Rippling

Big-time Mucky Muck at Rippling

Rippling Automated Compliance launches today, starting with SOC 2 Type 1 and Type 2 , aimed at startups and operators who would otherwise spend months stitching together identity providers, device managers, and performance tools just to get audit-ready. Because Rippling already serves as the system of record for HR, IT, identity and access, and device management, most of the evidence an auditor wants is collected before the project even begins, and when a gap appears, Rippling can close it instead of just flagging it . The pitch is that SOC 2 stops being a parallel workstream and becomes a byproduct of how the company already runs. The product handles remediation directly inside the same platform that caused the finding. An unencrypted device gets encrypted, stale app access from a review gets de-provisioned, and incomplete security training triggers a reminder that gates system access until it's done . Offboarding revokes access, wipes the device, and generates a certificate of data destruction for auditors in one system , which is the kind of glue work most compliance tools push back onto IT and security teams. The launch is being introduced by Matt MacInnis, who joined Rippling in 2019 and serves as Chief Operating Officer after previously co-founding the mobile learning company Inkling. Rippling itself was co-founded in April 2016 by Parker Conrad and Prasanna Sankar, with Conrad as CEO and Sankar as CTO , and the company has been building out adjacent workforce categories ever since. Compliance is a logical extension of that footprint, and for founders who already run payroll, devices, and access on Rippling, it removes one of the more painful vendor evaluations a growing company faces.

Tags

Comments (10)