Overview
SailPoint Identity Security Cloud is the SaaS evolution of SailPoint's long-standing IdentityIQ governance platform. Built on the proprietary SailPoint Atlas data layer, the product covers access requests, certifications, role modelling, segregation-of-duties enforcement, and lifecycle automation for workforce, contractor, and machine identities. SailPoint went public again in 2025 after a period of private ownership under Thoma Bravo.
SailPoint is widely considered the category-defining vendor for identity governance and administration (IGA). It dominates regulated industries — particularly banking, insurance, and pharmaceuticals — where audit-grade certification workflows and SOX, GDPR, or HIPAA reporting are core requirements. The platform has expanded beyond traditional IGA into non-employee risk management, data access security, machine identity, and AI-driven access modelling through the Identity Security Cloud Atlas data layer. Pricing is repackaged in 2024 under the Navigators model with Standard, Business, and Business Plus suites.
Key Features
- Access requests with policy-aware approval routing
- Periodic access certifications with risk-based prioritisation
- Role mining and AI-powered role recommendations
- Segregation of Duties (SoD) policy enforcement
- Joiner-Mover-Leaver lifecycle automation
- Non-Employee Risk Management (NERM, formerly SecZetta)
- Data Access Security for unstructured file shares and SaaS data
- Machine Identity Security for service accounts and bots
- Pre-built connectors for SAP, Workday, ServiceNow, Active Directory
- Open SaaS connector framework
- Audit-grade reporting and SOX, HIPAA, GDPR templates
- AI-driven outlier detection on entitlements and group memberships
Pricing
| Edition | Model | Typical Cost |
|---|---|---|
| Standard Suite | Per identity / year | From $75K / year (smaller estates) |
| Business Suite | Per identity / year | Custom; typical $150K–500K |
| Business Plus Suite | Per identity / year | Custom; $500K–2M+ |
| Add-ons (NERM, Data Access Security, MIS) | Per identity / year | Custom add-on pricing |
Pricing verified from analyst and reseller data May 2026. Implementation costs frequently match or exceed first-year subscription. Plan for 12–18 months to reach mature certification cycles.
Strengths
- Recognised Leader in the Gartner MQ for IGA every year since the category was defined
- Most mature joiner-mover-leaver automation engine in the market
- Strong audit-grade reporting that is broadly accepted by external auditors
- Atlas data layer provides a consistent identity graph across employees, contractors, and machine identities
- AI access modelling reduces analyst effort during recertification campaigns
- Large global ecosystem of certified system integrators
Limitations
- Total cost of ownership is high; implementation typically requires SailPoint-certified consultants
- Access request and approval UX is dated compared to ServiceNow's catalogue
- Connector development for niche applications often requires SailPoint Professional Services
- Reporting is powerful but complex; many customers run separate BI tooling on top of the data exports
- Per-identity pricing can escalate quickly once non-employee and machine identities are added