Answer

What is a zombie account?

Short answer

A zombie account is a user account that still has active access to a SaaS tool even though the person no longer works at the company or no longer needs that tool.

Details

Zombie accounts are a security risk and a compliance failure. SOC 2 and ISO 27001 both require timely deprovisioning; zombie accounts are the most common finding in audits.

They form when offboarding checklists miss less-visible tools. Everyone remembers to disable email and Slack — few teams have a systematic list of every OAuth grant, seat assignment, and API token a person accumulated over years.

The complete fix requires a discovery source (your identity provider), a reclaim workflow (approval + one-click revoke), and a scheduled scan (weekly, so new zombies get caught within days).

Automate this with SeatMap.AI

The audit path above works. It also takes hours per month per tool. SeatMap.AI runs it on a schedule, stages the reclaim actions for review, and shows you the annualized savings in real dollars.

Related answers