Close this search box.

Safeguarding Digital Identities – Understanding ITDR


An interview with David Morimanno (DJ), Sr. Advisory Manager at Integral Partners and Steve Tucker, Commercial Director at Xalient.

A couple weeks ago Xalient sponsored Europe’s premier Identity and Access Management Conference, IDM. I attended with my colleague DJ from Integral Partners to network with C-level IAM leaders and to hear from peers and subject matter experts in the Identity space.

A range of topics we’re covered, from Zero Trust in the modern digital workplace to Authorization-as-a-Service, and why it matters. But one area that kept reappearing in conversations and talks was ITDR.

On the back of this, I caught up with DJ to get his views on ITDR and why it is so important in today’s security landscape.


Now, David, there’s been quite a buzz around ITDR in the identity space which was evident at the IDM Event. Firstly, what is ITDR and why is it gaining so much attention?


ITDR, or Identity Threat Detection and Response, is a comprehensive security discipline that focuses on identifying, preventing, and responding to threats targeting user identities and identity-based systems. In today’s digital landscape, where cyberattacks are becoming more sophisticated, safeguarding user identities has become paramount. The attention on ITDR is a response to the increasing value of user credentials and the need for robust security measures to protect them.


That makes sense. Can you elaborate on why ITDR is so important in today’s cybersecurity landscape?


User identities have become primary targets for cyberattacks due to their inherent value. If attackers gain access to user credentials, they can potentially compromise sensitive data, financial accounts, and critical systems. ITDR plays a crucial role in protecting these identities by providing visibility into user activity, detecting anomalies, and enabling prompt remediation.


Interesting. Could you break down the key components of ITDR for us?


ITDR encompasses several key components that work together seamlessly. These include:

User Activity Monitoring – Continuously monitoring user activity to identify suspicious behaviour, such as login attempts, access patterns, and data usage.

Risk Assessment – Evaluating user identities based on access privileges, risk factors, and past behaviour to prioritise security measures.

Threat Detection – Leveraging machine learning and behavioural analytics to detect anomalies indicative of identity-based attacks.

Incident Response – Implementing automated or manual procedures to contain and remediate identity-based threats swiftly.


Can you explain ITDR vs EDR (Endpoint Detection and Response)?


While both ITDR and EDR focus on detecting and preventing cyberattacks, they differ in scope and focus. EDR primarily monitors endpoint devices like laptops and desktops for malicious activity, while ITDR specifically targets user identities and identity-based systems.


Thanks for clarifying that. What are the benefits organisations can expect from implementing ITDR?


Organisations stand to gain several benefits from ITDR, including reduced risk of identity-based attacks, enhanced user security, improved compliance with regulatory requirements, and rapid incident response, minimising downtime and data loss.


Those are significant advantages. How can organisations effectively implement ITDR?


Effective ITDR implementation involves a combination of tools, technologies, and processes. Organisations should start by assessing identity risks, implementing robust Identity and Access Management (IAM) controls, deploying ITDR solutions for continuous monitoring, and educating employees through regular security awareness training.

Thanks for taking the time to explain this, DJ. It is clear that securing digital identities with ITDR isn’t just following a trend; it’s become a necessary step in tackling the ever-evolving landscape of cyber threats. Companies that make a conscious effort to implement robust identity security measures not only minimize risks but also bolster user safety and maintain uninterrupted business operations. Given the ongoing evolution of cyber threats, the significance of ITDR in safeguarding user identities is bound to grow even more pivotal.

Share this Post:

Subscribe to Newsletter!

Portrait of Mark Foulsham, Board Advisor, NED, COO/CIO, Fractional Support, Digital Leadership Coach

Mark Foulsham

Board Advisor, NED, COO/CIO, Fractional Support, Digital Leadership Coach

With a broad background as a COO/CIO/CDO, C-Suite Advisor, NED, Senior Transformation Leader and Coach, Mark tackles multiple fronts from the advantage of diverse experience in business operations, technology, procurement, delivery and risk. With a deep knowledge of business models from multiple sectors and extensive experience in fast-paced digital start-ups.

Mark’s work across extensive business types, functions and countries empowers him with experience to bear across silos. Mark has built a reputation for advocating cross-business collaboration, taking a pragmatic approach and championing transformative change.