1 Introduction / Executive Summary
The KuppingerCole Leadership Compass provides an overview of vendors and the services and products they offer in a particular market segment. This Leadership compass focuses on the market segment of access governance, including specific capabilities for access intelligence. While most vendors offer either identity provisioning or access governance focused products, many others offer combined or separate products for both identity provisioning and access governance integrated into what is today frequently called IGA (Identity Governance and Administration).
The AG vendors differ in the depth and breadth of functionalities offered and thus can be classified as either provisioning or governance focused. This KuppingerCole Leadership Compass provides an overview of the AG market with notable vendors and their products or services in the market.
From our interaction with organizations of varied IAM maturity across industry verticals, we note that while some are still looking for an identity provisioning solution with limited or no access governance capabilities, many others have emerging requirements for a promising and stand-alone access governance solution. As security leaders consider access governance to be an important part of their overall IAM strategy to build a robust identity analytics platform, we see a considerable shift in the product roadmap of IAM vendors to support access governance features and build better access intelligence capabilities. There is an increased demand for access governance ‘only’ products in the market, especially from organizations that already have an identity provisioning tool in place or whose entry point for IAM is access governance. One of the more common adoption patterns we have observed in the market is where fulfilment through identity provisioning is achieved via a managed service, and access governance is run by and within the organization itself to retain absolute control over governance functions. Several other adoption patterns for access governance products are witnessed in the industry, including where an organization’s primary requirement is better access governance for enhanced audibility and role governance.
One of the adoption patterns we have observed in the market is Access Governance, which is run by and within the organization itself to retain absolute control over governance functions. There are several other adoption patterns witnessed in the market where a customer’s immediate requirements are limited to Access Governance but do not demand an IGA solution. It is important that organizations scope their AG requirements well before starting to evaluate products that differ in the strength of functionalities, making most of them better aligned for either provisioning or governance focused deployments.
Based on these adoption trends, changing customer priorities, and deployment patterns, we decided to center on Access Governance holistically in this leadership compass to help security leaders identify relevant IAM market segments and subsequently shortlist the most appropriate technology vendors based on their immediate IAM priorities. In this Access Governance Leadership Compass, primary focus is on access governance and Intelligence capabilities, with required integrations into own or third-party entitlements and/or account repositories. We look at complete AG offerings here to if they have strong access governance & Intelligence capabilities.
This AG Leadership Compass follows a published Leadership Compass for Identity and Governance Administration (IGA). LC IGA for SMBs (small and midsize businesses) that identifies and focuses on functional and operational IGA requirements of SMBs that are different in both objective and magnitude than large organizations. This Leadership Compass on Access Governance is a specialized version which will evaluate vendors based on core access governance capabilities. It will not include vendors who have strong ILM capabilities. A Market Compass (MC) on IAM solutions for mid-sized organizations is in development, while a leadership compass on Identity Fabrics replaces LC IAM Suites.
With these various LCs and MCs, we aim to provide CISOs and security leaders responsible for IAM the most practical and relevant information that they need to evaluate technology vendors based on the specific use-case requirements, whether these are IGA-driven, provisioning focused, governance focused, focused on comprehensive IAM suites or a combination of these.
- This Leadership Compass evaluates 25 AG product vendors.
- The AG market is growing, and although maturing it continues to evolve.
- AG is essential to business as a strategic approach to ensure overall IT security and regulatory compliance.
- The level of identity, access and risk intelligence has become a key differentiator between AG product solutions.
- Automation is a key trend in AG to reduce management workload by automating tasks and providing process workflows.
- Leading AG vendors are increasingly focusing on supporting interoperability with other products and services through the provision of secure APIs.
- The Overall Leaders are (in alphabetical order) Avatier, Beta Systems, Broadcom, EmpowerID, Evidian, IBM, Microsoft, OpenText (Micro Focus), Netwrix Corporation, Omada, One Identity, Oracle, RSA, SAP, SailPoint, Saviynt, Simeio
- The Product Leaders (in alphabetical order) are Avatier, Beta Systems, Bravura Security, Broadcom, EmpowerID, Evidian, IBM, Microsoft, OpenText (Micro Focus), Netwrix Corporation, Omada, One Identity, Oracle, RSA, SailPoint, Saviynt, Simeio
- The Innovation Leaders (in alphabetical order) are Avatier, Broadcom, EmpowerID, IBM, Microsoft, OpenText (Micro Focus), Netwrix Corporation, Omada, One Identity, Oracle, RSA, SailPoint, Saviynt, Simeio
- Leading vendors in innovation and market (a.k.a. the "Big Ones") in the IGA market are (in alphabetical order) Broadcom, EmpowerID, IBM, OpenText (Micro Focus), Microsoft, Netwrix Corporation, One Identity, Oracle, RSA, SailPoint, Saviynt, Simeio.