Menu

Press Releases

SailPoint Receives Federal Government’s Common Criteria Certification

Security Certification Reflects SailPoint’s Commitment to Keeping Government and Enterprise Customers Secure

AUSTIN, November 3, 2015 – SailPoint, the largest dedicated identity and access management (IAM) vendor, today announced that SailPoint IdentityIQ has met the stringent security requirements of the US federal government to achieve the Common Criteria for Information Technology Security certification. This certification assures SailPoint customers that IdentityIQ has passed the most stringent security requirements of government and enterprise organizations.

“Organizations need innovative and proven security solutions that give them control over their users’ access to sensitive data and applications,” said Mark Weatherford, a senior advisor at The Chertoff Group and former Deputy Under Secretary for Cybersecurity at the U.S. Department of Homeland Security. “The Common Criteria framework is the validation these organizations need to ensure that any commercial product used to manage access to government data meets the highest security standards. SailPoint IdentityIQ’s certification gives organizations confidence that their industry-leading IAM solution addresses these stringent requirements.”

Data breaches, such as the recent attack on the Office of Personal Management (OPM), continue to highlight the importance of changing how governmental agencies protect themselves and address the growing risk of cyber threats. The OPM attack resulted in initiatives to tighten cyber security policies and IT infrastructure in government organizations and highlighted the important role of identity and access management in these efforts. For instance, programs such as the Department of Homeland Security’s Continuous Diagnostics Mitigation (CDM) program include IAM as a central component of a risk-based approach to security management. SailPoint’s IAM solutions help organizations meet these requirements by controlling users’ access rights to sensitive information to prevent loss, theft, abuse and misuse of data.

“SailPoint fully understands the urgency in which federal agencies are seeking to secure their mission-critical systems,” said Kevin Cunningham, president and cofounder of SailPoint. “In the face of repeated cyber attacks and breaches across governmental departments, we see more organizations leveraging IdentityIQ to secure access to critical business services across complex IT ecosystems. The Common Criteria certification is the gold standard for any security product serving the government, and we are committed to ensuring that IdentityIQ meets that standard.”

About Common Criteria

Common Criteria is an internationally recognized security certification required by government entities (including US Federal, state and local governments) and enterprise organizations in more than 26 countries seeking to procure commercial products. Certification is granted when a Common Criteria testing laboratory determines that a product meets a defined measure of security. SailPoint received its certification from the NIAP, which is responsible for ensuring consistent IT product evaluation methodologies across U.S. testing labs and among labs associated with international Common Criteria.

About SailPoint

As the fastest-growing, independent identity and access management (IAM) provider, SailPoint helps hundreds of global organizations securely and effectively deliver and manage user access from any device to data and applications residing in the datacenter, on mobile devices and in the cloud. The company’s innovative product portfolio offers customers an integrated set of core services including identity governance, provisioning and access management delivered on-premises or from the cloud (IAM-as-a-service).