In practice we notice that companies often get started with IAM as an IT project. This is not tenable.
It soon becomes apparent that it is a business change issue. This has everything to do with IGA.
IGA structures and visualizes to business owners who or what has access to what and why. This helps them to audit, improve and update policies, increase the login convenience for users, maintain compliancy and reduce security risks.
Carefully making agreements within the organization about the measures to which access can be granted is essential to ensure that this can be set up in a (IGA) system. Subsequently, the responsibility can also be placed with the person responsible, namely the business- or process owner.