Which of the following best describes a challenge in implementing identity governance?

The challenge of ensuring ongoing compliance amidst changing regulations is particularly significant in the realm of identity governance. Organizations must continuously adapt their identity management policies and practices to keep pace with new and evolving regulatory requirements, such as GDPR, HIPAA, or PCI-DSS. This compliance landscape can shift frequently, requiring ongoing review and adjustment of governance strategies to avoid legal penalties and ensure data protection.

In this context, identity governance entails not only managing user identities and access rights but also demonstrating compliance through rigorous reporting and audits. This increases complexity, as organizations must establish systems that can automatically adapt or be promptly updated to align with new legal requirements, thus impacting their overall governance effectiveness.

While other options, such as simple user requests for password resets, routine software updates, and employee training, are important aspects of IT and user management, they do not represent the overarching and dynamic challenge of maintaining compliance in identity governance, which is influenced by external regulatory frameworks.