Notifications
Clear all
Topic starter
25/06/2026 3:17 pm
TL;DR: RSA’s appointment of a new regional director for EMEA Central comes as the vendor points to demand for resilient identity controls, passwordless access, AI-powered threat defence, and identity security posture management, with DORA cited as a regional driver. The hiring signal matters less as a personnel note than as evidence that identity security buying conversations are increasingly tied to regulatory pressure and access resilience.
NHIMG editorial — based on content published by RSA Security: RSA to power growth in EMEA Central with appointment of Sabine Davies
By the numbers:
- 9, ore than 9,000 high-security organizations trust RSA to manage more than 60 million identities.
- 90% of IT leaders say properly managing NHIs is essential for a successful zero-trust implementation.
Questions worth separating out
Q: Should identity teams treat passwordless as a governance project or an authentication project?
A: Identity teams should treat passwordless as both, but govern it as a broader assurance change.
Q: How should IAM teams respond when regulatory pressure starts shaping identity strategy?
A: They should align identity controls to the evidence regulators and auditors will ask for, not just the features a vendor advertises.
Q: What does identity security posture management actually change for practitioners?
A: It shifts identity governance from periodic review to continuous visibility.
Practitioner guidance
- Reassess your identity roadmap against resilience outcomes Map current IAM and lifecycle priorities to the evidence demands implied by DORA, access assurance, and recovery expectations across cloud, hybrid, and on-premises environments.
- Separate passwordless adoption from governance readiness Track whether passwordless rollout is paired with identity proofing, exception handling, and recovery procedures that can stand up in audit and incident response.
- Tie posture findings to remediation ownership Connect ISPM outputs to access review, revocation, and exception workflows so identity risk is not trapped in a dashboard without action.
What's in the full analysis
RSA's full article covers the organisational and regional context this post intentionally leaves for the source:
- Sabine Davies’s career background and the leadership rationale behind the appointment
- RSA’s own account of the EMEA Central growth opportunity and target markets
- The company’s positioning on passwordless, AI-powered threats, and ISPM
- Biographical details and corporate contact information for follow-up
👉 Read RSA Security’s announcement on its new EMEA Central regional director →
EMEA Central identity security leadership: what changes for teams?
Explore further
25/06/2026 4:43 pm
Identity security buying decisions are shifting from product features to governance proof. The article links regional growth to DORA, passwordless, and identity security posture management, which is the right set of pressures to watch. Buyers increasingly need to show that identity controls produce evidence, not just access, and that they work across cloud, hybrid, and on-premises estates. The practical conclusion is that identity programmes are now judged by auditability and operational resilience as much as by authentication coverage.
A few things that frame the scale:
- 1 in 4 organisations are already investing in dedicated NHI security capabilities, with an additional 60% planning to do so within the next twelve months, according to The State of Non-Human Identity Security.
- Only 1.5 out of 10 organisations are highly confident in their ability to secure NHIs, compared with nearly 1 in 4 for securing human identities.
A question worth separating out:
Q: How do security teams know whether identity controls are ready for regulated growth?
A: They know the controls are ready when they can prove who has access, how exceptions are handled, how quickly risky access is removed, and whether the evidence is complete enough for audit and incident response. If any of those are unclear, the programme is not ready for expansion.
👉 Read our full editorial: RSA's EMEA Central leadership move and identity security priorities
