TL;DR: Software asset management is moving beyond license tracking as SaaS adoption, multi-cloud growth, and decentralized procurement make visibility, cost control, and compliance harder to sustain, according to Efecte and Gartner. The operational model is giving way to governance because fragmented entitlement data is now a strategic risk, not just an audit issue.
NHIMG editorial — based on content published by Efecte: Ohjelmisto-omaisuudenhallinnan (SAM) tulevaisuus: Lisenssiseurannasta strategiseen hallintamalliin
Questions worth separating out
Q: How should teams govern software assets across finance, IT, and procurement?
A: Teams should treat software assets as a shared governance domain with explicit control points for purchase, use, renewal, and retirement.
Q: Why does fragmented software data create compliance and cost risk?
A: Fragmented data prevents organisations from seeing what was bought, what is deployed, and what is still in use.
Q: What do organisations get wrong about software asset management?
A: They often treat SAM as a retroactive licence check instead of a lifecycle governance process.
Practitioner guidance
- Map software ownership to control points Define who approves purchase, validates usage, manages renewal, and authorises retirement for each major software category.
- Build a single entitlement record Consolidate contracts, invoices, usage telemetry, and renewal dates into one authoritative record that can support audits and rationalisation.
- Prioritise the highest-spend and highest-risk vendors Start with the software products that drive most cost, compliance exposure, or duplication so the programme shows measurable value quickly.
What's in the full article
Efecte's full article covers the operational detail this post intentionally leaves for the source:
- A closer look at how SAM teams should prioritise vendors and products for rationalisation.
- Practical steps for consolidating entitlement data from contracts, invoices, and system records.
- Examples of how centralised software data supports cost modelling for cloud migration.
- The article's own framing of how governance changes when SAM moves beyond compliance.
👉 Read Efecte's article on the future of software asset management and governance →
SAM governance and software sprawl: what IAM teams should watch?
Explore further
SAM is becoming an entitlement-governance problem, not a license-counting problem. The article correctly shows that the operational unit of control is shifting from the invoice to the entitlement record. When software is bought in fragments and consumed in clouds and SaaS platforms, counting licenses after the fact does not expose who owns the decision or what risk the deployment creates. Practitioners should treat software consumption as an entitlement lifecycle issue, not a procurement afterthought.
A few things that frame the scale:
- Organisations maintain an average of 6 distinct secrets manager instances, creating fragmentation that undermines centralised control, according to The State of Secrets in AppSec.
- Companies are dedicating an average of 32.4% of their security budgets to secrets management and code security, with US organisations leading at 40.8%.
A question worth separating out:
Q: What should organisations do before a major SaaS or cloud migration?
A: They should run a full entitlement review first, including contracts, overlaps, renewal dates, and underused tools. That gives the migration team a realistic cost baseline and exposes which products can be consolidated or retired before new spend is committed.
👉 Read our full editorial: Software asset management is shifting from tracking to governance