RunAs Radio Zero Trust in 2026 with Michele Bustamante
13 snips
Dec 17, 2025 Michele Leroux Bustamante, CEO and co-founder of Soliance, lends her cloud security expertise to discuss evolving zero-trust security. She shares insights on the growing complexity CISOs face, emphasizing security as a continuous journey. Michele explores the importance of secure development environments and the balance between identity and authorization. Key topics include the NIST Cybersecurity Framework for measuring security maturity and the significance of mandatory MFA in reducing account risks. Her practical advice on identity platforms rounds out this engaging discussion.
AI Snips
Chapters
Transcript
Episode notes
Dev Playgrounds Cause Production Surprises
- Developers often work in insecure playground dev environments that differ from prod.
- Those differences cause failures when code moves to QA or production, frustrating teams.
Separate Authentication From Authorization
- Identity and authorization are distinct problems: tokens for authentication, policies for fine-grained permissions.
- Keep tokens small and push complex authorization to a policy system for auditability.
Avoid Building Your Own Identity System
- Prefer managed identity platforms (Auth0, Entra, Duende) instead of rolling your own identity.
- If you customize, get expert help and own the code responsibly with ongoing maintenance.