Blog on ConductorOne

Three Properties Identity Must Have in the Agentic Era

Thu, 12 Mar 2026 07:00:00 +0000

We couldn’t manage identity for humans. Now every human has 17 agents, and those agents are creating agents of their own.

Here is the uncomfortable truth about identity and access management: we were already losing before AI agents arrived.

Your AI Strategy Has a Blind Spot

Sun, 08 Mar 2026 07:00:00 +0000

Technical teams are already deep into AI. Developers are shipping code with Cursor and Copilot, data engineers are building pipelines with agentic workflows, and security teams are experimenting with automated triage.

Access Management Needs a Conductor, Not More Instruments

Wed, 04 Mar 2026 07:00:00 +0000

Every employee now has an entourage of AI agents. The agents have agents of their own. And no one is on the podium.

An orchestra without a conductor is just noise.

February 2026 Product Wrap

Mon, 02 Mar 2026 07:00:00 +0000

February was about expanding what identity governance can control and how securely it can operate across both humans and machines. As organizations accelerate automation and adopt more AI-driven workflows, identity becomes more than access approvals and quarterly reviews. It becomes the control plane for secrets, service accounts, custom logic, and machine-driven actions.

Introducing Functions: Extend Identity Governance With Custom Code, Built Directly Into ConductorOne

Wed, 25 Feb 2026 09:00:00 +0000

Identity is never one size fits all.

Every environment has edge cases. Every organization has unique governance logic. And no matter how flexible an identity platform is, there will always be scenarios where configuration alone is not enough.

How RRCU Uses ConductorOne Automations to Streamline Identity Operations

Mon, 23 Feb 2026 07:00:00 +0000

Automations are one of the most powerful parts of ConductorOne, turning identity governance from manual tasks into workflows that run continuously in the background. With simple if/then logic and real-time data from your identity provider, HR system, and apps, IT and security teams can trigger onboarding, role changes, reviews, and notifications automatically, no code required.

Your Enterprise Needs an Immune System, Not a Better Firewall

Wed, 18 Feb 2026 07:00:00 +0000

Identity and access management solves the same problem biology solved 500 million years ago. It’s time we built it that way.

Your body is managing 37 trillion cells right now. Each one carries molecular identity credentials. Each one gets continuously verified. Each one interacts with neighbors that could be allies or invaders.

Why IAM, IGA, and PAM Break in the Agentic Enterprise

Tue, 17 Feb 2026 01:00:00 +0000

The identity stack most enterprises rely on today (the alphabet soup of IAM, IGA, and PAM) was built for a world with humans in the center.

IAM handled authentication and access for employees. PAM controlled privileged credentials for operators and admins. IGA sat alongside them to clean things up. Joiner, mover, leaver. Periodic access reviews. Compliance checks after the fact.

Defining the Agentic Enterprise

Wed, 11 Feb 2026 00:00:00 +0000

For the last twenty years, the enterprise has had a fairly stable shape.

People sat behind laptops. Software lived in the cloud or on the network. We bought tools to make humans faster and more efficient at knowledge work. CRM, collaboration tools, ticketing systems, analytics dashboards, and identity systems existed to reduce friction for the person behind the keyboard.

What Identity Governance Looks Like When Automation Does the Work

Tue, 10 Feb 2026 07:00:00 +0000

For years, identity governance has been treated as a necessary interruption. Something teams pause to do. Quarterly reviews. Annual audits. Periodic cleanup.

That model no longer fits how modern systems operate.

The Modern IGA RFP Guide: How to Choose the Right Identity Governance Platform in 2026

Mon, 09 Feb 2026 07:00:00 +0000

Looking for an IGA solution can feel overwhelming. There’s too many options, lots of flashy features, and everyone claiming to be the best choice. But here’s the thing: choosing the wrong IGA solution can have a negative impact on your entire organization’s security and productivity.

Meet Automations Architect: Build Automated Workflows in Minutes

Fri, 06 Feb 2026 09:00:00 +0000

Automations are one of the most powerful parts of ConductorOne. They are how teams turn identity policy into action: joiner-mover-leaver flows, unused access cleanup, and proactive alerting that keep orgs secure every day.

The IGA Maturity Curve: Shifting from Reviews to Assurance

Fri, 06 Feb 2026 07:00:00 +0000

The IGA Maturity Curve: Shifting from Reviews to Assurance

Manual user access reviews were built for a different era. Today, access changes constantly, risks emerge in real time, and identity has become central to how organizations operate securely at scale.

January 2026 Product Updates: Modern Identity at Scale

Fri, 30 Jan 2026 07:00:00 +0000

As we kicked off 2026, we focused on continuing to make identity easier for modern organizations.

Identity today is no longer a set of static approvals and quarterly checkpoints. It is continuous, time-bound, and deeply tied to how work gets done across infrastructure, SaaS, and operations. This month’s updates reflect that shift—we focused on making identity governance more dynamic, more self-service, and more observable, while continuing to remove friction from everyday workflows.

Take Full Control of Identity Data with Advanced Attribute Mapping in Super Directory

Tue, 27 Jan 2026 07:00:00 +0000

Identity data rarely lives in a single system. Job titles, managers, emails, and identifiers are often spread across multiple apps, and they’re not always consistent. Super Directory gives you precise control over how those attributes are sourced and how users are matched across systems.

Why User Access Reviews Are Becoming a Relic of the Past

Tue, 20 Jan 2026 07:00:00 +0000

For years, user access reviews (UARs) have been treated as the centerpiece of identity governance.

If you want to prove control, you run reviews. If you want to pass an audit, you document reviews. If something goes wrong, you point to the last completed review.

10 IGA Metrics Every Security Team Should Use to Measure Success

Fri, 16 Jan 2026 00:00:00 +0000

How do you know if your identity governance program is actually working? For many organizations, the answer is still framed around completion, not impact.
Access reviews were launched, requests were processed, audits were passed, etc.

NIST’s New Cyber AI Profile Signals a Shift: AI Security Starts With Identity

Tue, 13 Jan 2026 07:00:00 +0000

As we head into 2026, AI systems are becoming embedded in core business operations, security tooling, and decision-making workflows across the enterprise.

Recognizing this shift, the National Institute of Standards and Technology (NIST) recently released a preliminary draft of its Cybersecurity Framework Profile for Artificial Intelligence (NIST IR 8596), also known as the Cyber AI Profile.

Identity Becomes the Battlefield: 3 Cybersecurity Predictions for 2026

Thu, 08 Jan 2026 07:00:00 +0000

For years, cybersecurity has chased symptoms: malware, endpoints, networks, cloud misconfigurations. In 2026, the industry finally agrees on what’s actually been broken all along.

Identity.

Identity as the control plane for access, trust, and risk. Here are three predictions for how identity security evolves—and accelerates—in 2026.

How Dynamic Access Enables Least Privilege

Fri, 02 Jan 2026 07:00:00 +0000

Most organizations still grant access using a static model. When someone joins the company, they get a predefined set of applications based on a single attribute, often their department.

If you join Department A, you receive Applications 1, 2, and 3.
If you join Department B, you receive Applications 1, 3, and 4.