Secrets & machine identity elevated to CISO discipline (PQC urgency)

Key Questions

Why are secrets and machine identities becoming a CISO priority?

Non-human identities now outnumber managed accounts, with two-thirds unseen and unmanaged according to Orchid Security research. This elevates secrets management to a formal discipline.

What post-quantum cryptography updates are available for storage?

Western Digital Ultrastar HDDs now support ML-DSA-87, while CTC and Quantum Knight offer FIPS 140-3 validated PQC solutions for quantum-safe encryption.

What federal deadlines apply to post-quantum migration?

Draft executive orders and NIST guidance set 2030/2031 deadlines for federal agencies to adopt quantum-resistant digital signatures and key encryption.

How do HSMs and KMS support cloud sovereignty?

HSMs and KMS provide hardware-backed key management that meets sovereignty requirements while protecting against AI and quantum threats, as outlined by Utimaco.

What risks do CI/CD environment variables pose?

Storing secrets in CI/CD environment variables creates exposure points that attackers can exploit, requiring stricter identity and secrets controls.

What is the status of NIST post-quantum standards?

NIST has released initial PQC standards for digital signatures and encryption, with hybrid crypto-agility recommended for enterprises preparing for quantum threats.

How does PANW Idira unify identities?

PANW Idira consolidates identity management across human and non-human accounts to reduce the invisible identity gap identified in recent studies.

What quantum-safe solutions are emerging for enterprise storage?

Western Digital’s PQC-enabled Ultrastar drives and partnerships like CTC/Quantum Knight provide FIPS-validated options for protecting data against future quantum attacks.

PANW Idira unifies IDs; Orchid NHI risks; CI/CD env var secrets. Quantum-safe storage: Western Digital Ultrastar HDDs with ML-DSA-87; CTC/Quantum Knight CLEAR PQC (FIPS 140-3). NIST post-quantum standards and hybrid crypto-agility; 2030/2031 federal deadlines. Utimaco HSM/KMS primer for cloud sovereignty and AI/quantum threats.

Sources (26)

Updated May 23, 2026

Security Domains Digest

Secrets & machine identity elevated to CISO discipline (PQC urgency)

Key Questions

Why are secrets and machine identities becoming a CISO priority?

What post-quantum cryptography updates are available for storage?

What federal deadlines apply to post-quantum migration?

How do HSMs and KMS support cloud sovereignty?

What risks do CI/CD environment variables pose?

What is the status of NIST post-quantum standards?

How does PANW Idira unify identities?

What quantum-safe solutions are emerging for enterprise storage?

Why HSMs and KMS Drive Cloud Data Security and Sovereignty

CTC, Quantum Knight Partner on Post-Quantum Cybersecurity Technologies

Western Digital Adds Post-Quantum Cryptography to Ultrastar UltraSMR HDDs

Is Your Data Quantum-Safe? Securing Enterprise Storage with Crypto4A #whatsspinnin #podcast

Q-Day Is Now Only 3 Years Away (Google Just Confirmed)

Risk & Compliance Exchange 2026: NIST’s Bill Newhouse, John Hopkins APL’s Prathibha Rama on prepping for PQC world

Draft executive order would set deadlines for digital signature and key quantum encryption

IBM & Delinea on Identity Security, Agentic AI and PAM Challenges | RSAC 2026

Encryption standards face a reckoning as quantum computing era edges closer

PacketLight Networks Expands Security with FIPS-Validated PQC Capabilities

Machine Learning Enhanced Quantum-Safe Encryption: A Novel ...

CISA Contractor Exposed AWS GovCloud Credentials and DevSecO

News alert: Orchid Security study finds invisible identities now outnumber managed accounts

Privileged Access Management Explained: Securing AI Agents, NHIs & Enterprise Access

Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report

Palo Alto Networks Launches Idira for AI Identity Security

US cyber agency CISA exposed reams of passwords and cloud keys to the open web

Secret Sprawl Incident Response Playbook for Security Teams

ETCISO Identity & Access Management Summit 2026 | Securing the Future of Digital Trust

NIST Advances Nine Post-Quantum Cryptography Candidates to Next Round of Standardization

The Non-Human Identity Crisis: Why Your Machine Identities Are Your Biggest Governance Gap

Is npm Safe? A Practitioner Guide to npm Security in 2026

Detecting Secrets, SAST Issues, and Vulnerabilities in CI/CD Pipelines

Why Your Laptop Leaks Secrets: The BitLocker Flaw

How the Permission System That Stopped Nothing Was Correctly Configured | Permissions Security

The Canvas Breach Explained: It Wasn't an IT Outage — It Was an Identity Crisis