Your identity provider is your blast radius. Treat it that way.

Every modern intrusion eventually becomes an identity intrusion. Most teams still defend the IdP like it is an HR system.

By Priya Anand·May 19, 2026·7 min read

If an attacker reaches your identity provider, the rest of your stack stops mattering. That is a sentence every CISO agrees with and almost nobody operationalises.

We outline the five controls that actually move the needle, and the three that are theatre.

— Priya Anand, Midnight Logic

Your identity provider is your blast radius. Treat it that way.

More from Enterprise Defense

Legacy OT is the last unpatched continent. Hospitals, ships, and factories are on it.

Detection engineering is finally a discipline. It needs to act like one.