Identity Governance and Administration enforces the lifecycle of who has access to what — automating joiners, movers, and leavers processes, certifying access entitlements, and detecting toxic privilege combinations that create segregation-of-duties violations. IGA is the governance layer that prevents privileged access creep, and is a required control under SOX, HIPAA, and PCI DSS where organisations must demonstrate periodic access recertification and role-based access control enforcement.
Related: Identity Provider · Privileged Access · MFA · SOX · PCI DSS