Identity Governance Questions Every Security Team Should Ask - RSA
RSA, Thursday, March 12th, 2026
In cybersecurity, identity is critical. And with identity, you absolutely, positively must be able to answer the questions that matter most: who is accessing your systems, what they can reach, and whether that access is appropriate.
Security teams have been working to get reliable answers for decades. It was easier when everyone was working from the same site, or at least behind the same firewall. But today, users could be working from just about anywhere, and they may need access to applications and resources in the cloud, across multiple clouds, or in a data center.
Trying to secure, govern, and manage users across these environments can be complicated. In the sections that follow, we will cover the identity and access questions security teams should be asking and explain how identity governance helps you turn those answers into stronger controls, reduced risk, and clearer compliance evidence.