Join Us for Our August Chapter Event on Tuesday, July 22, 2025 at 6:30 PM ET

We’re pleased to welcome Jason Garbis, a leading authority on Zero Trust architecture, as our featured speaker for the August ISSA-DC chapter event.

To see a World in a Grain of Sand: One Access Policy as a Microcosm of Security

Abstract
Access policies, which are centered on identity context, are the heart of modern Zero Trust security. But what, exactly, are the elements of these policies, and how do these ultimately drive enterprise tool, technology, and capability roadmaps?

Our title is drawn from a famous poem by William Blake, and in that spirit we’ll use this session to deconstruct and deeply analyze one single access policy, explaining how and why it drives the need for an entire Zero Trust and Identity-centric ecosystem within the enterprise.

Attendees will learn about the four standard elements of access policies – Principal, Action, Resource, Context – and the importance of having a rich, fully identity-aware platform with which to express these policies. Attendees will also understand how access policies and enterprise security architectures are inextricably bound together, and how to map this interdependency into clear, sensible, and concrete actions. Regardless of which vendor platforms are in use in their enterprise, attendees will have a clearer vision for how they should approach the creation of access policies in their environment.

Speaker
jason garbisJason Garbis is an experienced contributor and influencer within the information security industry. As Founder and CEO at Numberline Security, he helps organizations prepare for, define, and execute effective Zero Trust strategies. Jason has authored two books on Zero Trust security, “Zero Trust Security: An Enterprise Guide” and “Getting Started With Zero Trust”. He is co-chair of the Zero Trust Working Group at the Cloud Security Alliance, and is a frequent contributor to and speaker at industry conferences.

Jason holds a CISSP certification, has a BS in Computer Science from Cornell, and an MBA from Northeastern. Professionally, he has over 20 years of experience in the areas of Identity Management, Enterprise Security Architectures, Network Security, and Security Strategy. Previously, he served as Chief Product Officer at Appgate, and held leadership roles at security firms including RSA and Aveksa. Prior to that Jason held roles in product management and engineering at various technology companies.

 

Registration is required to attend this session. Don’t miss it!