Sicra Header Logo
  • Careers
  • About us
  • People
EnglishNorsk
Talk to us
  1. Knowledge
  2. Insights
  3. Blog
Blog
08.05.2026
min read

IT costs out of control

The problem is rarely the price, it is the lack of governance.

<span id="hs_cos_wrapper_name" class="hs_cos_wrapper hs_cos_wrapper_meta_field hs_cos_wrapper_type_text" style="" data-hs-cos-general-type="meta_field" data-hs-cos-type="text" >IT costs out of control</span>
Sicra_Portrait_Crop_1200x1500px_4808
Oddbjørn SkaugeChief Information Security Officer
Forward thinking CISO focused on practical and effective approaches to information security. 

In April, Digi reported that the Norwegian government’s IT licensing costs have increased by 40% over three years. It sounds dramatic. But it is not unique. The same thing is happening in the private sector, just a little more quietly.

The uncomfortable truth

Most organizations think they have a cost problem. But what they really have is a control problem. You rarely pay too much because the licenses are expensive. You pay too much because you do not know what you are actually using.

The classic licensing trap

We see this again and again: Users who have left the company but still have active licenses, consultants who are never offboarded, employees with premium access they never use, and standard packages selected for convenience instead of insight.

And the root of the problem? It often does not start in IT, it starts in HR. When HR does not notify IT that someone has left, access and licenses remain active. IT simply does not know they need to clean it up. Standardization without insight is just an expensive shortcut.

Offboarding: The most underestimated cost driver

Most organizations have onboarding processes. Few have good offboarding processes. What actually happens when someone leaves? Are their access rights removed? Are licenses released? Is anyone actually following up?

This is not only a financial question. An active user account without an owner is not just a cost, it is a security risk.

Cost and security are two sides of the same coin

Poor license control is not just waste. It is a sign of lacking control, also from a security perspective. Users without MFA, accounts that have not been used for months, overprivileged access: these are classic entry points for attacks. Where you lose cost control, you often lose security control as well.

From gut feeling to real time insight

Modern tools give you visibility you did not know you were missing: who is actually using their account, who does not have MFA enabled, and who is sitting on premium features they never use. You see unused licenses, receive downgrade recommendations and gain control across platforms, not just Microsoft, but everything integrated with Entra ID and AD.

And when you delete an inactive user, you see the savings immediately, not in a report afterward, but directly in real time. Once you gain that insight, license management stops being cleanup work and becomes governance.

A real world example

We recently gave a customer free access to the system for one week. Setup took one hour. After one hour of reviewing the environment together, they had full visibility and had already identified NOK 1.7 million in annual Microsoft licensing costs they could cut. Two hours of work. NOK 1.7 million in savings. They spent the rest of the week cleaning up and watched the savings grow in real time for every user they removed.

Would you like to know what we would find in your environment? We offer one week of free access, contact us and we will set it up.

Who owns this responsibility?

It is not always a CIO or CISO who handles this. Many organizations have an IT Manager or Head of IT managing everything, often without dedicated support. Regardless of title, the question is the same: Do we have control over who has access to what, and is it costing us more than it should? The answer is almost always: yes, and more than you think.

The hidden benefit

Most organizations start this work to save money. What they discover is something else: better security, better visibility, less manual work and faster decision making. And not least, an organization that actually has control over its own resources. The licenses are not what is expensive. The lack of control is what costs.

Sources (Norwegian Only):

Digi.no - Statens IT-lisenskostnader har økt med 70 prosent

Nasjonal sikkerhetsmyndighet - Grunnprinsipper for IKT-sikkerhet 2023

Digitaliseringsdirektoratet – Veiledning om styring og kontroll i IT 2024

Would you like to know what we would find in your environment?

 We offer one week of free access.

Contact us

Explore more

AI is cheap now. Here’s how to avoid getting locked in later.
Blog

AI is cheap now. Here’s how to avoid getting locked in later.

AI is cheap today. Build solutions that can handle higher costs tomorrow.
Agentic Security Operations Centers (SOC) are here. But how do you control the agents making the decisions?
Blog

Agentic Security Operations Centers (SOC) are here. But how do you control the agents making the decisions?

Cybersecurity
CISO
SOC
Agentic SOCs are here. But who monitors the agents doing the monitoring?
11 security measures your business should have in place before the holidays
Blog

11 security measures your business should have in place before the holidays

Tech blog
Cybersecurity
11 measures that better prepare your business for the summer holiday.
AI in cybersecurity: Why the technology works for both attackers and defenders
Blog

AI in cybersecurity: Why the technology works for both attackers and defenders

Cybersecurity
CISO
AI works for both sides. The question is whether defenders can keep pace.

Stay updated
Receive the latest news

Links
SustainabilityFAQPartnersCertifications and awardsCareerPress & brand
Contact
Tel: +47 648 08 488
E-mail: firmapost@sicra.no

Posthuset, Biskop Gunnerus’ gate 14A, 0185 Oslo, Norway

Follow us on Instagram

Follow us on LinkedIn
Certifications
iso27001-white
ISO 27001 compliance
miljofyrtarnlogo-hvit-rgb
Eco-Lighthouse
iso9001-white-removebg-preview
ISO 9001 compliance
Sicra Footer Logo
Sicra © 2025
Privacy Policy