UPCOMING EVENTS
Identity Access Management (IAM) – Reducing Risk and Giving Better CX to Users: Chicago (Rosemont/O’Hare), Illinois
Strategies to ensure your IAM program enhances the customer experience.
July 9, 2026
9:00am-5:00pm
7 CPE / 0.7 CEU / CISSP / 7 PDU Credits Awarded
Conference location: Donald E. Stephens Convention Center Rosemont (O’Hare) Illinois
Overview
Identity continues to be foundational to cybersecurity and the running of your business from hybrid work to customer access. Conventional approaches to identity and access management (IAM) are no longer sufficient as organizations operate in an escalating threat environment where zero trust is a must-have.
What You Will Learn
In this one day conference attendees will learn:
- Redefining Trust: Building a Strategic Identity Framework for the Modern Enterprise
- Integrating IAM with DevOps: Securing the Software Development Lifecycle
- IAM in the Era of Remote Work: Strategies for Managing Distributed Identities
- Leveraging Artificial Intelligence in IAM: Enhancing Threat Detection and Response
- Regulatory Compliance and IAM: Navigating the Complex Landscape
- Customer Identity and Access Management (CIAM): Balancing Security with Seamless User Experience
CONFERENCE AGENDA
8:00am – 9:00am: Registration and Continental Breakfast
9:00am – 10:00am: Secure, Innovative Transformation with Identity Security and AI
Aubrey Turner, Field CTO, Saviynt
Unlock secure and innovative digital transformation by harnessing the combined power of Identity Security and Artificial Intelligence (AI). In today’s hyper-connected, cloud-first world, traditional perimeter defenses are obsolete, making identity the definitive control plane. Concurrently, AI is rapidly reshaping business, evolving the threat landscape, and redefining our defense strategies.This session will explore how to integrate core identity security principles—including Least Privilege, Zero Trust, governance, and non-human identitymanagement—with practical AI applications. Learn how this integration can move your organization past basic protection and establish a critical, competitive defense that accelerates your organization’s digital journey.

Turner
10:00 AM – 10:30 AM — Sponsor & Networking Break
10:30 AM – 11:30 AM: Zero Standing Privilege for Machines: A Runtime Framework for Agentic AI
Brian McHenry, VP of Sales Engineering, Delinea
Brance Spradlin, Global Identity Specialist and Architect, Delinea
We built identity for humans at a keyboard and for predictable service accounts. Agentic AI breaks both. This session lays out a framework for governing agent identity at runtime: why routing is not authorization, why agents need authority grants instead of identity passports, and what a runtime authorization gateway must do to deliver zero standing privilege for machines. Practical guidance drawn from patterns already in production. Let’s get to work.
Learning objectives
By the end of this session, attendees will be able to:
- Distinguish the three layers of AI security (content security, Model Context Protocol routing, and runtime authorization) and explain why deploying only the first two leaves authorization wide open.
- Apply the shift from identity “passports” to scoped authority grants, and map the runtime capabilities that enforce it: agent identity verification, intent-aware policy, identity chaining and on-behalf-of (OBO) governance, human-in-the-loop (HITL) gates, and just-in-time (JIT) access.
- Build a phased, vendor-neutral path to zero standing privilege (ZSP) for machines, sequencing visibility, contextual access, and runtime enforcement using patterns already proven in production.

McHenry Spradlin
11:30 AM – 12:30 PM: The Fatal Silo: Why Separating Identity and Data Security Is Your Next Breach Waiting to Happen
Dustin Fernandes, Strategic Business Acceleration Director, Thales
Alejandro Rodriguez, Sales Engineer, Thales
The perimeter is dead, and the firewall has become irrelevant to the modern attacker. Yet, most organizations continue to treat Identity Access Management (IAM) and Data Security as distant cousins, operating in isolated silos with separate tools and strategies. This disconnect creates the ultimate blind spot for the enterprise: “Shadow Access” to “Shadow Data.” This session will confront the uncomfortable reality that while you are busy watching the network gate, attackers are already inside, using valid credentials to exploit data you didn’t even know was exposed.
Dissect the critical convergence of these two domains with Ammar, analyzing why “Identity-First Security” is the new mandate for survival. Moving beyond the buzzwords of Zero Trust, plus explore the tactical intersection of Data Security Posture Management (DSPM) and Identity Security Posture Management (ISPM). We will speak about why the most dangerous threat today isn’t the hacker breaking in, but the over-permissioned user—human or machine—who has seamless, unmonitored access to your organization’s crown jewels.
Join industry leaders as we map out the blueprint for a unified future. We will debate the necessary death of the silo, discuss how to operationalize the “Cybersecurity Mesh,” and provide actionable steps to build a context-aware security fabric. Don’t just manage identities and lock down data; learn how to fuse them into a single, intelligent shield that stops the breach before exfiltration begins.

Fernandes Rodriguez
12:30 PM – 1:30 PM — Lunch & Exhibits
1:30 PM – 2:30 PM: IAM for the Modern Workforce: Supporting Hybrid and Cloud Environments
William Cai, Executive Director of IAM, IT, Luminaire Health
Identity and Access Management is no longer just a security function—it is a critical enabler of business agility, workforce productivity, and digital transformation. This session explores how organizations can build and manage an effective IAM program that balances security, compliance, and user experience while supporting business growth.
Attendees will learn practical strategies for aligning IAM initiatives with business objectives, improving governance and accountability, and driving adoption across the enterprise. The discussion will cover common challenges such as managing hybrid environments, automating identity lifecycle processes, reducing access risk, and demonstrating measurable business value from IAM investments.
Key takeaways include:
- Building an IAM roadmap aligned to business priorities
- Improving operational efficiency through automation and governance
- Strengthening security while enabling seamless user access
- Managing stakeholder expectations across IT, security, and business teams
- Measuring IAM program success through risk reduction and business outcomes
This session is designed for IT, security, and business leaders looking to transform IAM from a compliance requirement into a strategic business enabler.
Non-human identities, APIs, and privileged accounts introduce significant risk. This session covers best practices for governing these accounts without slowing innovation.
Includes:
- Privileged Access Management (PAM) for humans and systems
- Lifecycle and credential management for non-human identities
- Reducing risk in automated and service accounts

Cai
2:30 PM – 3:00 PM — Sponsor Break
3:00 PM – 4:00 PM: End-to-end Implementation Guidance for High Assurance Passkey Use Cases
Nick Charpentier, SVP, Global Solutions Engineering, Yubico
The adoption of passkeys has continued to increase as a way to provide phishing-resistant authentication for user accounts. While this has helped create huge strides for the protection of consumer accounts, those responsible for protecting user accounts in enterprises, public sector, and highly regulated industries may still be unsure how to incorporate passkeys into their security strategy.
In this session we will walk through different techniques and implementation patterns that can be used for adopting passkeys for applications with a high risk profile. By the end of this session you will understand:
The difference between low and high assurance passkeys
How to perform step-up authentication in a passkey enabled application
How to allow security conscious, and high-risk users to opt-in to a an account protected with only high assurance passkeys
UX flows and patterns for helping users understand and use their passkeys
This talk is for developers, architects, and all security professionals who are interested in learning advanced passkey techniques. It is assumed you have some familiarity with the concept of passkeys, along with beginner level knowledge of programming, application development, and security concepts.

Charpentier
4:00 PM – 5:00 PM: IAM That Works for Both Security and Users (Panel Discussion)
This interactive panel brings together IAM leaders to discuss balancing risk, compliance, and usability. Attendees will hear practical strategies, pitfalls to avoid, and lessons learned from real deployments.
Includes:
- Strategies for improving user adoption and experience
- Communicating IAM value to business stakeholders
- Real-world success stories and lessons learned
- Audience Q&A
Moderator: Gary Dirksen, AE, Saviynt
Panelists will include:
- Debayan Basu, Principal IAM Engineer, Genuine Parts Company
- Daniel Cabrera, Manager – Identity and Access Management, Endeavor Health
- Paul Glidden, Security Architect, Procore Technologies
- Richard Shoobridge, Enterprise Solutions Architect, Rolls-Royce
- Other CISOs & IAM Leaders sharing the strategies, tactics, and lessons learned.

Dirksen Basu Cabrera Glidden Shoobridge
Conference Price: $349.00 per person
Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.
Exhibits
As is always the case at CAMP IT Conferences events, the talks will not include product presentations. During the continental breakfast, coffee breaks, and the luncheon break you will have the opportunity to informally meet representatives from the following sponsoring companies, who have solutions in the area of the conference.




