u/AlexPete2

Anyone else noticing security vendors quietly shifting from “network” language to “identity” language?

Been sitting through a bunch of architecture reviews lately and it hit me that almost nobody talks about “the perimeter” anymore. Every pitch is about identity context, device posture, continuous verification, session risk etc....which honestly tracks with reality. Most companies barely have a meaningful network boundary now between SaaS, remote work, contractors, and cloud workloads everywhere.

But at the same time, it feels like identity providers have quietly become the single most critical dependency in enterprise security. One bad conditional access policy and suddenly half the company can’t function. Are identity systems becoming a bigger single point of failure than networks ever were?

reddit.com
u/AlexPete2 — 7 days ago