Martin Kuppinger

Principal Analyst & Co-Founder
Stuttgart / Germany

25 years in IT industry
Email    Blog    @MartinKuppinger    Profile   

Roles & Responsibilities at KuppingerCole:

As Founder and Principal Analyst, Martin Kuppinger oversees the KuppingerCole research, provides own research, engages in Customer Advisories in his role as Trusted Advisor, and acts as a Member of the Board.

Background & Education:

Martin wrote more than 50 IT-related books and is known as a widely-read columnist and author of technical articles and reviews in some of the most prestigious IT magazines in Germany, Austria and Switzerland. He is a renowned global leader in Identity Mangement and Digital Identity and is among the top 10 experts in this field globally. He is also a well-established speaker and moderator at seminars and congresses. Martin holds a Bachelor in Economics.


Areas of coverage:

Martin Kuppinger oversees all areas of KuppingerCole research and has outstanding expertise in areas such as cybersecurity, blockchain, and AI.

Professional experience:

His interest in Identity Management dates back to the 80s, when he also gained considerable experience in software architecture development. Over the years, he added several other fields of research, including virtualization, cloud computing, overall IT security, and others. Having studied economies, he combines in-depth IT knowledge with a strong business perspective.

Recent research

Executive View

ZertID from Sysintegra

Sysintegra ZertID is an IGA solution that is built on top of the ServiceNow platform. It integrates natively with ServiceNow features such as the CMDB and Security Incident handling. By utilizing capabilities such as the data management and workflows of ServiceNow, and with full user…


Vorsprung vor den Cyberkriminellen: Die externen Bedrohungen verstehen

Verantwortliche für Cybersicherheit sehen sich mit wachsenden Herausforderungen konfrontiert, da die Cyberkriminellen immer kreativer werden und mit einem anscheinend unendlichen Arsenal an Ressourcen bewaffnet sind. Die rasante Digitalisierung in der Folge der Pandemie und die unsichere…


IAM Projects Done Right: Everything as a Service

Delivering on IAM is not always easy. Many organizations have experienced IAM projects stalling. An approach for one-stop-shopping can help, where the implementation, the IDaaS style deployment (Identity as a Service), and operations and continuous evolution go hand-in-hand, resulting in an…

Executive View

BehavioSec™, a LexisNexis® Risk Solutions Company

BehavioSec™, a LexisNexis® Risk Solutions Company, ist ein Anbieter von Lösungen für die Erkennung von Angriffs- und Betrugsrisiken bei der Authentifizierung (Fraud Reduction). Die BehavioSec-Lösungen reduzieren das Risiko für Kontoübernahmen durch Angreifer (Account TakeOver, ATO), die…


Getting Ahead of the Cybercriminals: Understanding the External Threat Landscape

Security leaders face an uphill task as cybercriminals become increasingly creative and armed with an arsenal of seemingly unlimited resources. Rapid digitalization to re-capture post-pandemic growth coupled with an uncertain geopolitical climate requires security leaders to rethink their…

Recent blog posts


Enhancing Zero Trust in a ServiceNow Environment

Zero Trust has been established as the guiding principle for cybersecurity. The “don’t trust, always verify” approach stands for methods that don’t rely only on singular security tools, such as the traditional network perimeter firewall, to keep attackers out.…


Martin Kuppinger's Must Watch Sessions

CSLS (Cybersecurity Leadership Summit) 2022, a fully hybrid event taking place Nov 8th to 10th in Berlin, is approaching quickly. Being asked to pick few must watch sessions, I had the challenge of selecting only a few, instead of a long list of sessions worthwhile to attend or…


Training Non-techies on Cybersecurity Awareness

Most users are just a bit techie. Some more, some less. But as we all know, real cybersecurity experts are rare. Thus, it is best to assume that the ones you want to educate on cybersecurity awareness and response are no technical, nor cybersecurity experts.  However, with…


Thales Acquires OneWelcome: Beyond CIAM

Thales, a global provider of advanced technology solutions, with more than 80,000 employees worldwide, and an established business unit for Digital Identity and Security, has announced the acquisition of OneWelcome, one of the leading European providers of CIAM (Consumer IAM). While the…


Trending at EIC 2022: Identity Proofing & Fraud Reduction

Aside from the convergence of decentralized and centralized identities and the return of policy-based access controls, here is my #3 on the list of hot topics at EIC 2022: Identity proofing & fraud reduction. These are two closely related topics, with fraud covering not only the initial…

Recent videos


You Deserve a Better Security Testing Experience

Join security experts from KuppingerCole Analysts and security testing firm Synack as they discuss how to address the security challenges of digital transformation, rapid infrastructure change, agile software development, compliance requirements, sophisticated attackers, and the global…


Making Passwordless Authentication a Reality: The Hitchhiker’s Guide

In this webinar, Bojan Simic, founder and CEO at HYPR, and Martin Kuppinger, Principal Analyst at KuppingerCole Analysts, share their insights and experience on what to consider when moving towards passwordless authentication, and making this a reality. They talk about solutions, but…


Analyst Chat #149: The Top 5 Cybersecurity Trends - Looking Back at CSLS 2022

Deep Fakes, AI as friend and foe, Business Resilience, Mis-, Dis- and Malinformation: The Cybersecurity Leadership Summit has taken place in Berlin and covered all of this and much more. Martin Kuppinger and Matthias look back on the event and identify their Top 5 Trends from CSLS2022 in…


Ensuring the Security of Microsoft Active Directory and Azure AD

In the face of increasing cyber-attacks by cybercriminals and nation-states, most organizations are investing in filling in the gaps in their cyber defenses, but as the landmark SolarWinds supply chain breach showed, securing Microsoft Active Directory (AD) is vital, but often…


Analyst Chat #142: Cyber Resilience: What It Is, How to Get There and Where to Start - CSLS Special

A key issue for many companies beyond technical cybersecurity is cyber resilience. This refers to the ability to protect data and systems in organizations from cyber attacks and to quickly resume business operations in the event of a successful attack. Martin Kuppinger, Mike Small, and John…