XOPS

Solutions  /  IT Asset Management

For ITAM directors, SAM managers, and HAM leaders

Audit readiness as a
continuous truth.

ISO 19770 compliance scores, Effective License Positions, and fleet evidence — defensible the day after they’re published, not just the day they’re run. XOPS makes the asset-management discipline continuous instead of project-based.

The ITAM reality

Asset management is a project.
Audit readiness is a deadline.

Most ITAM organizations run on three things: a SAM tool, a CMDB, and a spreadsheet that’s never quite right. Audits expose the spreadsheet. Renewals expose the SAM tool. The CMDB stays a year behind the truth.

1

Audit prep is a six-week project.

CSV extraction. Manual reconciliation. Evidence trees rebuilt from scratch every cycle. The certification window arrives, and the team disappears for a month.

2

ELP is stale the day after publication.

License variance reconciled quarterly — against a Q-1 snapshot. By the time procurement walks into the renewal, the position the deck describes hasn’t existed for two months.

3

Ghost assets compound silently.

Devices nobody can find. Licenses assigned to people who left months ago. Cost accrues. Audit risk accrues. Nothing announces it until the next certification names it.

4

ISO 19770 gaps are invisible until they bite.

The 22 process areas of 19770-1 are real. The evidence for each is scattered across a dozen systems. Coverage is unknown until an auditor walks the matrix — in person.

5

Evidence is undefendable.

Reports look good. Drill into them, and the lineage breaks. The CFO asks where the number came from; the team rebuilds the calculation from raw extracts in real time.

6

SAM tools don’t make ITAM continuous.

Flexera, Snow, ServiceNow SAM — great inventory engines. None of them coordinate state across HR, identity, usage, contract, device, and procurement. Reconciliation stays human.

The structural reason

Every ITAM decision needs seven sources of state.
No SAM tool holds all of them.

License reclamation, refresh planning, audit response, true-up — every operational decision sits on seven independent truths. The SAM tool holds one. Reconciling the rest is offshore labor, performed in CSV, every cycle.

HR

Employment

Workday / SuccessFactors

Identity

Sign-in

Okta / Entra ID

Assignment

Who has what

SAM tool / ServiceNow

Usage

Active / dormant

Nexthink / Tanium

Contract

Entitlement

Coupa / Ariba

Device

Serial / state

Intune / Jamf

Procurement

PO / depot

SAP / Ariba

Reconciling these is the work. Today, that work is performed by your SAM analysts — in spreadsheets, every cycle. Every reconciliation step is operational labor that doesn’t scale.

What XOPS coordinates

ISO 19770 as a live system.
Not a quarterly artifact.

XOPS reads the seven sources of asset truth continuously, reconciles them through the Four Truths framework, and projects every ITAM artifact your team owes the business — live, evidence-backed, defensible.

1 · Compliance matrix

ISO 19770-1 to -4, always live.

All 22 process areas of 19770-1 mapped to XOPS capabilities, evidence traced to source. Plus ISO 19770-2 (SWID), -3 (entitlement), -4 (resource utilization), ISO 27001:2022, NIST 800-88r2 for disposal.

2 · Effective License Position

Publisher-by-publisher variance, on demand.

Entitled vs. measured vs. actual usage, reconciled through Four Truths convergence: Installation, Usage, Assignment, Procurement. Defensible to the auditor; defensible to the vendor.

3 · Fleet health

Audit-ready posture by site.

Device count, MDM coverage, encryption status, patch currency, EOL/refresh-due. Site-level rollups. Confidence scoring per metric. No ghost assets surviving the next reconciliation.

4 · Refresh prioritization

EOL cohort, extend, dispose.

Performance-driven refresh decisions instead of calendar-driven. Extend candidates flagged by usage health. ITAD disposition list with NIST 800-88r2-compliant chain of custody.

5 · Reclamation

Savings continuous, not annual.

Shadow IT detection. Misassignment detection. Orphaned install cleanup. Reclamation opportunity by AXIS state and publisher — reconciled live, ready for action with manager approval.

6 · Executive summary

Board-ready, every cycle.

NBV, TCO, refresh savings, risk register, market context, compliance posture. Generated, not assembled. The team stops building decks and starts answering questions.

In production today

ITAM teams running on XOPS
across the Fortune 500.

Customer outcome · F500 financial services

Anonymized · 979 software assets, 230 devices

From quarterly audit prep to 96% audit readiness, always.

A Fortune 500 financial-services customer shifted from quarterly ISO 19770 audit preparation to a continuous-readiness posture. The ITAM team stopped disappearing into spreadsheets for six weeks before every certification. The compliance matrix is now a live artifact. Microsoft ELP variance analysis surfaced $1.7M+ in over-licensing — defensible enough to enter the next renewal cycle as the leverage position, not the apology.

96%

Audit readiness score

$1.7M+

Software over-licensing surfaced

22 / 22

ISO 19770 process areas covered

974

Software-user pairs with usage truth

For ITAM, SAM, and HAM leaders

Audit readiness, every day. Not just on certification week.

ISO 19770 as a live system, not a quarterly artifact. ELP that matches reality. Evidence trees that compile themselves.

Request demo See deployment model