Q1. Could you start by giving us a brief overview of your professional background, particularly focusing on your expertise in the industry?

I am a product leader focused on building AI-first enterprise platforms at the intersection of identity, security, and scalable SaaS ecosystems.
My experience covers multiple product verticals, including Cybersecurity (Identity Governance & Administration (IGA), Identity & Access Management (IAM)), GenAI & GenBI, Sustainability, FinTech & AI/ML, as well as customer-centric platforms such as CRM, Marketing Automation (Omnichannel), and Customer Experience Management (CXM).

I specialize in converting complex technologies into secure, scalable, and commercially viable products — particularly in which identity becomes foundational to platform architecture and enterprise growth.

Q2. In 2026, as the EU’s CBAM enters its definitive phase, how are products linking a 'User Identity' to a 'Carbon Budget'? Is 'Personal Carbon Accounting' the next frontier for CXM?

As the European Union operationalizes the Carbon Border Adjustment Mechanism (CBAM), carbon is evolving into a traceable, identity-linked data layer.
We are seeing early models where emissions are tied to products, transactions, and users — effectively creating identity-bound carbon footprints.
This sets the stage for “Personal Carbon Accounting” to become a programmable CXM layer in which carbon influences decisions across pricing, personalization, and engagement.

The shift is from compliance reporting to real-time, identity-driven sustainability intelligence — but it will depend heavily on trusted identity frameworks, interoperable data systems, and privacy safeguards.

Q3. As agents require API keys and tokens for cross-app execution, how do you prevent the multiplicative increase in the attack surface? Is the 2026 enterprise strategy moving toward 'Zero Standing Privileges' (ZSP) for agents, and is that actually enforceable?

Agentic systems substantially expand the attack surface due to autonomous, cross-system execution.

The enterprise shift is toward:

• Ephemeral credentials
• Just-in-time (JIT) access
• Context-aware authorization
• Zero Standing Privileges (ZSP)

ZSP is enforceable — but only with workload-native identity architectures, real-time policy engines, and continuous observability.

The key shift is conceptual:

Agents are not users — they are ephemeral, task-scoped identities.

Without this model, credential sprawl becomes exponential and unmanageable.

 

Q4. How are you advising firms to govern an AI agent that creates other agents to complete a task? Who owns that identity lifecycle?

When agents create other agents, governance must become recursive and deterministic.

The core principle is:

The originating authority owns the entire identity lifecycle.

This requires:

• Parent-child identity traceability
• Time-bound permissions
• Immutable audit logs
• Policy-driven kill switches

Ownership must always map back to a governed human or service identity. Without strict lifecycle control, enterprises risk uncontrolled identity propagation and privilege escalation.

 

Q5. Can IGA move from being a 'cost center' to a 'profit driver' by enabling Zero-Trust for Fintech Partnerships, allowing banks to onboard partners faster?

Yes — and this shift is already underway.

IGA becomes a profit driver when it enables:

• Faster partner onboarding
• Automated trust and access provisioning
• API-driven ecosystem expansion

In fintech, reducing onboarding timelines from months to days directly affects revenue velocity.

Identity, in this context, is no longer a compliance layer — It becomes a growth enabler and ecosystem accelerator.

 

Q6. Based on your work with 'Agentic AI Co-pilots,' will we ever see an ERP that truly requires Zero Support Staff, or is that a 2030 mirage?

A true “zero-support ERP” is unlikely — but support-light ERP is inevitable.

Agentic AI co-pilots will:

• Predict and prevent failures
• Auto-correct workflows
• Provide real-time decision support

By 2030, support models will shift from reactive troubleshooting to predictive orchestration.

Humans won’t be eliminated — They will move up the stack to supervise and govern intelligent systems.

 

Q7. If you were an investor looking at companies within the space, what critical question would you pose to their senior management?

“Is your identity architecture native to agentic AI — or retrofitted from human IAM?”

This question exposes:

• Security maturity
• Scalability limits
• Regulatory readiness
• Long-term defensibility

In the agentic enterprise era, identity is the control plane.

Organizations that treat identity as foundational infrastructure — programmable, ephemeral, and policy-driven — will define the next decade.