Tech headcount is quietly climbing in the US, UK, and DACH-even as headlines dwell on layoffs and junior cuts. The 2026 reality: more engineers, product managers, and data teams, but IT and security teams remain lean, fighting to keep up with access tickets and audits.
This article unpacks the latest headcount data in these markets, the operational headaches for lean IT, and what a workable identity strategy looks like as tech growth accelerates.
What the headcount data really says for US, UK, and DACH
The past three years weren't a tech jobs collapse; they've been a reshuffle. Growth slowed at big platforms, but AI, cloud, and security roles surged. DACH, in particular, faces an ongoing shortage of skilled talent.
At a glance: headcount and demand signals (2024-2025)
| Region | 2024-2025 headcount signal | Tech company growth impact |
|---|---|---|
| United States | US net tech employment grew by 1.2% in 2024 (72,500 jobs) to 9.6 million. Forecasts show 317,700 computer/IT openings per year for the next decade.1comptia.org | Tech jobs remain volatile, but long-term demand is robust. Hiring is selective-cloud, cybersecurity, AI, and data dominate. |
| United Kingdom | UK digital jobs fell from 1.89 million (2023) to 1.77 million (2024, -6.3%)-the first drop in a decade. Despite this, IT vacancies in 2025 rose 15% YoY; London and fintech roles spiked further.2gov.uk | UK tech is hiring again, but with sharper focus: fewer generalists, more fintech and specialist roles. |
| DACH (Germany & Switzerland) | Germany is short 109,000 IT specialists (down from 149,000). 85% of firms report shortages. Switzerland's ICT vacancies per employed person are 120% higher than the average, ranking among top skill shortages.3bitkom-research.de | DACH isn't short on demand-it's desperately short of experienced ICT professionals and engineers. |
United States: slow growth, relentless demand
US tech headcount is past the 2021 surge, but still rising-projected to outpace the broader job market for a decade. CIOs can add engineers but can't scale IT/security personnel to match.
United Kingdom: rebound with a junior vacuum
The UK tech sector corrected in 2024, but 2025 saw clear vacancy rebounds. Early-career roles, however, evaporated: a 2025 Institute of Student Employers report found a 46% drop in UK tech graduate jobs since 2024, with an additional 53% projected fall by 2026. Stanford tracked a 67% drop in global entry-level tech postings between 2023 and 2024.4techradar.com Experienced hires are up; juniors aren't entering the pipeline.
DACH: chronic shortages, never enough people
In Germany and Switzerland, the issue isn't a "tech winter." It's persistent deficit. Mittelstand and scale-ups digitize core processes but routinely fail to fill essential technical and security seats. There's always more identity work than hands available.
Why more people ≠ more capacity for security and operations
Mid-market tech-50 to 2,000 employees, SaaS-heavy stacks-sees headcount soar but IT/IAM budgets remain flat. Teams add 5-20 hires monthly, each needing access to 10-30 apps, while a handful of IT handles provisioning, deprovisioning, and compliance for all.
This creates a predictable storm:
- Onboarding volume explodes. Every engineer or analyst needs accounts in product tools (GitHub, Jira, Notion), collaboration platforms (Slack, Teams), HR, CRM, and data apps.
- Access sprawl intensifies. Ad-hoc groups and project spaces proliferate; nobody cleans up obsolete privileges.
- Offboarding becomes half-baked. Accounts in SSO tools might close, but admin roles and long-tail SaaS stay open.
- A new species of identities emerges. Bots, CI/CD accounts, AI agents, vendors-each collecting permissions with no unified joiner-mover-leaver process.
SSO and "modern IGA" help-where SCIM and APIs exist. In real stacks, automation covers a minority of applications. The majority-long-tail SaaS, legacy, customer portals, OT/ICS-stay manual. That's the coverage gap where IT drowns in tickets and orphaned accounts grow.
Identity governance priorities for 2026
Security and operations leaders can't afford to treat headcount stats as trivia. Three focus areas stand out for 2026:
1. Treat identity governance as an operating constraint
When US and DACH tech hiring both shift upward, every new role expands your attack surface. Map who drives access changes (engineers, GTM, ops), and quantify joiner, mover, leaver activity-across both human and "new species" identities (AI agents, bots, vendors).
2. Close the coverage gap
Most mid-market SaaS companies automate only 20-40% of their apps with SSO. The rest linger on tickets, spreadsheets, and tribal know-how. Prioritize:
- Bringing non-SCIM, non-API apps under the same lifecycle automation as core tools.
- Achieving fine-grained access-not just "has account / no account," but real permission controls.
Teams graduating from partial automation to policy-driven, universal coverage see real results: across Iden customers, automating governance for every app cuts manual tickets by about 80% and saves 120+ hours per quarter on user reviews for lean IT.
3. Shift from static checks to continuous governance
Quarterly access reviews and spreadsheets don't scale when you're hiring dozens per month and deploying AI agents that spin up new data flows. Instead, continuous governance means:
- Evaluating access requests in real time based on policy, risk, and context.
- Continuously finding and revoking stale, dangerous, or unused access automatically.
- Maintaining immutable audit logs for every decision-so audits never require a month of screenshot collection.
Actionable conclusions and next steps
IT and IAM headcount trails overall growth-creating risk and operational drag.
For 2026, the smart strategy isn't adding another point tool. Assume identity work will keep scaling faster than IT, and design with that inevitability. Pinpoint where identity workload (tickets, JML events, reviews) spikes fastest.
- List all apps still governed with tickets and spreadsheets.
- Shortlist platforms that deliver complete governance-whether SCIM, API, or neither-and show value in days, not quarters, with zero engineering drain.
If your org's headcount graph is rising in the US, UK, or DACH, but identity processes look stuck at "50 people and a spreadsheet," it's time to make identity governance core infrastructure-not an afterthought.
Frequently Asked Questions
How can tech headcount grow when layoffs dominate the news?
Layoffs are real, especially in big tech and gaming, but coexist with steady job creation elsewhere. In 2024, US net tech employment added tens of thousands of jobs. Long-term projections call for hundreds of thousands of annual openings.1comptia.org Layoffs often reshape the skill set towards AI, security, and data, not erase tech roles.
Why do IT and security teams feel more overloaded if hiring is selective?
Hiring is concentrated in product, engineering, and data-roles that spawn complex access needs. Meanwhile, IT teams stay flat. At 200, 500, or 1,000 employees, a handful of admins act as "human provisioning layers" across dozens of tools, with annual compliance piling on more controls.
When does it make sense to go beyond SSO to full governance?
Most companies hit an "identity wall" between 50-500 staff. If you're onboarding 5-20 hires monthly, operating 30-60 SaaS apps, and seeing offboarding slip through the cracks, you've arrived. SOC 2/ISO 27001 audits, M&A, or rapid regional scaling accelerate the urgency to move beyond SSO.
What's the difference between SSO and identity governance?
SSO answers, "How do people log in?" Identity governance answers, "Who should have access to what, when, and why-and can we prove it?" SSO covers SCIM-enabled apps and groups. Governance extends to non-SCIM apps, fine-grained permissions, and ongoing access review.
How do AI and agentic workflows advance identity management?
AI-driven, agentic workflows automate governance tasks: routing requests, running continuous reviews, reclaiming unused access, and preparing audit evidence. This means real-time, autonomous decisions with humans only in the loop for exceptions-precisely what fast-scaling orgs with lean IT demand.
