Standing privileges are a security nightmare. Making engineers wait for access is a productivity killer. For fast-moving companies, it’s a choice you can’t afford to make — but the daily tension is real. So how do you solve it?
In this conversation, the Instacart security team shares their playbook for building a fully automated just-in-time (JIT) access program from the ground up. Get a firsthand account of their journey and the principles and tools they used to achieve ironclad security, happy SOX auditors, and productive engineers.
What we cover:
- How Instacart eliminated standing privileges in AWS and moved to a fully just-in-time (JIT) model
- Strategies for using policies and automation to eliminate manual provisioning and deprovisioning
- A look at how Instacart leverages AI to grant the right access, at the right time, without slowing engineers down
- Key principles for building an auditable, compliant-by-design system ready to meet strict compliance regulations like SOX
About the speakers:
Dominic Zanardi, Senior Security Engineer at Instacart
Dominic Zanardi is a New York City-based Senior Security Engineer at Instacart, where he specializes in Cloud Security, Infrastructure, and Identity. His current focus is on developing scalable internal tooling and enhancing automation processes. Before joining Instacart, Dominic led the Security Engineering team at Latch, where he was instrumental in establishing foundational security protocols, emphasizing hardware-based controls, and Public Key Infrastructure (PKI). Before moving into security-focused roles, he also served as a Backend Engineer at Microsoft.
Spencer Sheehan, GRC/IAM Engineer at Instacart
Spencer Sheehan is a seasoned compliance engineering, security risk, and GRC leader with nearly a decade of hands-on experience in pre-IPO and publicly traded SaaS organizations. Spencer’s unique blend of technical and strategic expertise enables him to bridge gaps between engineering, security, and compliance teams, driving impactful, scalable solutions.