Lead Analyst

Paul Fisher

Paul Fisher is a Senior Analyst who researches primarily on cybersecurity and identity and access management (IAM). He also studies trends in AI, IoT and data governance for different industry sectors including automotive. Paul is responsible for managing relevant quantitative research at KuppingerCole.

He has been an IT journalist and analyst since 1991. In that time, he served as editor in chief of several major IT and business titles in the UK. Paul has worked as a communications consultant with IBM, HP Enterprise Security Services, Sky UK and other leading companies on data security and IT projects.

Latest research

Executive View
SailPoint Non-Employee Risk Management
August 16, 2023
This KuppingerCole Executive View looks at some of the options available to IT leaders and senior security strategists to manage non-employee and other third-party identities. A technical review of SailPoint’s Non-Employee Risk Management solution is included.
Multi-Organization Access Governance
July 17, 2023
This KuppingerCole Whitepaper explores identity access across multi-organizations and parts of their supply chains, from a single point. By using such, organizations can streamline access and collaboration across their supply chains and third-party users, simplifying administration with…
Executive View
June 27, 2023
This Executive View report examines cloud entitlement management challenges companies face. It also provides a concise analysis of the Britive platform that enables cloud-first security best practices such as multi-cloud Just-in-Time (JIT) permissioning, cloud secrets governance, and…
Executive View
Devolutions Server and Remote Desktop Manager
April 24, 2023
CISOs must provide secure, rapid access to on-premises, IaaS and SaaS computing environments. It requires a rethink on traditional approaches to authentication, including to privileged resources. This report looks at the PAM challenges companies face with many thousands of active machine and…
Securing Non-Human Identities
April 04, 2023
This KuppingerCole Whitepaper looks at issues IT managers and security strategists face trying to manage identity and access in complex multi-cloud IT infrastructures. It focuses on the challenges of managing non-human identities. There is also an overview of Microsoft Entra Workload…
Cloud Access Governance
January 26, 2023
Across the globe there has been a significant increase in the adoption of cloud and multi-cloud environments, as businesses scramble to take advantage of digital transformation. With more clouds comes more access and more data spread across expanding IT infrastructures. With a further shift…

Latest blog posts

A Secure Supply Chain is Impossible. Here is why.
September 19, 2023
Type an email address into DeHashed or similar and there is a pretty good chance it will appear as one of millions scraped or exposed on the Internet every single day. That email is an identity. Guess the password attached to this identity (not hard given how weak most passwords are.…
A New Pamocracy is Growing Inside Your Organization
March 23, 2023
A New Pamocracy is Growing Inside Your Organization When you were not looking, the number of privileged identities you manage went from thousands to millions OK everybody is doing it right now, so I asked the analyst’s new best friend, Chat GPT , to define Privileged…
Stop attackers enjoying a pick ‘n’ mix attack surface
December 09, 2021
We know that the way forward for business IT is to use multi-hybrid architectures for long term agility of operations. Such architectures will include multiple clouds for new services, on-prem stacks, edge devices, OT integration and much more. But while the need for multi-hybrid is clear,…
Complex Modern Business Needs Trusted IT Partners to Be Secure
October 08, 2021
In today’s business environment, companies have three major challenges – making a profit, finding great people, and staying ahead of the competition. That’s quite enough, but they also have major operational challenges with IT, cyber security, and compliance. For example,…
Microsoft’s Threat Intelligence Play is Good News for Customers in Fight Against Ransomware
July 19, 2021
This week, Microsoft made official its agreement to acquire Threat Intelligence vendor RiskIQ in a deal rumoured to be worth around $500m. It is not an unusual event; Microsoft has absorbed five businesses already in 2021, and usually it is to acquire a discrete technology it deems useful…
PAM Is Changing and You Need to Know Why
April 22, 2021
What is left to say about PAM that has not already been said? Well in my opinion, quite a lot – as I hope you find out when you join me at the forthcoming KCLive Event, Operationalizing Privileged Access Management. I talk to PAM vendors all the time and I believe it is a truly…

Latest videos

Webinar Recording
Perfecting Privileged Access Management (PAM)
September 15, 2023
Join security experts from KuppingerCole Analysts and Keeper Security as they look at user-friendly ways of increasing visibility, security, and control over employee passwords, credentials, and secrets. They will also discuss Privileged Account and Session Management (PASM), Secrets…
The Evolution of PAM: Why We'll Have to Rethink Access Management
August 24, 2023
Dive into the world of Privileged Access Management (PAM) and its significance in today's rapidly evolving security landscape with Lead Analyst Paul Fisher and Saviynt's Chris Owen. They explore the challenges organizations face, customer expectations, and the need to reset aspirational…
Webinar Recording
Phishing-Resistant MFA: The Next Evolution for Strong Authentication
April 26, 2023
Join cybersecurity experts at KuppingerCole Analysts and workforce authentication firm Secret Double Octopus as they discuss the ways cyber-attackers are getting around MFA systems. They will also look at how organizations can better deploy MFA and go one step beyond to deliver strong…
Webinar Recording
Welcome to the Pamocracy!
April 19, 2023
In this webinar Lead Analyst and PAM specialist Paul Fisher will guide you through how this shift has happened, what it means for you organization, and how you can benefit from the Pamocracy. He will also explain how Privileged Access Management vendors and cloud providers have adapted to…
Analyst Chat
Analyst Chat #168: Trends and Predictions for 2023 - Next-Generation PAM
April 10, 2023
In this episode, Matthias is joined by Paul Fisher to delve deeper into the sub-series on Trends and Predictions for 2023 and beyond. The world is constantly evolving and a lot has changed and is still changing in the PAM market, which is expanding and undergoing significant transformation.…
Webinar Recording
Understanding the Privacy Evolution to Get Ahead of the Curve
March 01, 2023
Join privacy experts from KuppingerCole Analysts and OneTrust as they discuss the evolving privacy landscape and how businesses can navigate it successfully, as well as share guidance on how to evolve privacy programs to become embedded in corporate culture and technology. Paul Fisher,…