PolicyDrift

PolicyDrift is a web app (with lightweight desktop/agent components) that continuously detects “Zero Trust drift” across identity, device posture, network access, and cloud permissions. Instead of trying to replace your IAM/EDR/ZTNA stack, it connects to what you already have (Okta/Azure AD, CrowdStrike/MDE, Zscaler/Cloudflare, AWS/Azure/GCP) and flags when real-world access deviates from your intended policies: stale exceptions, over-broad group membership, shadow admin roles, unmanaged devices with access, and risky conditional access bypasses. It generates a prioritized drift queue with blast-radius scoring and clear remediation steps, plus evidence packs for audits (SOC 2/ISO 27001). An AI copilot helps translate messy policies into human-readable intent, suggests least-privilege fixes, and drafts change tickets—but all actions require human approval. This is not a “magic Zero Trust” product; it’s a pragmatic control-plane layer for teams drowning in misconfigurations.