"vendors are entering the space with plans to leverage automation to ensure compliance"
In my long experience, automation has never been and never will be the key to compliance. What's needed is appreciation of the purpose of compliance and commitment to fulfilling that purpose. It's a governance problem, not a technology one.
Every organisation I've ever worked with has viewed "compliance" as doing the bare minimum to satisfy some auditor. The point they've all missed is that actual compliance in practice can protect the enterprise against accidents,whereas minimalist pseudo-compliance is just a cost centre. However there are big bucks in provision of automation, and it as appears to absolve the deployer from responsibility, it's become the way to go whether it's really effective or not.