This document summarizes the results of a survey of 35,400 IT security executives on data breaches and access management. Key findings include: 84% agree that a breach is not a question of if but when; 97% agree that stolen credentials enable easy hacker access; but only 29% feel confident in detecting misused credentials. The document suggests that organizations should continuously monitor privileged accounts, unnecessary entitlements, abandoned accounts, and orphaned accounts to improve security and reduce breach risks.