Security Management Strategies for the CIOAsk The Security Expert: Questions & Answers
Identity Management and Access Control
Randall Gamby is the information security officer for the Medicaid Information Service Center of New York (MISCNY). MISCNY manages and maintains the largest state-run Medicaid claims data warehouse in the United States. Prior to this position he was the enterprise security architect for a Fortune 500 insurance and finance company. His experience also includes many years as an analyst for the Burton Group's Security and Risk Management Services group. His coverage areas included: secure messaging, security infrastructure, identity and access management, security policies and procedures, credential services, and regulatory compliance.
Prior to joining Burton Group, Randall was a senior consultant and infrastructure designer for Fortune 500 companies, global organizations, and federal governments developing integrated systems for enterprise, national and worldwide deployments. With 20 years of experience, Randall is a founding participant in OSI communications development and was a representative for McDonnell Douglas Corporation (now Boeing Aerospace) in the Aerospace Industries Association, which worked for standardized interoperation between aerospace organizations and the U.S. government.
Randall recently rejoined SearchSecurity.com's Ask the Experts panel, and is ready to answer your questions!
Have a question for Randall Gamby? Email editor@searchsecurity.com!
-
Remote access audit: Assessing remote desktop access software
Answer - Is your remote desktop access software really secure? Randall Gamby offers advice for conducting a remote access audit to validate security. 14 August 2012 -
Enterprise risk-based authentication: Has it finally arrived?
Answer - Expert Randall Gamby discusses risk-based authentication, and whether that type of user identification system is right for the enterprise. 14 August 2012 -
Privilege access management: User account provisioning best practices
Answer - Broad user account provisioning can give users too much access. Randall Gamby offers privilege access management advice to prevent 'privilege creep.' 14 June 2012 -
Online password security: Are Verified by Visa-like programs enough?
Answer - Randall Gamby offers additional security measures enterprises can employ to supplement their existing password-reset process. 14 June 2012 -
Secure remote access best practices: Guidelines for the enterprise
Answer - Remote access threats are on the rise. Use expert Randall Gamby's secure remote access best practices to help users make good security decisions. 14 June 2012 -
IMEI authentication: OK as a mobile authenticator?
Answer - Is IMEI authentication a secure choice when considering a mobile authenticator? Randall Gamby explains why it may not be a wise choice. 07 June 2012 -
MDM architecture considerations for enterprise identity management
Answer - Randall Gamby details which enterprise identity management features to look for when evaluating products as the basis for an MDM architecture. 07 June 2012 -
SCIM identity management and SCIM provisioning options
Answer - SCIM identity management and identity provisioning have increased in their implementation. Learn how a company can assess these technology options. 07 June 2012 -
SCIM identity management strategy: Time to outsource IdM?
Answer - Randall Gamby outlines the SCIM identity management standard and offers identity management for those enterprises considering outsourcing. 15 March 2012 -
Dynamic authorization vs. other access management technologies
Answer - Randall Gamby discusses the advantages of dynamic authorization vs. other access management strategies and implementation best practices. 13 March 2012