Academy Basic
Intermediate Academy modules — Basic tier required (₹499/month)
Module 9 · Zero Standing Privilege and Just-in-Time Access
The principle Traditional model: 100 admins, each with persistent admin rights. Attacker compromise of any admin = persistent privileged access. Insider threat…
AcademyModule 7 · Identity Governance — Lifecycle, Access Reviews, SoD
What IGA covers Lifecycle management: joiner, mover, leaver workflows. Access provisioning: who gets what, on what basis. Access reviews / certification: periodic…
AcademyModule 8 · Customer Identity (CIAM) — Scale, Fraud, KYC
CIAM vs workforce IAM — the differences Dimension Workforce IAM CIAM Scale Thousands Millions to hundreds of millions Onboarding HR-provisioned Self-service registration…
AcademyModule 5 · Federation at Scale — SAML, OIDC, SCIM Patterns
The three protocols Protocol Purpose SAML 2.0 Browser-based SSO; enterprise standard since 2005 OIDC (OpenID Connect) SSO on top of OAuth 2.0;…
AcademyModule 6 · Privileged Access Management — PAM Architecture and Operations
What privileged accounts cover Domain Admin / Enterprise Admin (Windows AD). Root / sudo on Linux servers. Database admin (DBA) for production…
AcademyModule 8 · Data Masking, Tokenisation, Pseudonymisation
Why this module exists. “Use real production data in development” is the line that produces audit findings and breaches. The alternatives —…
AcademyModule 9 · Privacy Engineering Beyond Compliance
Why this module exists. “Privacy by design” is a phrase in every privacy framework and a practice in few organisations. The shift…
AcademyModule 7 · Data Discovery and Classification — Automated Approaches
Why this module exists. Manual data classification fails. Survey-based “where is sensitive data” produces inventories that miss 40-60% of actual locations. Modern…
AcademyModule 5 · DLP at Scale — Endpoint, Network, and Cloud
Why this module exists. Indian enterprises commonly buy DLP licences and never tune them effectively. The deployment runs in monitor-mode forever, alerts…
AcademyModule 6 · Encryption Strategy — At Rest, In Transit, In Use
Why this module exists. “We encrypt everything” usually means “we encrypt some things at some layer, with key management we haven’t audited.”…