Insights

Fresh thinking and actionable insights that address critical issues your organization faces.

Learn more

Resources

Services

KPMG's multi-disciplinary approach and deep, practical industry knowledge help clients meet challenges and respond to opportunities.

Services to meet your business goals

Technology Alliances

KPMG has market-leading alliances with many of the world's leading software and services vendors.

View all Alliances

Industries

Helping clients meet their business challenges begins with an in-depth understanding of the industries in which they work. That’s why KPMG LLP established its industry-driven structure. In fact, KPMG LLP was the first of the Big Four firms to organize itself along the same industry lines as clients.

How We Work

We bring together passionate problem-solvers, innovative technologies, and full-service capabilities to create opportunity with every insight.

Learn more

Careers & Culture

What is culture? Culture is how we do things around here. It is the combination of a predominant mindset, actions (both big and small) that we all commit to every day, and the underlying processes, programs and systems supporting how work gets done.

Learn more
Relevant Results
Sorry, there are no results matching your search.
Autocomplete suggestions are available. Use up and down arrows to review and enter to select.
See more results

The Journey to SaaS Identity Governance and Administration

Part 2: Getting Out of Your Own Way in Order to Make Key Decisions

As detailed in Part 1 of this two-part series, embracing the benefits of the cloud-based identity management is inevitable. What isn’t is, however, is how challenging it will be.  When organizations attempt to migrate from on-premises to cloud solutions for identity governance, they often find themselves “getting in their own way” due to several common challenges.

Some of the most common examples of this are:

  • Letting go of traditional practices and systems: This can stem from concerns around data security, control, and fear of the unknown. The mindset of "we've always done it this way" can hinder progress and prevent organizations from fully embracing the potential benefits of a cloud SaaS solution.
  • Underestimating the complexity of the process: The transition to a cloud-based solution requires careful planning, resource allocation, and a comprehensive understanding of the organization's unique requirements. Without proper preparation and an understanding of the new tools and processes, organizations may encounter difficulties that could have been avoided.
  • Lack of a clear roadmap and strategy: Without a well-defined plan, timelines, and measurable goals, organizations may struggle to navigate the migration process efficiently. This can lead to confusion, increased costs, and delays.

Organizations must address these challenges head-on. Developing a detailed migration plan with defined milestones and objectives can provide a clear path forward, keep the project on track, and educate those with concerns. Fostering a culture of continuous learning, adaptability, and open communication can help organizations successfully navigate the migration process and fully embrace the potential of a cloud-based identity governance solution.

“Getting out of your own way” is an obstacle to unlocking the full potential of a cloud-based identity governance model. However, we’ve learned that once you’ve gotten this challenge under control, the next step is far more navigable. 

Important things to consider as you embark on your Cloud / SaaS/ IGA / IAM transformation

You are going to need to choose a vendor. As an identity product owner and leader, your primary responsibility lies in effectively managing and securing your organization's digital identities. The increasing need for advanced IAM systems has led to increasing adoption of SaaS-based solutions. Choosing the right SaaS provider is critical to ensure a successful transition.

Assess potential vendors based on their track record, customer support, implementation experience, and capabilities to scale alongside your organization's growth is only the beginning. Add to this: confidence you will be empowered to navigate your unique business issues.

To mitigate some of this challenge, here’s the shortlist list of the key considerations associated with selecting a vendor to help you navigate and migrate:

1

Security: Ensure that the SaaS IGA solution meets a high bar for security, exceeding your current on-premises solution. Review encryption methods, security certifications, and compliance with relevant industry standards. Also, assess the SaaS provider's track record in dealing with security breaches and system downtimes.

2

Data Privacy and Compliance: Review the data privacy regulations and compliance requirements (Ex: HIPPA, PCI, GDPR, CCPA, etc.) to ensure that the SaaS IGA solution meets these requirements. This may include assessing the locations of data centers, data protection measures, and data transfer policies employed by the SaaS provider.

3

Modern Identity Governance: Only consider a solution that can handle your ever-growing identity and entitlement population. Consider their depth at leveraging the newer opportunities offered by advancements in AI and machine learning (ML) for built-in intelligence that can better secure your enterprise.

4

Exit Strategy: Have a clear exit strategy in place if the SaaS IGA solution does not meet your expectations or if the vendor relationship deteriorates. This includes retaining the ability to migrate your data to another provider or back to an on-premises solution if necessary.

No worries: You can lean on specialists

Modernizing your identity governance will be a daunting task. Embarking on your migration journey from traditional on-premises IGA solutions to cloud-based platforms can leverage a professional services advisor who understands the business environment you operate in and how to deliver on your IAM program objectives. The KPMG experience, for example, in building, managing, and operating large IAM programs leveraging the Powered IAM Methodology Toolkit has been lauded for supplying key accelerators and reducing pitfalls. In addition, the combination of experts on both sides of the process, an implementation lead such as KPMG that works directly with leading IGA vendors, equals a coalition of individuals with a long history of high-quality delivery and execution that have been proven to drive successful outcomes.

With all of that said, we know that you’re facing change and challenges. The good news is that’s the underlining function of cybersecurity—which is the job you signed up for! Stay focused on your goals and let us know if we can help!

Explore more

Insight
Webcast Replay Webcast Upcoming Listen Now

The Journey to SaaS Identity Governance and Administration

Part 1: Cutting Through the Noise

Read more

Cyber security insights

Turn risk into advantage. Learn how you can anticipate better, move faster, and get an edge with technology that is secure.

Read more

Meet our team

Image of Douglas A LaGore
Douglas A LaGore
Principal, Advisory, Cyber Security Services, KPMG US
Read bio
Image of Adam White
Adam White
Advisory Managing Director Cyber Security Services, KPMG United States of America
Read bio
Image of Douglas A LaGore
Douglas A LaGore
Principal, Advisory, Cyber Security Services, KPMG US
Read bio
Image of Adam White
Adam White
Advisory Managing Director Cyber Security Services, KPMG United States of America
Read bio

KPMG. Make the Difference.


Some or all of the services described herein may not be permissible for KPMG audit clients and their affiliates or related entities.

The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future. No one should act upon such information without appropriate professional advice after a thorough examination of the particular situation. KPMG LLP does not provide legal services.

The information contained herein is not intended to be “written advice concerning one or more Federal tax matters” subject to the requirements of section 10.37(a)(2) of Treasury Department Circular 230.

© 2024 KPMG LLP, a Delaware limited liability partnership and a member firm of the KPMG global organization of independent member firms affiliated with KPMG International Limited, a private English company limited by guarantee. All rights reserved.

For more detail about the structure of the KPMG global organization please visit https://home.kpmg/governance.

Thank you!

Thank you for contacting KPMG. We will respond to you as soon as possible.

Contact KPMG

Use this form to submit general inquiries to KPMG. We will respond to you as soon as possible.

By submitting, you agree that KPMG LLP may process any personal information you provide pursuant to KPMG LLP's Privacy Statement.

An error occurred. Please contact customer support.

Job seekers

Visit our careers section or search our jobs database.

Search now!

Submit RFP

Use the RFP submission form to detail the services KPMG can help assist you with.

Submit

Office locations

View locations

International hotline

You can confidentially report concerns to the KPMG International hotline

Learn more

Press contacts

Do you need to speak with our Press Office? Here's how to get in touch.

Contact

Headline