Pricing

Start small, add only what is useful.

Begin with a one-time baseline, add the review modules you need, and scope a hosted partner program when the account model requires it. Automated monitoring is clearly labeled roadmap work. Pricing is scoped to the actual work, not a public rate card.

Baseline

One-time

A single Okta assessment with the report and evidence package. The smallest useful Okta review.

  • Versioned check library, one point-in-time assessment
  • Prioritized finding queue with owners
  • Evidence package + framework-mapped report
  • No remediation write-back or auto-remediation
Start a baseline
Most popular

Add-on packages

Scoped

Focused modules for licensing, audit evidence, alert coverage, and deeper stakeholder review.

  • Everything in Baseline
  • Okta licensing utilization signals
  • All 8 framework evidence lenses (SOC 2, HIPAA, PCI DSS, and more)
  • Splunk / SIEM alert coverage review
  • Custom control or report packaging
Start a review

Automated monitoring

Roadmap

Planned scheduling, drift comparison, and trend reporting. This is not a production subscription today.

  • Automated scheduling is not live
  • Drift comparison is not live
  • Trend reporting is not live
  • Manual follow-up assessments can be scoped now
Scope monitoring

Partner Program

Quoted

Pilot Okta posture assessment delivery from an Atomation-hosted partner portal with a tenant-addressed workspace per client. Final partner authorization validation is required before live client onboarding.

  • Partner portal at partner-slug.atomation.io
  • Tenant-addressed hosted workspace per client
  • Platform license plus per-workspace pricing
  • Quoted to your book of business
Partner discussion

Every engagement is quote-based and fixed up front. Get a quote →

Included in every plan

The current product boundaries do not change with the tier

No remediation write-back or auto-remediation
Point-in-time assessment data with PDF or Markdown report export
Evidence attached to every finding
Framework lenses: SOC 2, HIPAA, PCI DSS, ISO 27001, NIST 800-53, CIS v8, SOX, GLBA/FFIEC
SAML SSO + SCIM provisioning — included on every tier, never an enterprise upsell
No per-user pricing: headcount never changes the price of a scan
Okta Identity Engine support
Hosted Atomation workspace model with direct customer and partner portal paths
Pricing FAQ

Common questions

How is pricing determined?

Pricing is scoped to your org count, environment shape, selected modules, hosted workspace shape, report depth, and review support. Tell us your org shape and we'll send a fixed quote.

Do you charge per user or per identity?

No. Atomation is priced per org and per assessment — the same assessment scan costs the same whether the org has 100 users or 10,000. Hiring more people never raises your bill.

Is SSO an enterprise add-on?

No. SAML SSO and SCIM provisioning into your Atomation workspace are included on every tier. Sign-on security is table stakes, not an upsell.

Do you need write access to our Okta tenant?

Runtime scans request only 31 assessment read scopes and never auto-remediate. The connector also holds okta.appGrants.manage solely to maintain its own approved read grants; it does not manage your users, groups, policies, other apps, or org settings.

Can we start small?

Yes. Start with a one-time Baseline assessment, then scope a later on-demand review if remediation or a material Okta change warrants it. Automated monitoring is roadmap work, not a live tier.

How does partner pricing work?

Pilot partners use Atomation's hosted portal with tenant-addressed client workspaces. Final partner authorization validation is required before live client onboarding. Pricing is quoted as a platform license plus per-workspace scope based on the partner's book of business.

What about remediation?

Atomation produces the finding queue and evidence; fixes are made by your team or an approved delivery partner — the product never writes remediation changes to your org. If you want hands-on help, I offer remediation consulting directly: I'm a former Okta IAM Architect (yes, at Okta) with 10+ years of identity consulting behind these checks, so the person who built the rules is the one helping you close the gaps — quickly and at competitive rates.

Tell us your org shape, get a fixed quote

Connect the assessment, see your real findings, and decide from there. No tenant remediation, no public rate-card guesswork.