Gartner estimates that 50% of IGA deployments are in distress. Priorities are set incorrectly and the most important data and applications are insufficiently airbagged.
IAM programmes imposing a fixed data model are not agile enough to cope with an ever-changing application and regulation landscape.
Access reviews as performed these days are pointless. Managers and team leads are asked questions that are often beside the point and to which they do not know the answer.
Too many employees with privileged access, orphaned accounts, orphaned entitlements and other access creep open doors for data breaches.
For companies that need to get in control fast, typical IAM projects are too heavy-weight and have an overly long duration, leading to frustration across the organisation.
Failure to scale.
Performing controls and reviews with spreadsheets is too time-consuming and complex. This is not scalable and results in reviews done only a few times a year.