About us

Madigan Solutions is an Identity & Access Management consultancy that specialises in delivering Identity Management, Identity Governance & Access Management solutions whether on-premises, or in the Cloud.

Simplifying identity & access management

We work with organisations across a range of industries including Government (Central & Local), Higher Education, Financial Services, Utilities, Retail, and Business Services. We help to deliver and run IAM platforms built on IBM technology.

Simplifying identity & access management

We work with organisations across a range of industries including Government (Central & Local), Higher Education, Financial Services, Utilities, Retail, and Business Services. We help to deliver and run IAM platforms built on IBM technology.

Madigan Documentation


IBM Documentation

IBM Verify Identity Access (v11)


IBM Verify Identity Governance (v11)


IBM Verify Identity Governance (IGI v10)


IBM Security Verify Directory Integrator (v7.2)

What good identity governance actually looks like

(in practice - not in theory)

The Executive Summary

Good Identity Governance is not about more approvals or reviews - it is about clear ownership, enforceable decision rights, and identity data that reflects how the business actually operates.

We see this via a variety of triggers including:

  • Access certifications are completed but provide little confidence
  • Managers approve access they do not understand
  • Roles exist but do not meaningfully reduce access complexity
  • Governance is perceived as “overhead” rather than protection

Want to know more?

What are the implications?

Weak identity governance creates a false sense of control. Organisations appear compliant while access risk grows beneath the surface, increasing exposure to breaches, insider threat, and audit failure.

What typically goes wrong?

  • Approval theatre: Reviews exist to satisfy auditors, not reduce risk
  • Role sprawl: Hundreds of roles exist with little clarity or reuse
  • Detached ownership: Business owners are named but not empowered
  • Static models: Governance does not adapt as the organisation changes

What does good look like in practice?

Every access decision has a clearly identified, accountable business owner would be a good start.

Roles are few, meaningful, and aligned to real job functions. (Let's be realistic though - few is relativistic!)

Exceptions are explicit, time‑bound, and monitored. And properly monitored. By someone who knows what they are looking at!

Identity governance evolves alongside organisational and operating‑model changes. Change is ubiquitous. Your identity platforms needs to demonstrate that it is flexible enough to cope with the flux.

What are the trade offs?

Tighter governance reduces flexibility for edge cases, but dramatically improves audit posture and operational confidence. Poor governance preserves flexibility at the cost of hidden risk.

In our experience...

Effective identity governance always starts with simplifying decisions, not adding controls.

💡
The organisations that succeed govern less, but govern well.

Do you need specialist support?

You probably need to call in some external help when you start to spot the following behaviours:

  • Governance processes exist but are widely ignored
  • Access reviews are completed defensively rather than confidently
  • Role models have grown too complex to maintain

And remember...

💡
Identity governance works when it simplifies decisions instead of multiplying them.

Why Identity & Access Management programmes fail

What Good Identity Governance Actually Looks Like in Practice

When IAM Tooling Is the Wrong Place to Start

© Copyright 2026 Madigan Solutions UK Limited
Madigan Solutions UK Limited is a company registered in Northern Ireland with Company Number NI675324. VAT Number 368 3929 47.

Home | Blog | Contact

Terms & Conditions | Privacy Policy | Disclaimer