SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom
Saviynt named leader in four KuppingerCole reviews
PAM Cloud Security SOCs

Saviynt named leader in four KuppingerCole reviews

Thu, 21st May 2026 (Today)
Mark Tarre
MARK TARRE News Chief

Saviynt has been named an Overall Leader in four KuppingerCole Analyst evaluations covering Identity Governance and Administration, Privileged Access Management, SAP Access Control and Security, and Business Application Risk Management.

It also received the top Product Leadership ranking in KuppingerCole's latest Identity Governance and Administration Leadership Compass.

The assessments strengthen Saviynt's position in a cyber security segment drawing increased attention as companies work to manage access across cloud systems, on-premises infrastructure, and business applications. Identity tools have become more central as organisations seek tighter control over employee accounts, administrator privileges, and machine identities.

KuppingerCole's review of the identity governance market highlighted the breadth of Saviynt's coverage across enterprise environments. The analyst firm said: "In Product Leadership, we see Saviynt at the leading edge... Saviynt stands out with the breadth and maturity of its IGA capabilities across a wide range of enterprise environments."

Identity Governance and Administration products control who can access systems and data, and help organisations review whether those permissions remain appropriate. Privileged Access Management focuses on securing high-level accounts that can make system-wide changes. SAP access control and business application risk management address permissions and compliance issues in core business software.

The evaluations recognised not only Saviynt's identity governance offering, but also its work in linking privileged access controls with governance and contextual access management. That reflects a broader market shift, as buyers increasingly want fewer standalone tools and more joined-up oversight across identity, access, and compliance functions.

Growing Scope

Saviynt has been expanding its case for governing a wider range of identities, including non-human and AI-related accounts as well as traditional workforce users. That argument has gained traction as businesses automate more processes and deploy software agents, service accounts, and machine identities that may have wide-reaching system access.

In many organisations, these accounts sit outside older identity processes built mainly for employees and contractors. Security teams have warned that weak oversight of machine and privileged identities can create blind spots, especially in hybrid technology estates where access is spread across multiple cloud providers, internal systems, and specialist applications.

The analyst findings also pointed to Saviynt's ability to extend governance and security controls into critical enterprise systems, including SAP environments and compliance-driven workflows. SAP remains particularly sensitive for large businesses because it often supports finance, procurement, supply chain, and human resources processes.

Executive View

Henrique Teixeira, Senior Vice President of Strategy at Saviynt, linked the recognition to wider changes in the identity market.

"AI is fundamentally reshaping the identity landscape. Organisations now need to govern and secure not only workforce identities, but also non-human, privileged, and AI identities that often carry elevated access across cloud, on-premises, and enterprise environments," he said.

He added: "These recognitions reinforce the need for a unified identity security platform that brings together identity governance, privileged access management, and application risk controls across modern enterprise ecosystems."

The comments reflect a growing debate in cyber security over whether identity products designed for staff logins can adapt quickly enough to cover software bots, automated workflows, and AI systems. The issue has become more pressing as companies give these systems access to data stores, internal applications, and administrative functions.

Analyst firms and vendors increasingly frame identity as a key control point for cyber defence and regulatory compliance. In practice, that means not only authenticating users, but also governing entitlements, approving access requests, monitoring exceptions, and documenting separation-of-duties risks in business applications.

For companies in regulated sectors, the overlap between access control and audit requirements has become a major buying factor. Reviews of SAP permissions, elevated privileges, and policy exceptions are often tied to internal controls and external reporting obligations, making integrated tools more attractive to buyers seeking to reduce fragmented oversight.

Saviynt's latest recognition comes as competition remains intense across identity governance and privileged access markets, with providers seeking to broaden their portfolios and connect administration, analytics, and policy enforcement. The emphasis on unified platforms also reflects customer pressure to simplify identity operations as environments become more distributed.

Saviynt says its platform is used to manage and govern access for human, non-human, and AI identities across applications, data, and business processes.

Image: Henrique Teixeira, Saviynt
Related stories
One Identity appoints Randy Menon as product chief
Anthropic AI's Mythos triggers warnings over cyber risk
Google Cloud unveils AI security tools & fraud defence
Sysdig report says cloud security shifts to machine speed
AI bots overwhelm identity controls in Australia & NZ
Top stories
A long time ago in a galaxy far, far away…Cybersecurity was already hard
Tenable launches Hexa AI with Anthropic partnership
Qualys data shows vulnerability backlog widening sharply
CrowdStrike names Europe partner award winners in Dubrovnik
Intezer launches global partner programme led by Daggett