For Security & Compliance

Know every AI agent. Before the auditor does.

AI agents are proliferating on your infrastructure, often without security review. Oculis gives you a complete inventory of every agent, the credentials it uses, the host it runs on, and the data it touches — audit-ready, always current.

“I need to know which AI is running where, with what credentials.”

Get a Demo Start free trial

What You'll See

The audit trail your team has been asking for.

Four views built for security reviews, incident response, and compliance audits.

Agent inventory with credentials

Every agent in your org, catalogued with the API keys it uses, the host it runs on, and the first/last time it was active. Your SBOM for AI.

Credential name + rotation age + scope per agent
Host metadata: user, IP, container, namespace
CSV export for compliance reviews

Agents + Credentials 47 agents · 8 keys

research-assistant

sk-proj-abc...xyz

laptop-sam · 18 days

invoice-classifier

sk-ant-prod...k4j

k8s/prod · 4 days

data-pipeline-v2

sk-proj-abc...xyz

laptop-7d4e · shared

support-triage

sk-ant-csm...n19

k8s/prod · 42 days

+ 43 agents · export CSV →

Credential hygiene alerts

Catch leaked, revoked, or overshared API keys before they become incidents. Oculis watches every credential used by every agent — in real time.

Alerts when a key is used by more agents than expected
Detects revoked keys that are still attempting auth
Flags keys that appear in public code or logs

Shared credential detected

3 agents using sk-proj-abc...xyz — should be scoped per-agent.

Revoked key attempting auth

sk-ant-old...2qp revoked 7 days ago, still tried 412 times today.

All other keys look healthy

5 keys in use, scoped, and rotated within policy.

Audit log export

Every admin action in Oculis is logged with actor, IP, before-and-after state. Export to SIEM or compliance tooling whenever you need to.

Immutable log of every config change, invite, key rotation
Exportable to Splunk, Datadog, Snowflake, and plain CSV
Retention configurable per compliance framework

actor:*@selaware.ai

214 events · 7d

10:42 erik@selaware.ai rotated key sk-proj-abc...

09:12 samson@selaware.ai invited user pixel@selaware.ai

08:55 levi@selaware.ai updated alert cost-spike-daily

08:30 samson@selaware.ai deleted agent deprecated-v1

export to SIEM →

Compliance roadmap, in public

We publish our compliance timeline so you can plan around it. SOC 2 Type II is targeted for Enterprise launch. HIPAA and GDPR follow. We don't hide behind \u201cper-customer\u201d roadmaps.

Multi-layer isolation: JWT + Postgres RLS + app scoping
TLS 1.3 in transit, AES-256 at rest, day-one
SOC 2, GDPR, HIPAA: scheduled, not optional

JWT + Postgres RLS

Multi-tenant isolation, day one

Live

TLS 1.3 + AES-256

Encryption in transit + at rest

Live

SOC 2 Type II

Audit underway

In progress

GDPR + HIPAA

Scheduled post-Enterprise launch

Scheduled

What You Can Do

Turn AI from an audit risk into an audit win.

Four outcomes Oculis delivers for security and compliance teams.

Build your AI SBOM

A living inventory of every AI agent and the credentials it uses. Required for emerging AI governance frameworks.

Audit credentials in minutes

Find the agents using shared API keys. Prove key rotation is happening. Export evidence for SOC 2 or ISO 27001.

Respond to incidents faster

When a key is leaked, you have a complete list of agents using it in seconds. Rotate, revoke, recover.

Export to your SIEM

Audit logs stream to Splunk, Datadog, or any log aggregator. Oculis data lives where your security tooling lives.

Related Capabilities

The platform pieces that matter for you.

Go deeper on the features most relevant to security teams.

Ready?

Sleep better. Audit faster.

30-minute demo. We'll walk through the exact audit trail your compliance team needs.