Brett Winterford

Brett Winterford is Vice President of Okta Threat Intelligence. Okta Threat Intelligence delivers timely, highly relevant and actionable insights about the threat environment, with a focus on identity-based threats. Brett was previously the regional Chief Security Officer for Okta in the Asia Pacific and Japan, and advised business and technology leaders in the region on all things identity.
Prior to Okta, Brett held a senior security leadership role at Symantec, and helmed security research, awareness and education at Commonwealth Bank. Brett is also an award-winning journalist, editor-in-chief of iTnews Australia and a contributor to the Risky Business podcast and newsletter, to ZDNet, the Australian Financial Review and the Sydney Morning Herald.

Brett Winterford

December 10, 2025

Account Recovery, without Password Resets

Temporary Access Codes provide an opportunity to constrain the ability of help desk staff to reset user passwords and MFA factors.

Kalpana Adlakha and Brett Winterford

September 2, 2024

Seven Ways to Reduce Super Admins in Okta

The first step in your journey to Zero Standing Privileges is to reduce the standing assignment of highly privileged roles.

Moussa Diallo and Brett Winterford

April 27, 2024

How to Block Anonymizing Services using Okta

Over the last month, Okta has observed an increase in the frequency and scale of credential stuffing attacks targeting online services, facilitated by the broad availability of residential proxy services, lists of previously stolen credentials (“combo lists”), and scripting tools. From March 18, 2024 through to April 16, 2024, Duo Security and Cisco Talos observed large-scale brute force attacks on multiple models of VPN devices. From April 19, 2024 through to April 26, 2024, Okta’s Identity...