Notifications
Clear all
Topic starter
22/06/2026 3:41 pm
TL;DR: Siemens' identity transformation shows how large-scale Zero Trust and automated provisioning can cut onboarding delays, reduce help desk load, and strengthen security at the same time, according to EmpowerID. The lesson is that identity modernisation is increasingly an operational accelerator, not just a defensive control layer.
NHIMG editorial — based on content published by EmpowerID: The Siemens Discovery
By the numbers:
- 69% of security leaders agree identity management must fundamentally shift to address agentic AI systems.
Questions worth separating out
Q: How should security teams prove identity modernisation is worth the investment?
A: Prove it with operational metrics as well as security metrics.
Q: Why do large identity environments need automation before they can support Zero Trust?
A: Because Zero Trust depends on consistent, timely access decisions at scale.
Q: What breaks when access governance is managed locally by each provider?
A: Governance breaks into fragments.
Practitioner guidance
- Measure identity throughput alongside security controls Track provisioning time, help desk ticket volume, and access exception rates together so identity modernisation is judged on both control and operating speed.
- Standardise entitlement policy across providers Remove provider-by-provider access logic where possible and define a shared entitlement model for common joiner, mover, and leaver paths.
- Automate low-risk access, keep privileged access gated Use self-service only for predefined, low-risk access paths and retain approval steps for sensitive entitlements, admin roles, and exceptions.
What's in the full article
EmpowerID's full research covers the operational detail this post intentionally leaves for the source:
- The full Siemens case study context behind the identity infrastructure scale and the operational problems it created.
- The mechanics of how Microsoft 365 provisioning moved from manual request handling to instant availability.
- The self-service and automation model used to reduce help desk reliance while keeping access governance intact.
- The business-case framing that links identity investment to measurable productivity and security improvements.
👉 Read EmpowerID's Siemens identity transformation case study →
Identity security that speeds onboarding: what Siemens shows?
Explore further
22/06/2026 3:45 pm
Identity modernisation now has to be judged as operational infrastructure, not overhead. Siemens' story shows that large identity programmes can reduce onboarding delay, lower ticket volume, and still improve control when access administration is unified. The important shift is conceptual: identity is no longer just a compliance layer sitting on top of operations, it is part of the operating model itself. Practitioners should treat provisioning latency and governance quality as one problem.
A few things that frame the scale:
- 69% of security leaders agree identity management must fundamentally shift to address agentic AI systems, according to The 2026 Infrastructure Identity Survey.
- Only 44% of organisations have implemented any policies to manage their AI agents, despite 92% agreeing that governing AI agents is critical to enterprise security.
A question worth separating out:
Q: What frameworks best align with identity modernisation at enterprise scale?
A: NIST Cybersecurity Framework 2.0 and Zero Trust Architecture are the clearest anchors for this kind of programme because they connect access governance to risk management and continuous verification. Teams should use them to structure policy, reporting, and remediation around measurable identity outcomes.
👉 Read our full editorial: Siemens shows how identity security can accelerate operations
