200+
Orphaned Accounts
Remediated
8 to 12 wks
IdentityNow deployment
100%
Access certification automated
SOC 2 / ISO
Audit evidence generated
IGA
Enterprise governance platform
SailPoint IdentityIQ Implementation
We implement SailPoint IdentityIQ from architecture through deployment: connector configuration, identity correlation, role modeling, policy definitions, and workflow design for organizations requiring maximum control and customization.
SailPoint IdentityNow (Identity Security Cloud)
We configure SailPoint IdentityNow for application onboarding, lifecycle management, access requests, and access certification: the SaaS-delivered IGA platform without the infrastructure overhead of IdentityIQ.
Access Certification & Campaign Management
We configure certification campaigns so managers review and certify employee access on a defined schedule. Every certification decision is recorded for SOC 2, HIPAA, ISO 27001, and PCI DSS audit evidence.
Role Management & SoD Policy
We model your business roles in SailPoint and configure SoD policies that detect and prevent conflicting access automatically: entitlements mapped to roles, roles assigned to users based on job function.
Connector Configuration & Application Onboarding
We configure connectors for Active Directory, LDAP, Workday, ServiceNow, Salesforce, AWS, Azure, and custom applications: each with the right provisioning policy, attribute mappings, and correlation logic.
IGA Program Governance & Ongoing Support
We establish the governance processes: access review cadences, role review procedures, policy exception workflows: and can provide ongoing managed governance services to keep your IGA program operating effectively.
What Makes Us Different From Others
- SailPoint Certified Consultants – Our team holds SailPoint IdentityIQ and IdentityNow certifications. We deploy SailPoint correctly: connector configurations, role models, and certification workflows built to enterprise standards.
- Both IdentityIQ and IdentityNow Expertise – We work with both platforms and recommend the right one based on your infrastructure preferences, compliance requirements, and growth trajectory.
- Role Modeling Before Deployment – We spend time getting the role model right before building anything in SailPoint. A poor role model produces certifications that nobody trusts.
- Compliance Evidence Built In – Every SailPoint engagement produces the certification records, entitlement reports, and SoD documentation that auditors require for SOC 2, ISO 27001, HIPAA, and PCI DSS.
- Managed IGA Services Available – After deployment we can provide ongoing managed governance: running certification campaigns, onboarding new applications, and managing SailPoint on your behalf.
We had over 200 contractor accounts in Active Directory that nobody owned. garrisonOne mapped every identity, implemented PAM controls for privileged accounts, and set up automated provisioning and deprovisioning tied to our HR system. First audit after rollout, the finding list was empty.
Client results
See how we have helped
Financial Services
Accounting Firm — IAM Automation
Manual offboarding across 14 systems took two days. garrisonOne automated the full user lifecycle with HR-driven provisioning and role-based access, cutting offboarding to 10 minutes.
14
Systems under IAM
10m
Offboarding time
100%
MFA coverage
Healthcare
Healthcare Group — JML Workflows
Joiner-mover-leaver delays caused access provisioning gaps and HIPAA exposure. garrisonOne automated JML workflows and implemented access certification across clinical systems.
3 to 7 days
Provisioning reduced to hours
100%
HIPAA access controls
2yr
Compliance maintained
Industry focus
Industries we serve
Related Services: IAM Services | RBAC Services | PAM Services | Okta Implementation
Frequently asked questions
What is identity governance and administration (IGA)?
IGA is the discipline of managing who has access to what, ensuring access is appropriate, and providing evidence that access is controlled. IGA platforms provide lifecycle management (joiner-mover-leaver workflows), access certification (periodic review of who has what access), and access request workflows.
What is the difference between SailPoint IdentityIQ and IdentityNow?
IdentityIQ is an on-premises platform offering maximum customization but requiring dedicated infrastructure. IdentityNow (Identity Security Cloud) is SaaS-delivered, requiring no infrastructure. Most new deployments choose IdentityNow unless they have specific on-premises requirements.
What is access certification in SailPoint?
Access certification is the periodic review where managers confirm that employee access is still appropriate. SailPoint automates this by generating campaigns on a schedule, routing review tasks to the right approvers, and revoking uncertified access. Certification records serve as audit evidence.
Is SailPoint required for compliance?
SailPoint is not required, but identity governance controls are. SOC 2, ISO 27001, PCI DSS, and HIPAA all require documented access controls and periodic access reviews. SailPoint provides the automation and evidence needed to satisfy these at scale.
How long does a SailPoint implementation take?
A focused SailPoint IdentityNow deployment for a mid-size organization covering primary applications and access certification typically takes eight to twelve weeks. Larger IdentityIQ deployments take three to six months.
What applications can SailPoint connect to?
SailPoint supports hundreds of connectors: Active Directory, LDAP, Workday, ServiceNow, Salesforce, AWS IAM, Azure AD, Google Workspace, SAP, Oracle, and many others. Custom applications can be integrated using the SCIM connector, REST connector, or custom connector development.
Resources
Company
Contact
- US: 4752 Euclid Rd Suite 11,
Virginia Beach, VA 23462 - India: Orchard Street, Sector 61,
Gurgaon, Haryana - Phone: (301) 825-5518
- info@garrisonone.com
