Organizations are increasingly leveraging the benefits of the cloud to support employee productivity and IT efficiencies, while also delivering more compelling user experiences to their external customers and partners. Yet migrating these various users to new cloud systems can be fraught with challenges, particularly when it comes to securing highly regulated personally identifiable information (PII). According to GDPR regulators, “personal data” or PII is classified as any info “related to an identified or identifiable natural person”—which in practice could mean anything from an account number to an IP address. IT and cybersecurity chiefs must plan their migration strategy carefully, with plans for mitigating security gaps and minimizing user friction. What are the risks? Cloud migration can be a daunting prospect—especially given the complexity of modern hybrid IT environments—and user identity sits at the heart of the challenge. Hackers are increasingly focusing their efforts on users and their passwords rather.