This document discusses a technology and product review for Identity Governance & Administration (IGA) to address insider threats at a company called Sifers-Grayson. IGA manages access to information and systems through identity management, access controls, data classification, privilege management, and separation of duties. The company can no longer rely on social norms to protect itself and must change its culture and processes to comply with new contract requirements. An IGA product would help by controlling insider access and reducing risk from threats.