Aditi Shah — Writing on Identity & Access

Aditi Shah — Writing on Identity & Access https://helloaditi.au/writing Practitioner essays on IAM, privileged access, identity governance, Zero Trust, breach analysis and AI security — from 12+ years in regulated enterprise environments. en-AU adi.shah08@gmail.com (Aditi Shah) Tue, 26 May 2026 09:00:00 +1000 Scattered Spider and the Help Desk: How a Phone Call Took Down UK Retail https://helloaditi.au/writing/scattered-spider-help-desk-uk-retail https://helloaditi.au/writing/scattered-spider-help-desk-uk-retail Tue, 26 May 2026 09:00:00 +1000 Incident Analysis Social Engineering Help Desk MFA AI Governance Through a Security Lens: Guardrails Before the Gold Rush https://helloaditi.au/writing/ai-governance-through-a-security-lens https://helloaditi.au/writing/ai-governance-through-a-security-lens Tue, 26 May 2026 09:00:00 +1000 AI Governance Risk NIST AI RMF ISO 42001 Securing Enterprise-Wide AI Adoption: Enablement Without the Blast Radius https://helloaditi.au/writing/securing-enterprise-wide-ai-adoption https://helloaditi.au/writing/securing-enterprise-wide-ai-adoption Tue, 26 May 2026 09:00:00 +1000 AI Security Enterprise AI Shadow AI Non-Human Identity Decommissioning Done Right: The Quiet Risk of What You Forget to Remove https://helloaditi.au/writing/decommissioning-done-right https://helloaditi.au/writing/decommissioning-done-right Mon, 25 May 2026 09:00:00 +1000 Deprovisioning Orphaned Accounts Dormant Access Hygiene The Salesloft Drift Breach: When a Chatbot's OAuth Token Owns Your Salesforce https://helloaditi.au/writing/salesloft-drift-oauth-breach-analysis https://helloaditi.au/writing/salesloft-drift-oauth-breach-analysis Sun, 24 May 2026 09:00:00 +1000 Incident Analysis OAuth Non-Human Identity Supply Chain Identity Threat Detection and Response: Wiring Identity into the SOC https://helloaditi.au/writing/identity-threat-detection-and-response https://helloaditi.au/writing/identity-threat-detection-and-response Sat, 23 May 2026 09:00:00 +1000 ITDR SOC Threat Detection Identity Security 16 Billion Credentials: What the Largest Leak Ever Really Tells Us https://helloaditi.au/writing/sixteen-billion-credentials-leak-analysis https://helloaditi.au/writing/sixteen-billion-credentials-leak-analysis Fri, 22 May 2026 09:00:00 +1000 Incident Analysis Credentials Passwordless MFA Fatigue One Missing MFA: The Change Healthcare Breach and the Cost of a Single Control Gap https://helloaditi.au/writing/change-healthcare-one-missing-mfa https://helloaditi.au/writing/change-healthcare-one-missing-mfa Wed, 20 May 2026 09:00:00 +1000 Incident Analysis MFA Healthcare Blast Radius Birthright Access vs. Least Privilege: Resolving the Onboarding Tension https://helloaditi.au/writing/birthright-access-vs-least-privilege https://helloaditi.au/writing/birthright-access-vs-least-privilege Tue, 19 May 2026 09:00:00 +1000 Birthright Access Least Privilege Onboarding IAM Governing Non-Human Identities: The Population Nobody Owns https://helloaditi.au/writing/governing-non-human-identities https://helloaditi.au/writing/governing-non-human-identities Tue, 12 May 2026 09:00:00 +1000 Non-Human Identity Service Accounts Secrets Machine Identity Separation of Duties at Scale: Catching Toxic Combinations Before Auditors Do https://helloaditi.au/writing/separation-of-duties-at-scale https://helloaditi.au/writing/separation-of-duties-at-scale Tue, 05 May 2026 09:00:00 +1000 Segregation of Duties SoD Risk IGA Migrating PAM Without Downtime: A Field Guide for Regulated Enterprises https://helloaditi.au/writing/migrating-pam-without-downtime https://helloaditi.au/writing/migrating-pam-without-downtime Tue, 28 Apr 2026 09:00:00 +1000 PAM Migration Privileged Access Programme Delivery The Essential Eight Meets Identity https://helloaditi.au/writing/essential-eight-meets-identity https://helloaditi.au/writing/essential-eight-meets-identity Tue, 21 Apr 2026 09:00:00 +1000 Essential Eight ACSC Identity Hardening Zero Trust Is an Identity Problem https://helloaditi.au/writing/zero-trust-is-an-identity-problem https://helloaditi.au/writing/zero-trust-is-an-identity-problem Tue, 07 Apr 2026 09:00:00 +1000 Zero Trust Identity Architecture Access Control Measuring IAM Maturity: Metrics Executives Actually Understand https://helloaditi.au/writing/measuring-iam-maturity https://helloaditi.au/writing/measuring-iam-maturity Tue, 31 Mar 2026 09:00:00 +1000 IAM Strategy Metrics Maturity Model Leadership SailPoint IdentityIQ: Taming the Aggregation-to-Provisioning Pipeline https://helloaditi.au/writing/sailpoint-aggregation-to-provisioning https://helloaditi.au/writing/sailpoint-aggregation-to-provisioning Tue, 24 Mar 2026 09:00:00 +1000 SailPoint IdentityIQ Provisioning IGA Role Mining That Doesn't Collapse Under Its Own Weight https://helloaditi.au/writing/role-mining-that-doesnt-collapse https://helloaditi.au/writing/role-mining-that-doesnt-collapse Tue, 10 Mar 2026 09:00:00 +1000 RBAC Role Engineering IGA Access Models Privileged Access Management Beyond the Vault https://helloaditi.au/writing/pam-beyond-the-vault https://helloaditi.au/writing/pam-beyond-the-vault Thu, 26 Feb 2026 09:00:00 +1000 PAM Privileged Access Just-in-Time Zero Standing Privilege Access Certifications Without the Rubber-Stamp https://helloaditi.au/writing/access-certifications-without-rubber-stamping https://helloaditi.au/writing/access-certifications-without-rubber-stamping Wed, 11 Feb 2026 09:00:00 +1000 Access Reviews IGA Governance Least Privilege CPS 234 for IAM Teams: What APRA Actually Wants to See https://helloaditi.au/writing/cps-234-for-iam-teams https://helloaditi.au/writing/cps-234-for-iam-teams Thu, 29 Jan 2026 09:00:00 +1000 CPS 234 Compliance IAM APRA Designing a Joiner-Mover-Leaver Process That Survives an Audit https://helloaditi.au/writing/joiner-mover-leaver-that-survives-an-audit https://helloaditi.au/writing/joiner-mover-leaver-that-survives-an-audit Wed, 14 Jan 2026 09:00:00 +1000 IAM Identity Lifecycle SailPoint Governance