Resource and role explosion is a growing challenge for enterprises as they work through projects to tighten access, accounts, and authorization. In this video, Justin McCarthy, Co-founder and CTO of StrongDM, discusses how complex environments generate more detailed authorization definitions to distinguish users, workloads, and actions.
Are to me about sort of like the explosion of resources and privileged users and like what, what are happening to, to CISO's sort of brains right now as they see just more and more and more, resources and more and more privileged users.
So resource explosion and also role explosion is an observation that a lot of folks have made as they try and work their way through a project or an initiative to, let's say, tighten down accounts, tighten down access and tighten down authorization.
It's an observation that in some ways is inevitable because the more precise you are with your authorization, it's necessary that you actually end up with more definitions that, for example, distinguish one user from another user, one workload from another workload.
So actually having a high volume with a lot of detail of these authorization statements and roles and workloads, its something that's expected for any complex enterprise.
If you're doing valuable work, you're going to have complexity.
So the trick is to find an authorization system in a PAM environment that gives you leverage over that complexity that allows you to think about it and manage it and improve it and audit it in a way that can scale up to these very dynamic workloads where an instance of a particular server or a particular job may not exist for more than a few seconds, all the way to the joiners movers and leavers that we think about on the human side of the equation as someone's joining your organization or leaving really that spectrum and that continuum requires tools because you're inevitably going to have a lot of roles, a lot of resources to a lot of details.
