Identity has been the new security perimeter for some time, yet in many organizations, Identity & Access Management (IAM) and Cybersecurity teams still operate with different mental models, skill sets, and success metrics. This disconnect creates gaps in threat detection, weakens Zero Trust initiatives, slows incident response, and leaves organizations vulnerable to modern identity-centric attacks.

In this session, a seasoned cybersecurity and IAM leader will explore why IAM and security teams often talk past each other, how this skills gap manifests in real-world failures, and what leaders can do to close it. Drawing on examples from higher education, financial services, healthcare, and large-scale consumer platforms, the session will examine the differences in how IAM and security professionals approach risk, controls, identity proofing, access decisions, and lifecycle management.

Attendees will learn how to reframe IAM as a core security capability, not just a provisioning or user-experience function, and how to upskill both IAM and cybersecurity professionals to operate effectively in a shared identity-centric security model. The session will provide practical guidance, competency maps, and organizational patterns that enable teams to collaborate more effectively, reduce risk, and deliver secure, friction-aware digital experiences.