Automated IAM at APGAR
How Corma automated their IAM with Corma: from speeding up access reviews over automating on/offboardings to putting a light on Shadow IT.
APGAR, founded in Paris, France, is a strategic consulting firm specializing in enterprise data management, analytics, and AI governance. Since its inception, the company has built a reputation for delivering tailored solutions in data strategy, platform implementation, and cybersecurity, helping organizations optimize their data ecosystems.
Industry
Consulting
Employees
280
Number of SaaS tool
80+
Founded
2012
Challenge
APGAR wants to increase its security posture by dealing with the usage of unauthorized applications and AI tools (Shadow IT/AI), particularly those accessed via browsers, which create security vulnerabilities and compliance risks while evading traditional monitoring. Furthermore, manual license and access management processes are time-consuming and inefficient, leading to wasted spending on unused SaaS subscriptions and increasing the risk of improper permissions. These challenges strain IT resources, hinder regulatory compliance (e.g., ISO 27001), and divert focus from strategic initiatives.
solution
Corma provides APGAR with a comprehensive solution to detect and manage Shadow IT and Shadow AI, offering real-time visibility into all applications. By automating license optimization, access reviews for ISO 27001, and compliance tracking, Corma eliminates manual inefficiencies, reduces costs, and strengthens security, freeing up APGAR’s IT team to focus on innovation.
The Challenges
Shadow IT and Shadow AI:
The organization struggles to detect and control unauthorized applications and AI tools used by employees, especially those accessed through web browsers. This lack of visibility creates security vulnerabilities, compliance risks, and potential data leaks.
Software License Management:
Tracking and optimizing SaaS license usage is difficult, leading to unnecessary costs from underused or redundant software subscriptions. Without clear insights, APGAR risks overspending on licenses that aren’t fully utilized.
Access Reviews:
Conducting user access reviews is a time-intensive process, often relying on manual checks that are prone to human error. This status quo diverts resources from other strategic priorities and increases the risk of improper access permissions.
Compliance:
Unauthorized or unmanaged applications pose significant security threats, exposing the company to potential breaches, data leaks, or non-compliance with regulatory requirements like and ISO 27001 and ISO 42001.
The results
THE LEADER IN SALES INTELLIGENCE
Ready to revolutionize your IT governance?
