SailPoint Technologies is trying to bring more automation, visualization and intelligence to managing regulatory compliance with Compliance IQ. SailPoint founder and CEO Mark McClain describes Compliance IQ as "identity intelligence," or "identity cubes" in datawarehousing parlance, for managing governance, risk management and compliance. The on-premises software collects relevant data on employees across an enterprise and stores it in a database.
Similar to creating a credit score, Compliance IQ then algorithmically scores individual risk factors based on the collected data, such as what critical systems and applications they have access to, length of service, violations (e.g., separation of duty and excess privileges) and certification status.
In addition, Compliance IQ can set up business-language rules and policies across application environments, McClain said, and automatically send notifications of violations to the appropriate parties, and trigger predefined remediation policies, including integration with help desk and trouble ticket systems.
Compliance IQ is in beta with a few customers, and pricing will start around $100,000, based on the number of applications the software monitors. The company recently received a $14 million venture capital injection and will be competing with the likes of Sun, IBM, Oracle, CA and others for IT budget dollars.