SailPoint Successfully Completes ISO/IEC 27001:2013 Certification and SOC 2® Type 2 Attestation for SaaS-based Solution IdentityNowTM

Business Wire

AUSTIN, Texas--(BUSINESS WIRE)-- SailPoint Technologies Holdings, Inc. (NYSE: SAIL), the leader in enterprise identity governance, today announced it has completed two information security assessments for IdentityNow^TM, SailPoint’s SaaS-based identity solution. SailPoint successfully completed an ISO/IEC 27001:2013 certification and obtained a SOC 2^® Type 2 report with an unqualified opinion for IdentityNow controls relative to the Security, Availability and Confidentiality Trust Services Principles. These measures demonstrate the company’s commitment to investing in and adhering to security, confidentiality, and availability best practices.

“Completion of these security and compliance efforts signals SailPoint’s commitment to providing an increased level of assurance to our customers and the company’s continued commitment to the security of its products,” said Darran Rolls, CISO and CTO of SailPoint. “Unlike mandatory compliance regulations, these frameworks are entirely voluntary, and companies that complete these assessments have made large investments in resources and time to assure that their products meet rigorous internationally-recognized information security standards.”

“We’ve doubled down by completing both sets of information security and compliance frameworks for IdentityNow because we strongly believe in providing the highest level of assurance to our customers,” said Dave Hendrix, Senior Vice President of IdentityNow at SailPoint. “Aligning to both standards gives our IdentityNow customers increased confidence that their data is secured and managed according to best practices.”

ISO/IEC 27001:2013, an internationally recognized security standard, specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.

The SOC 2 Type 2 attestation, as established by the American Institute of Certified Public Accountants (AICPA), provides detailed information and assurance about the controls at a service organization relevant to the Trust Services Principles of security, availability, and confidentiality of the information processed by its systems.

SailPoint: The Power of Identity™

SailPoint, the leader in enterprise identity governance, brings the Power of Identity to customers around the world. SailPoint’s open identity platform gives organizations the power to enter new markets, scale their workforces, embrace new technologies, innovate faster and compete on a global basis. As both an industry pioneer and market leader in identity governance, SailPoint delivers security, operational efficiency and compliance to enterprises with complex IT environments. SailPoint's customers are among the world’s largest companies in a wide range of industries, including: 6 of the top 15 banks, 4 of the top 6 healthcare insurance and managed care providers, 8 of the top 15 property and casualty insurance providers, 5 of the top 15 pharmaceutical companies, and 6 of the largest 15 federal agencies.

Stay up-to-date on SailPoint by following us on Twitter and LinkedIn and by subscribing to the SailPoint blog.

SailPoint, the SailPoint logo, IdentityIQ, IdentityNow, IdentityAI, SecurityIQ and all techniques are trademarks or registered trademarks of SailPoint Technologies, Inc. in the U.S. and/or other countries. All other products or services are trademarks of their respective companies.