This episode features Daniel Stefaniak, Vice President Architect – Cybersecurity and Identity at JPMorgan Chase. A respected expert in identity and access management, Daniel has spent his career architecting and deploying large-scale Active Directory, Entra ID, and cloud-based IAM solutions for millions of users. In this episode, he explains why attack path management is never a one-time effort, how environments drift toward risk without dedicated ownership, and what it takes to build a sustainable approach to reducing exposure in complex identity systems.
The Anatomy of Attack Path Management with Daniel Stefaniak, VP Architect – Cybersecurity and Identity at JPMorgan Chase
December 02, 2025
(17:33)
See Other Podcasts
In this episode, Mark explains how Gartner's research model works and what his team is prioritizing across identity verification, authorization, ITDR, and decentralized identity. He also breaks down what AI means for identity right now and why securing AI agents is harder than most teams realize.
In this episode, Angie dives into the organizational and cultural work that most identity programs skip. She shares why identity deserves its own program, how to apply OCM to bring resistant stakeholders on board, and why governance must come first. Angie's core argument is that if identity security creates too much friction, people will route around it, and that's where the real risk lives.
This episode features Sarah Cecchetti, Director of Product Management at Semperis. A veteran identity executive, Sarah co-founded IDPro and co-authored NIST SP 800-63-3C Digital Identity Guidelines. She previously led Amazon Cognito as Head of Product at AWS, where she also open-sourced Cedar, the policy language at the center of this conversation.
This episode features a virtual roundtable hosted by Michele Crockett, Associate VP of Product Marketing at Semperis.
This episode features Sander Berkouwer and Raymond Comvalius, two longtime identity security experts and Microsoft Most Valuable Professionals (MVPs). With decades of experience in …
With a career spanning healthcare, finance, crypto, and the Department of Defense, Krista brings a uniquely nontraditional path into cybersecurity, …
This episode features Cliff Fisher, Senior Solutions Architect at Semperis and former Senior Technical Program Manager on Microsoft’s Active Directory …
In this episode, Tim Beasley, a Senior Incident Response Consultant at Semperis explains why gaining access is only the beginning of modern attacks and why identity remains the primary path for escalation. He breaks down how attackers exploit credential exposure and identity infrastructure, and why prevention alone fails without a recovery-first mindset. He shares real-world lessons from incident response and recovery, including how teams contain threats and limit the impact of identity compromises.
This episode features Dr. Mary Aiken, Professor of Cyberpsychology at Capitol Technology University and one of the world’s leading experts …
This episode features Andy Drag, Product Manager at Cohesity. With a background in systems administration and two managed service provider startups, Andy brings deep, hands-on insight into the challenges IT teams face. Over the last decade, he’s led product management across backup vendors and SaaS continuity platforms, shaping products around integrations, cyber recovery, and resilience.
Sign Up for Email Updates