Threat-aware identity and access management (IAM) must evolve to become aware of security threats and vulnerabilities rather than turn a blind eye to them. Traditional, static access definitions will need to evolve to use identity context, such as user-, device- and transaction-based attributes to improve the assurance of legitimate user access and prevent fraudulent activities. Real-time identity analytics can help answer these questions while enabling better decision-making and detecting anomalous behavior to audit and enable enterprise-wide security risk management.”]