Identity and Access Management (IAM) – Review of Saviynt’s Product Launch at RSAC 2025

In this report, we evaluate Saviynt’s product innovations announced at RSA Conference (RSAC) 2025, particularly focusing on its AI-powered Identity Security Posture Management (ISPM) capabilities. Saviynt’s product launch builds on its identity cloud platform by introducing features designed to provide real-time visibility into identity posture, risk signals, and governance maturity. Core capabilities include auto-generating role descriptions, identifying orphaned accounts, and improving ownership clarity of service identities, addressing long-standing challenges in identity data hygiene.

A key strength is the platform’s application-owner-centric approach, which enables business teams to directly access and analyze access control and usage data. Built upon a zero-trust-aligned architecture, the offering leverages an AI-enabled data lake to enforce continuous verification principles.

Despite these enhancements, the launch reveals some gaps that enterprises may need to explore further. These include limited disclosure around integration with broader security ecosystems, such as security information and event management and threat intelligence platforms, a lack of clarity around pricing/licensing models, and insufficient transparency into the AI algorithms used. Saviynt’s ISPM solution, while promising in its conceptual direction, will benefit from better articulation of deployment strategies and industry-aligned use cases.