20:31,400 --> 00:20:51,000
that I see every day. 
I want to send you money or this

347
00:20:51,000 --> 00:20:53,200
time scanners like oh my God 
believe. 

348
00:20:53,200 --> 00:20:55,300
Right. 
The IRS is wants to refund your 

349
00:20:55,300 --> 00:20:57,700
money and you need to pay them 
back and Apple gift cards or 

350
00:20:57,700 --> 00:20:59,400
Google. 
Now. 

351
00:20:59,400 --> 00:21:02,200
Those are those are obviously 
legitimate because you know, the

352
00:21:02,200 --> 00:21:04,700
IRS accepts a gift cards has 
been. 

353
00:21:05,200 --> 00:21:08,100
Yeah, of course, I mean, what 
would take a couple gift cards 

354
00:21:08,100 --> 00:21:11,100
because hey at some point there 
might be working for more than 

355
00:21:11,100 --> 00:21:14,100
US currency. 
That's another, that's another 

356
00:21:14,100 --> 00:21:18,200
conversation. 
So some of them are ones, 

357
00:21:18,200 --> 00:21:21,300
especially And when they were 
persistent, like, you know, this

358
00:21:21,300 --> 00:21:27,700
is the final warning, your Apple
ID is about to be disabled got 

359
00:21:27,700 --> 00:21:32,700
like seven of these now maybe 
and you think, no, you know, 

360
00:21:32,700 --> 00:21:36,200
anything do you open them? 
And by the way, when you open an

361
00:21:36,200 --> 00:21:40,700
email, a lot of times has been 
reached email email or have a 

362
00:21:41,300 --> 00:21:43,800
tracking bit is what you usually
call it. 

363
00:21:43,800 --> 00:21:47,500
Other words. 
It's like some image that wanted

364
00:21:47,500 --> 00:21:50,500
to need one. 
Solar to be an image. 

365
00:21:50,500 --> 00:21:55,600
It's like it's a unique URL that
says, you know, this particular 

366
00:21:55,600 --> 00:21:57,500
email is open by this particular
user. 

367
00:21:57,500 --> 00:21:59,700
Now. 
They know they have somebody on 

368
00:21:59,700 --> 00:22:03,300
the other end who potentially 
always, at least billable enough

369
00:22:03,300 --> 00:22:08,100
to open their email and now 
they've got someone, they're 

370
00:22:08,100 --> 00:22:10,400
going to keep sending those spam
emails. 

371
00:22:10,400 --> 00:22:14,800
Do, some of them are looking 
great. 

372
00:22:14,800 --> 00:22:18,700
I mean, they take but you just 
have to be diligent. 

373
00:22:18,800 --> 00:22:22,800
Agent to follow certain rules, 
not click on links that are in 

374
00:22:22,800 --> 00:22:24,700
those emails. 
I mean if you just simply from 

375
00:22:24,700 --> 00:22:29,300
PayPal, be redirected to your 
PayPal app or go directly to 

376
00:22:29,300 --> 00:22:35,900
paypal.com., Don't trust the 
email, the link in the email and

377
00:22:35,900 --> 00:22:38,500
usually, you know, if you really
know you're doing you can tell 

378
00:22:38,500 --> 00:22:43,300
if it's a fake URL, but it's 
just better to be pushing 

379
00:22:43,300 --> 00:22:45,500
talking about educating. 
And I think there's a big thing 

380
00:22:45,500 --> 00:22:48,700
that companies do is come up 
with cyber. 

381
00:22:48,900 --> 00:22:52,200
Security awareness, training, 
education, programs to get, 

382
00:22:52,200 --> 00:22:58,000
people, especially around 
phishing attempts, to be able to

383
00:22:58,000 --> 00:23:00,200
spot them and not fall, prey to 
them. 

384
00:23:01,600 --> 00:23:05,000
And then I know a lot of 
companies are going out and 

385
00:23:05,300 --> 00:23:09,000
trying to screw fissuring users 
and Spearfish. 

386
00:23:09,700 --> 00:23:16,100
That's a very intense, very 
technical particular individual 

387
00:23:16,400 --> 00:23:21,800
and trying to convince them that
an email from somebody else 

388
00:23:21,800 --> 00:23:26,100
within the organization that may
be is their boss or somebody 

389
00:23:26,100 --> 00:23:30,900
higher up and say, it's directed
directly at them and, you know, 

390
00:23:30,900 --> 00:23:34,300
versus regular fishing, which is
where you can send it to 

391
00:23:34,300 --> 00:23:39,200
everybody in the company for 
fishing is kind of like I see is

392
00:23:39,200 --> 00:23:40,900
like, you know, you're you're 
just cast on the line and 

393
00:23:40,900 --> 00:23:41,400
whatever. 
B. 

394
00:23:41,400 --> 00:23:44,100
B spearfishing, you know, you're
going after a Big Tuna. 

395
00:23:44,700 --> 00:23:46,500
Right? 
That's really very specific, 

396
00:23:46,600 --> 00:23:48,200
specific thing. 
You're looking for specific 

397
00:23:48,200 --> 00:23:50,800
person. 
Yeah, usually there's somebody 

398
00:23:50,800 --> 00:23:54,500
who's high up in the 
organization, who would have 

399
00:23:54,700 --> 00:23:58,900
access to sensitive data or 
might have some information in 

400
00:23:58,900 --> 00:24:01,000
their email. 
Those are usually people who can

401
00:24:01,000 --> 00:24:03,000
be correct. 
Sometimes they go out for system

402
00:24:03,000 --> 00:24:05,800
administrators and system 
administrators. 

403
00:24:06,500 --> 00:24:10,400
You would hope are a little more
sophisticated than to fall for 

404
00:24:10,900 --> 00:24:15,400
phishing attempt. 
But I think that obviously, if 

405
00:24:15,400 --> 00:24:18,200
you are able to get your hands 
in there, credential could be 

406
00:24:18,400 --> 00:24:19,700
much. 
More valuable. 

407
00:24:20,400 --> 00:24:24,500
Yeah, I'm glad you brought this 
fishing thing because came 

408
00:24:24,500 --> 00:24:28,400
across an article this week and 
it's it's from Barracuda 

409
00:24:28,400 --> 00:24:32,200
networks, and they had 
commissioned a research Company 

410
00:24:32,200 --> 00:24:34,200
by name of census wide. 
With I've never heard of, 

411
00:24:35,200 --> 00:24:39,900
hopefully this isn't any type of
fake news or whatever they 

412
00:24:39,900 --> 00:24:41,700
surveyed. 
They went out and surveyed 1,000

413
00:24:41,700 --> 00:24:44,600
different business decision 
makers across the United 

414
00:24:44,600 --> 00:24:45,900
Kingdom. 
U.s. 

415
00:24:45,900 --> 00:24:48,600
France and Germany, so obviously
not Global, but enough. 

416
00:24:48,900 --> 00:24:52,800
Representation, I think the draw
some conclusions and one of the 

417
00:24:52,800 --> 00:24:58,400
things that they saw was over 
half of them. 51 percent had 

418
00:24:58,400 --> 00:25:02,200
seen an increase in phishing 
attacks since this whole 

419
00:25:02,200 --> 00:25:06,100
covid-19 and shift to the remote
working model took place. 

420
00:25:06,100 --> 00:25:08,300
So I think it's definitely a, 
you know, on the rise, you've 

421
00:25:08,300 --> 00:25:12,800
got Bad actors who are trying to
take advantage of the situation.

422
00:25:12,800 --> 00:25:18,100
And, you know, part of that is 
the train that goes along with 

423
00:25:18,100 --> 00:25:20,500
it. 
Over half again, said that their

424
00:25:20,500 --> 00:25:24,700
Workforce wasn't proficient or 
properly trained in cyber risk 

425
00:25:24,700 --> 00:25:28,300
associated with remote working. 
So, remote working is brand new 

426
00:25:28,300 --> 00:25:30,700
for a lot of companies, right? 
This is not something that 

427
00:25:30,700 --> 00:25:34,900
they've had to consider, you 
know, in the past and now all of

428
00:25:34,900 --> 00:25:39,000
a sudden, you know, within a 
span of a week, two weeks right 

429
00:25:39,000 --> 00:25:40,400
now. 
They've got most of our courses 

430
00:25:40,400 --> 00:25:43,000
working from home. 
They've had to put in, you know,

431
00:25:43,000 --> 00:25:48,000
very tactical probably processes
to kind of keep the business 

432
00:25:48,000 --> 00:25:50,000
running. 
You know, throughout this up and

433
00:25:50,000 --> 00:25:53,800
demek. 
So I think it highlights some of

434
00:25:53,808 --> 00:25:56,900
the things that maybe people are
already seeing or, you know, 

435
00:25:56,900 --> 00:25:59,800
should be aware of. 
But there's always more training

436
00:25:59,800 --> 00:26:01,800
that can be done. 
But I thought it was interesting

437
00:26:01,800 --> 00:26:04,600
that, you know, over half 
basically are saying yeah, we're

438
00:26:04,600 --> 00:26:08,600
seeing a rise in fishing because
of the whole pandemic and I 

439
00:26:08,600 --> 00:26:11,600
would expect that that number 
will continue to grow. 

440
00:26:11,600 --> 00:26:15,900
Because I expect that, you know,
most companies, at least big 

441
00:26:15,900 --> 00:26:18,600
ones have announced that they're
going to extend, you know, work,

442
00:26:18,800 --> 00:26:21,600
From home as a primary method 
through the, at least the end of

443
00:26:21,600 --> 00:26:23,800
this year, you know, some are 
already saying, you know, for 

444
00:26:23,800 --> 00:26:26,100
summer of next year, you know, 
full you're out. 

445
00:26:27,100 --> 00:26:30,000
So it's something I think that 
as people in the identity space.

446
00:26:30,000 --> 00:26:34,400
We need to make sure that are 
communicating to the folks that 

447
00:26:34,400 --> 00:26:37,300
we work with colleagues Etc. 
Right? 

448
00:26:37,300 --> 00:26:41,700
To be able to hopefully improve 
level of security that's out 

449
00:26:41,700 --> 00:26:44,100
there and at least just make 
people aware of hey, you know 

450
00:26:44,100 --> 00:26:47,700
what, you may see, you know, an 
uptick in and phishing attacks. 

451
00:26:48,400 --> 00:26:52,300
Yeah, and then a couple things, 
I mean, you little my radar of 

452
00:26:52,300 --> 00:26:55,100
the key things there and I'm 
going to pick on the 

453
00:26:55,100 --> 00:27:01,600
non-security thing for our. 
So it's the increase and semi at

454
00:27:01,600 --> 00:27:05,700
least semi permanence of work 
from home. 

455
00:27:05,900 --> 00:27:08,000
I've been a proponent of this 
for a long time. 

456
00:27:08,000 --> 00:27:14,500
I've worked from home for a 
decade and I feel like it's 

457
00:27:14,500 --> 00:27:19,700
probably not for everybody and 
there's definitely some benefit 

458
00:27:19,700 --> 00:27:23,300
to everybody being in the same 
place. 

459
00:27:23,300 --> 00:27:25,700
So I'm going to make that 
statement. 

460
00:27:25,700 --> 00:27:32,000
However, from a quality-of-life 
perspective and the ability for 

461
00:27:32,000 --> 00:27:36,300
a company to I think retain 
employees allowing work from 

462
00:27:36,300 --> 00:27:40,900
home. 
Look what's the average commute 

463
00:27:40,900 --> 00:27:43,800
in the United States to and from
work. 

464
00:27:43,800 --> 00:27:47,900
It's probably more than a half 
hour each way, right? 

465
00:27:48,600 --> 00:27:50,200
It's probably a half hour to an 
hour. 

466
00:27:50,200 --> 00:27:53,400
Each way. 
People are sending a an hour to 

467
00:27:53,400 --> 00:27:56,500
two hours a day. 
Ten, you know, five to ten hours

468
00:27:56,500 --> 00:27:58,900
a week of their light sitting in
their car. 

469
00:27:59,300 --> 00:28:05,900
Burning fossil fuels spending 
money on parking wear and tear 

470
00:28:05,900 --> 00:28:09,500
on their car. 
And and it's just a reduced 

471
00:28:09,500 --> 00:28:12,700
quality of life. 
I think versus the ability to 

472
00:28:12,700 --> 00:28:15,000
work from home. 
Now, every job. 

473
00:28:15,000 --> 00:28:18,600
I understand all the caveats. 
I'm not going to Go through them

474
00:28:18,600 --> 00:28:21,500
all. 
But to me this up, that could be

475
00:28:21,500 --> 00:28:24,900
a positive development to come 
out of this is that I think a 

476
00:28:24,900 --> 00:28:29,400
lot of companies were afraid to 
even try it and maybe I've maybe

477
00:28:29,400 --> 00:28:33,500
companies out. 
There may be some situations or 

478
00:28:33,500 --> 00:28:38,200
finding this is very suboptimal.
But I bet you there are some 

479
00:28:38,200 --> 00:28:41,200
organization or anything or, you
know, we could, we could 

480
00:28:41,200 --> 00:28:43,500
actually do this. 
We just save money on 

481
00:28:43,500 --> 00:28:47,400
Commercial, Real Estate and 
improve the lives of our 

482
00:28:48,100 --> 00:28:53,200
Hawaii's by you know allowing 
work from home either more or 

483
00:28:53,200 --> 00:28:55,200
all the time. 
Yeah. 

484
00:28:55,200 --> 00:28:58,700
I feel like there's a lot of 
people who I've been told over 

485
00:28:58,700 --> 00:29:01,300
the years. 
The job that they can't do. 

486
00:29:01,300 --> 00:29:03,400
Remotely can absolutely be done 
remotely. 

487
00:29:04,200 --> 00:29:06,800
Yes, the technology is there 
now. 

488
00:29:06,900 --> 00:29:11,900
It is, you know, not something 
that's, you know, new or Cutting

489
00:29:11,900 --> 00:29:14,900
Edge and you're waiting for 
other people to take out all the

490
00:29:14,900 --> 00:29:16,700
bugs and wrinkles for it. 
You know, it's like anything 

491
00:29:16,700 --> 00:29:19,300
else that's out there. 
It's Infrastructure is 

492
00:29:19,300 --> 00:29:22,200
configured correctly in your 
following good hygiene on 

493
00:29:22,200 --> 00:29:26,300
security and you know identity 
management than I feel like the 

494
00:29:26,308 --> 00:29:31,100
most most people could probably 
do some if not all of their work

495
00:29:31,100 --> 00:29:33,500
from home and I'm a big fan of 
it. 

496
00:29:33,500 --> 00:29:36,600
I've worked for companies in the
past that did not have work from

497
00:29:36,600 --> 00:29:40,900
home and have slowly, you know, 
at least when I was there kind 

498
00:29:40,900 --> 00:29:45,000
of come to an agreement. 
Okay, you can work from home, 

499
00:29:45,400 --> 00:29:50,200
one Friday a month, right? 
And It became okay every Friday 

500
00:29:50,200 --> 00:29:53,500
right or something along those 
lines and this has really 

501
00:29:53,500 --> 00:29:56,500
thrust. 
I think that decision-making 

502
00:29:57,000 --> 00:29:58,600
back to the Forefront to say 
look. 

503
00:29:58,600 --> 00:29:59,900
What are we? 
You know, what are we doing 

504
00:29:59,900 --> 00:30:01,900
here? 
I think I think life is a lot 

505
00:30:01,900 --> 00:30:03,800
easier when you can do from 
home, but it is not definitely 

506
00:30:03,800 --> 00:30:04,900
not for everybody. 
Like you mentioned. 

507
00:30:05,200 --> 00:30:08,100
I think there is some discipline
that needs to be there because 

508
00:30:09,100 --> 00:30:11,900
you know, you may have deadlines
or there's work that needs to 

509
00:30:11,900 --> 00:30:14,700
get done within a certain amount
of time and you may have 

510
00:30:14,700 --> 00:30:18,200
distractions at home or, you 
know, there's two Any other 

511
00:30:18,200 --> 00:30:20,200
things that might be competing 
for time, especially right now 

512
00:30:20,200 --> 00:30:22,000
with kids at home from school, 
right? 

513
00:30:22,000 --> 00:30:27,100
I can see that being an issue 
when you're trying to manage 

514
00:30:27,100 --> 00:30:29,300
children in the house as well as
work responsibilities. 

515
00:30:29,300 --> 00:30:32,100
So I think fortune on a 
companies are recognized that 

516
00:30:32,100 --> 00:30:35,900
and kind of working around it, 
but there is definitely things 

517
00:30:35,900 --> 00:30:40,500
to consider just from that side,
but I am, I am a huge proponent 

518
00:30:40,500 --> 00:30:44,700
of being able to work from home,
when it makes sense for all the 

519
00:30:44,700 --> 00:30:48,400
reasons you listed. 
I think that the biggest thing 

520
00:30:48,400 --> 00:30:53,600
that I'm seeing since the 
pandemic started is that people 

521
00:30:53,600 --> 00:30:59,300
who maybe even wear work from 
home folks, traditionally now 

522
00:30:59,300 --> 00:31:02,000
have her kids home either 
because schools have been 

523
00:31:02,000 --> 00:31:06,700
canceled or a closed and you 
know where they might be able to

524
00:31:06,700 --> 00:31:13,400
rely on even you know, other 
family members watching their 

525
00:31:13,400 --> 00:31:17,700
kids or however they had child. 
Care who seems dried up. 

526
00:31:17,700 --> 00:31:21,300
And so now you've got a 
four-year-old and five-year-old 

527
00:31:21,300 --> 00:31:24,200
kids hanging on their parents 
while they're trying to work. 

528
00:31:24,400 --> 00:31:28,300
Also, totally different 
situation than what I've run 

529
00:31:28,300 --> 00:31:31,400
into traditionally with people 
who are work from home, who 

530
00:31:32,100 --> 00:31:35,600
designed their life around, 
making sure that that doesn't 

531
00:31:35,600 --> 00:31:40,000
happen or event. 
Only happens on, you know, weird

532
00:31:40,000 --> 00:31:43,600
things like snow days or 
whatever, not thinking, like 

533
00:31:43,600 --> 00:31:45,200
it's like the everyday 
occurrence. 

534
00:31:45,900 --> 00:31:49,600
Mercer people that I've been 
working with, who were working 

535
00:31:49,600 --> 00:31:51,700
for other companies, where they 
work from home. 

536
00:31:52,100 --> 00:31:55,700
They've worked out a situation. 
So say, you know, Mom and Dad 

537
00:31:55,700 --> 00:31:58,400
are both room working from home 
now. 

538
00:31:58,400 --> 00:32:01,300
And now the kids are there. 
They're figuring out some way to

539
00:32:01,300 --> 00:32:05,600
split the working hours, so that
there's somebody's watching the 

540
00:32:05,600 --> 00:32:09,200
kids and keeping them away. 
So I saw a really funny video. 

541
00:32:09,200 --> 00:32:14,700
The other day was a guy doing a 
television interview and and one

542
00:32:14,700 --> 00:32:22,800
of his kids boss. through the 
gears, you know, the mom like 

543
00:32:46,600 --> 00:32:50,900
That was good those golden. 
But yeah, I so I mean and now to

544
00:32:50,900 --> 00:32:55,300
pull it all together. 
So I think one of the biggest 

545
00:32:55,500 --> 00:33:02,800
risks overall with working from 
home is if you rely on passwords

546
00:33:03,100 --> 00:33:07,200
to get to as your only form of 
authentication to get the 

547
00:33:07,200 --> 00:33:11,000
services, whether they be proud 
services or to get back into the

548
00:33:11,000 --> 00:33:13,800
internal Network, I mean then 
it's huge. 

549
00:33:14,900 --> 00:33:18,700
Obviously, you've got open to 
the outside world at those 

550
00:33:18,700 --> 00:33:22,800
passwords are weak, because, I 
think what's happening, is that 

551
00:33:22,800 --> 00:33:26,500
companies are now having to open
things up in a way. 

552
00:33:26,500 --> 00:33:28,500
They haven't in the past, and 
one of the things I'm going to 

553
00:33:28,508 --> 00:33:30,900
put it on in there. 
We don't like our podcasts to be

554
00:33:30,900 --> 00:33:35,900
a commercial, but it is that 
being, who's one of our partners

555
00:33:35,900 --> 00:33:39,400
have been male and female that, 
I think it's either for the 

556
00:33:39,400 --> 00:33:43,000
current customers or I'm not 
sure if anybody can use it. 

557
00:33:44,500 --> 00:33:49,100
For anybody where you can 
essentially start leveraging, 

558
00:33:49,100 --> 00:33:53,600
their multi-factor 
authentication Service for free 

559
00:33:53,600 --> 00:33:56,800
to help, secure your remote 
Workforce during the pandemic. 

560
00:33:56,800 --> 00:34:01,600
So I mean, to me that's like if 
you're in a situation now where 

561
00:34:01,600 --> 00:34:03,900
you're humming ha I'm head 
sleeping at night because, you 

562
00:34:03,900 --> 00:34:08,900
know, your, your entry from the 
outside world is just secured by

563
00:34:08,900 --> 00:34:11,900
password. 
Look into this, looking to 

564
00:34:12,100 --> 00:34:15,900
whether or not this free service
is something that That you could

565
00:34:15,900 --> 00:34:20,900
Leverage The you to protect ya. 
If ya if your work from home, I 

566
00:34:20,900 --> 00:34:24,600
don't think you could seriously 
say that you're, you're, you 

567
00:34:24,600 --> 00:34:26,699
know, have the right security 
for just using password. 

568
00:34:26,800 --> 00:34:28,300
I think that that is a 
no-brainer. 

569
00:34:29,500 --> 00:34:32,600
Hey, if you're doing any type of
remote work, there needs to be 

570
00:34:32,600 --> 00:34:35,400
that second Factor somewhere to 
make sure you've got the proper 

571
00:34:35,400 --> 00:34:39,900
level Purity or, you know, what 
something that I found 

572
00:34:39,900 --> 00:34:43,199
disturbing in that same report 
and I'll put this report into 

573
00:34:43,199 --> 00:34:45,500
the show notes. 
So that people can find it 

574
00:34:45,500 --> 00:34:47,800
wherever they get their podcast.
That usually is some sort of 

575
00:34:47,800 --> 00:34:49,800
detail page. 
We also get questions on that. 

576
00:34:50,100 --> 00:34:54,800
It'll be in there. 40% of 
respondents have cut their 

577
00:34:54,800 --> 00:34:58,200
cybersecurity budgets. 
As a cost-saving measure measure

578
00:34:58,600 --> 00:35:00,600
to help tackle. 
The covid-19 crisis. 

579
00:35:00,800 --> 00:35:06,100
So I think that's scary because 
now you're you know, you've got 

580
00:35:06,100 --> 00:35:09,900
more people working from home. 
And theoretically you're 

581
00:35:09,900 --> 00:35:13,500
spending Less on security to 
cover those people. 

582
00:35:14,400 --> 00:35:17,900
Not not a direct one-to-one 
correlation, but people cutting 

583
00:35:17,900 --> 00:35:19,900
cybersecurity has time when 
there's going to be more 

584
00:35:19,900 --> 00:35:23,200
phishing attacks more, you know,
everything else that goes along 

585
00:35:23,200 --> 00:35:25,800
with with that. 
I think it's just a terrible 

586
00:35:25,800 --> 00:35:28,400
combination. 
And you know, the other thing I 

587
00:35:28,400 --> 00:35:31,500
think that was really 
interesting was half of them 

588
00:35:31,600 --> 00:35:36,000
would consider asks, what would 
half of the the companies would 

589
00:35:36,000 --> 00:35:39,600
consider making Workforce 
reductions if it meant company, 

590
00:35:39,600 --> 00:35:41,800
data protection, could be 
properly funded. 

591
00:35:41,800 --> 00:35:44,300
So they're cutting funding. 
But the way that they see, 

592
00:35:44,500 --> 00:35:48,600
Buying back that funding is by 
doing reductions in an already 

593
00:35:48,600 --> 00:35:52,000
terrible job market because of 
you know, all the shutdown that 

594
00:35:52,000 --> 00:35:54,400
are happening. 
So I think it's I think it's a 

595
00:35:54,400 --> 00:35:58,300
really interesting and you know,
unfortunate approach to it. 

596
00:35:58,300 --> 00:36:02,100
I think this is a time when 
security should not be on the 

597
00:36:02,100 --> 00:36:07,400
table for cuts, especially if 
you are doing the work from home

598
00:36:07,400 --> 00:36:10,400
type stuff that is become so 
prevalent. 

599
00:36:11,100 --> 00:36:14,300
Well, I think yeah, I mean we 
could do it. 

600
00:36:14,400 --> 00:36:19,700
In the airline industry, how can
you not uncover front? 

601
00:36:19,900 --> 00:36:24,200
Turn over every stone. 
Look for places to God, you 

602
00:36:24,200 --> 00:36:28,000
know, they put their businesses 
in the tank. 

603
00:36:28,000 --> 00:36:31,400
At the same time. 
It just creates a perfect job 

604
00:36:31,400 --> 00:36:35,500
for me to talk to you. 
So bright, you know, you don't 

605
00:36:35,500 --> 00:36:39,700
if you do and damned if you 
don't, I do think a couple of 

606
00:36:39,700 --> 00:36:44,100
things because, you know, you've
got to expect that this and 

607
00:36:44,100 --> 00:36:47,200
done. 
Was going to end at some point 

608
00:36:47,400 --> 00:36:49,700
and that things will shift back 
to normal. 

609
00:36:50,100 --> 00:36:55,300
And one of the things that we 
saw was that cybersecurity 

610
00:36:55,300 --> 00:36:59,800
professionals were in high 
demand for this habit and you 

611
00:36:59,800 --> 00:37:03,100
know, higher than them other 
field. 

612
00:37:03,300 --> 00:37:08,100
And so if you wind up cutting 
Workforce and on the way funding

613
00:37:08,100 --> 00:37:12,100
Workforce isn't free is not like
we're paying you, you know a 

614
00:37:12,107 --> 00:37:16,700
thousand dollars a week. 
Week and then we're going to get

615
00:37:16,700 --> 00:37:18,400
rid of you and it's going to 
cost us nothing. 

616
00:37:18,600 --> 00:37:22,900
There's there's some kind of 
residual cost people paying, you

617
00:37:22,900 --> 00:37:26,300
know, on a separate offense or 
thumping, get rid of somebody. 

618
00:37:26,500 --> 00:37:28,600
If you have turn around, six 
months later. 

619
00:37:29,200 --> 00:37:31,100
Hire somebody back into that 
position. 

620
00:37:31,100 --> 00:37:33,600
Are you got the cost of 
recruiting somebody? 

621
00:37:34,700 --> 00:37:38,000
I'm being realistic. 
Just seeing what's going on in 

622
00:37:38,000 --> 00:37:41,300
certain industries. 
They might not have any choice. 

623
00:37:41,600 --> 00:37:44,200
So that might be enough to you 
for a company. 

624
00:37:44,400 --> 00:37:47,300
The mountain is better place to 
eat. 

625
00:37:47,300 --> 00:37:51,200
You feeling pain, higher, the 
price of cyber security. 

626
00:37:51,200 --> 00:37:53,400
People are pretty good out on 
the streets right now. 

627
00:37:54,900 --> 00:37:58,500
I don't think there's not many 
Industries hiring a they were 

628
00:37:58,700 --> 00:38:01,400
released the unemployment 
numbers today and something like

629
00:38:02,200 --> 00:38:07,200
16 percent unemployment in the 
United States must have great 

630
00:38:07,400 --> 00:38:11,300
has been that low or that high 
since the Great Depression, but 

631
00:38:11,600 --> 00:38:14,200
it feels like it's going to be a
temporary. 

632
00:38:14,500 --> 00:38:17,400
Things are starting to open back
up, but I have talked to people 

633
00:38:17,400 --> 00:38:24,000
who are extremely worried that 
I'm not that worried about it, 

634
00:38:25,400 --> 00:38:44,800
but other people. 
I'm sorry. 

635
00:38:44,800 --> 00:38:48,300
I'm turning to see restaurants, 
open up and the Mexican 

636
00:38:48,300 --> 00:38:49,600
restaurant. 
That's been my house. 

637
00:38:49,600 --> 00:38:52,200
Was, they had a line outside on 
Cinco de Mayo. 

638
00:38:52,800 --> 00:38:56,700
I think people are ready to get 
back to things or move. 

639
00:38:56,900 --> 00:38:58,800
A lot of people are worried 
about things. 

640
00:38:58,800 --> 00:39:03,300
So I feel like a lot of people, 
I think, the next we will be 

641
00:39:03,900 --> 00:39:08,100
listed in a month or two months.
I'm doorbell and see if the 

642
00:39:08,100 --> 00:39:12,100
pandemic spikes again. 
If it doesn't, then maybe a safe

643
00:39:12,100 --> 00:39:16,200
to go out again. 
To feel like there's different 

644
00:39:16,200 --> 00:39:19,400
levels of passion that people 
are following depending on their

645
00:39:19,400 --> 00:39:22,400
risk tolerance. 
Yeah, I think everybody's making

646
00:39:22,400 --> 00:39:25,400
a risk-based decisions. 
And you know, I'm happy staying 

647
00:39:25,400 --> 00:39:27,400
at home, letting all the guinea,
pigs out. 

648
00:39:27,700 --> 00:39:31,100
Figure it out. 
I'm definitely one of your 

649
00:39:31,100 --> 00:39:35,900
guinea pigs definitely. 
But yeah, I think going back to 

650
00:39:35,900 --> 00:39:38,000
the point of, you know, talent. 
I think there will definitely be

651
00:39:38,000 --> 00:39:42,500
Talent available, but I think 
security, you know, security has

652
00:39:42,500 --> 00:39:47,200
always been a hot Market. 
It or positions and for people 

653
00:39:47,200 --> 00:39:52,000
looking to get into the space 
and I don't see that dropping 

654
00:39:52,000 --> 00:39:57,000
any time soon because I think if
anything right this, this 

655
00:39:57,000 --> 00:39:59,400
current situation highlights the
need for good security, 

656
00:39:59,400 --> 00:40:01,700
especially these as these 
companies get hit, whether it's 

657
00:40:01,700 --> 00:40:05,600
fishing or ransomware, you know,
or even just taking in. 

658
00:40:05,600 --> 00:40:10,600
Now, a flood of, you know, 
e-comm customers that weren't 

659
00:40:10,600 --> 00:40:13,500
there before because you were a 
traditional brick and mortar 

660
00:40:13,500 --> 00:40:16,000
restaurant. 
Right, or some other type of 

661
00:40:16,000 --> 00:40:18,000
business. 
I see a lot of a lot of 

662
00:40:18,000 --> 00:40:20,900
companies that have now gotten 
into the consumer. 

663
00:40:20,900 --> 00:40:24,300
I am game and have no idea what 
they're doing, right? 

664
00:40:24,500 --> 00:40:29,400
And are figuring out as they go.
So I think, I think, you know, 

665
00:40:29,400 --> 00:40:32,400
the, the identity space, 
specifically, than security is 

666
00:40:32,400 --> 00:40:36,200
very strong position right now. 
I don't see that going going 

667
00:40:36,200 --> 00:40:39,800
down anytime soon. 
Right here, advice for somebody 

668
00:40:40,200 --> 00:40:45,000
who's just getting into. 
This industry would be Continue 

669
00:40:45,000 --> 00:40:49,300
to do so, it's okay to do. 
So get some experience in your 

670
00:40:49,300 --> 00:40:54,200
watch YouTube videos, check out 
ID Pro, which is an organization

671
00:40:54,200 --> 00:40:56,000
specifically for identity 
professionals. 

672
00:40:56,000 --> 00:41:00,300
That voice that I'm a member of.
They have a good body of 

673
00:41:00,300 --> 00:41:03,100
knowledge that's designed for 
people to get into and start to 

674
00:41:03,107 --> 00:41:05,300
learn things. 
You know, it's not and it's not 

675
00:41:05,300 --> 00:41:07,300
just for newbies. 
It's, you know, for people who 

676
00:41:07,300 --> 00:41:10,200
maybe focus on one specific 
area, but want to brush up on 

677
00:41:10,400 --> 00:41:12,200
another area. 
Maybe you're, you're great on 

678
00:41:12,200 --> 00:41:14,200
the identity governance, but you
need to bone. 

679
00:41:14,300 --> 00:41:16,100
Up on the sonication or offers a
right. 

680
00:41:16,100 --> 00:41:19,500
I think there's something out 
there but it's like any other 

681
00:41:19,500 --> 00:41:21,100
job. 
You've got to keep your skills 

682
00:41:21,100 --> 00:41:24,400
relevant and current and be able
to adapt to the changes that are

683
00:41:24,500 --> 00:41:27,200
that are part of the natural ebb
and flow of business. 

684
00:41:27,200 --> 00:41:31,200
And as long as you do that, you 
know, I feel like you'll you'll 

685
00:41:31,200 --> 00:41:32,500
have done everything within your
power. 

686
00:41:33,300 --> 00:41:37,000
To make yourself, marketable, 
and hireable and relevant to an 

687
00:41:37,000 --> 00:41:39,500
organization. 
Absolutely. 

688
00:41:40,000 --> 00:41:45,200
And listen to the podcast. 
That's a no-brainer. 

689
00:41:45,200 --> 00:41:47,300
Jim. 
I mean, we you know, we should 

690
00:41:47,300 --> 00:41:49,100
obviously be the number one 
source for all have any 

691
00:41:49,100 --> 00:41:52,500
information. 
All right. 

692
00:41:52,500 --> 00:41:55,300
Well, I think that's probably a 
good spot to leave it for this 

693
00:41:55,300 --> 00:41:57,700
week. 
Anything else you want to bring 

694
00:41:57,700 --> 00:42:01,800
up Jim before we wrap up? 
No, I think, you know, just 

695
00:42:01,800 --> 00:42:06,300
yeah, shout out to all the 
mothers out there who know 

696
00:42:06,400 --> 00:42:11,900
Mother's Day. 
We all have one and most mothers

697
00:42:11,900 --> 00:42:16,000
do an amazing job. 
Abso shout out to all the 

698
00:42:16,000 --> 00:42:21,500
mothers, especially identity and
access management mother's right

699
00:42:21,500 --> 00:42:24,100
on. 
So if you Mother's Day everyone 

700
00:42:24,100 --> 00:42:29,700
stay healthy and I think with 
that we'll leave it and we'll 

701
00:42:29,700 --> 00:42:42,200
talk to y'all in the next one. 
You've been listening to the 

702
00:42:42,200 --> 00:42:45,900
identity of the center podcast 
for more episodes of visit 

703
00:42:45,900 --> 00:42:47,800
identity at the center.com.
