By Sean Mitchell
Publication Date: 2025-11-21 17:30:00
Omada has released nine forecasts detailing changes and ongoing risks impacting identity governance and management. The analysis warns that inadequate monitoring of non-human identities (NHIs) continues to leave companies vulnerable to disruptive cyber incidents and regulatory penalties.
Non-human identities
Enterprises are seeing a rise in machine identities—such as service accounts, application credentials, and API keys—that outnumber human-managed identities. These non-human identities are often excluded from existing governance frameworks, making them difficult to monitor and decommission when no longer needed.
“Traditional identity governance and management (IGA) was designed for humans. We are discovering a large number of machine identities that have never been managed before. OWASP has released its top 10 non-human identity risks for 2025, and ‘improper offboarding’ is number one. The fact that “improper offboarding” is considered the number one risk shows…
