New Cybersecurity Analyst Uncovers Major IAM Issues

A new cybersecurity analyst has discovered a significant need for cleanup in an Identity and Access Management (IAM) environment after an initial audit. The post highlights over 300 inactive accounts (no login for 6 months or more), 50 active accounts of terminated employees, service accounts with unassigned admin rights, and shared accounts between teams. There is no documentation or provisioning/de-provisioning process in place, and management is demanding "quick wins" before an upcoming audit.