Top 10 Identity and Access Management platforms

Latest news about Identity and Access Management platforms

2023. Authentication startup FusionAuth raises $65M



FusionAuth, a company specializing in developer-focused authentication and user management solutions, recently secured $65 million in funding. By addressing the challenges associated with customer identity management, FusionAuth has garnered widespread support from developers due to its user-friendly approach and feature-packed platform that streamlines authentication processes and enhances the development experience. The company's impressive customer base and 13 million downloads underscore its popularity among developers, making it an attractive investment opportunity. With our backing, FusionAuth is well-equipped to scale and meet the surging demand, enabling it to further innovate and introduce valuable capabilities to the developer community.


2023. Passwordless authentication startup SecureW2 raises $80M



Passwordless authentication provides numerous advantages compared to traditional methods such as pins, passphrases, and passcodes. This is particularly beneficial for platforms like SecureW2, which specialize in simplifying the deployment and maintenance of infrastructure for passwordless authentication. Recently, SecureW2 secured $80 million in funding. Their suite of passwordless technologies includes a tool for issuing certificates, which serve as digital replacements for passwords. These certificates are used to authorize access to Wi-Fi, ethernet, or VPN services for customers. SecureW2's platform ensures these certificates are accessible on a wide range of mobile and desktop operating systems. Additionally, it can integrate with cloud identity environments like Okta, enabling the extension of policy-based security throughout a company's infrastructure.

2023. AuthMind raises $8.5M for its identity SecOps platform



AuthMind, a startup dedicated to fortifying businesses against identity-related cyber threats, revealed its successful $8.5 million seed funding round today. The company offers a proactive approach to enhance the security of businesses by promptly detecting and addressing attacks and vulnerabilities tied to identity issues. One key method involves analyzing the network flow of a company. AuthMind's unique feature is its ability to swiftly create a comprehensive overview of a company's cloud, on-premises infrastructure, software-as-a-service (SaaS) applications, password managers, and other elements, even without prior knowledge of the company's specific identities, assets, and directories.


2023. Cerby lands $17M to manage access to ‘nonstandard’ enterprise apps



Cerby, a startup that helps to manage access for business-to-business nonstandard apps. has closed a $17 million Series A funding. Harnessing the power of identity providers like Okta, Azure AD and SailPoint, Cerby removes the need for manual tools and compensating controls, such as enterprise password managers, by automating everyday human security tasks based on single sign-on and lifecycle management cues from upstream identity providers. Cerby works by automating certain tasks, including offboarding and two-factor authentication enrollment, while providing security teams with visibility and control of employee-onboarded apps. It lets customers share access to social media accounts, for example, without sharing passwords. And Cerby can detect rogue apps, guiding users to more secure alternatives.


2023. Identity management platform Veza secures $15M



Veza, a platform dedicated to enhancing identity access security across various applications, data systems, and cloud infrastructure, has successfully secured $15 million in a recent funding round. Similar to other identity management solutions available, Veza empowers businesses to enforce policies, actively monitor for potential violations and risky permissions, and autonomously prevent or revoke unauthorized access to their products and services. By utilizing the "authorization graph," Veza aims to intelligently interpret the authorization metadata within a company's internal applications and databases.


2023. ID verification platform Bureau raises $16.5M



Bureau, a platform specializing in identity verification for businesses, has secured an additional $4.5 million in its Series A. The core mission of Bureau is to assist companies in combatting fraud and adhering to regulatory compliance requirements. Its services cater to various sectors, including banking, fintech, insurance, the gig economy, and real-money gaming. Bureau's unique approach revolves around constructing a centralized database, serving as a single source of truth. The system utilizes verified identities, each tokenized and associated with a mobile number. By mapping out a comprehensive digital profile encompassing mobile numbers, emails, devices, and IPs, Bureau creates a virtual persona for individuals. Additionally, physical identity is established through document verification, OCR, Facematch, biometrics, and information from government databases or database/AML checks. This comprehensive approach generates contextual, tokenized insights during various interactions, such as account openings, compliance verifications, app logins, or transactions.


2023. Google Authenticator can now sync 2FA codes to the cloud



Google Authenticator has been updated to enhance its usability for those who frequently utilize the service to log in to websites and apps. Starting today, Google Authenticator will synchronize any one-time two-factor authentication codes that it generates to users' Google Accounts. Prior to this update, these one-time codes were saved locally on a single device. As a result, losing the device meant losing access to any service set up with Authenticator's 2FA. By updating the Authenticator app, users can take advantage of the new synchronization feature. If they are signed in to a Google Account within the Authenticator app, their codes will be automatically saved and restored on any new device they use.


2023. Strivacity, which helps companies build secure login flows, nabs $20M



Strivacity, a startup that provides secure sign-in experiences for businesses, has raised $20 million in funding. The platform allows companies to create business-to-business and business-to-consumer sign-in flows using a dashboard with radio buttons and drop-down menus. Strivacity manages aspects such as consent management, identity verification, and branding. The platform is hosted on a scalable cloud, which enables it to handle spikes in customer login activity for up to hundreds of millions of monthly active users. This scalability is a significant advantage for businesses that need to accommodate a large volume of sign-ins during peak periods. According to the company's founder, Strivacity aims to make sign-in experiences more secure and user-friendly for businesses and their customers.


2023. Spera raises $10M for its identity security posture management platform



Spera, a security startup that provides businesses with the tools to proactively protect themselves from identity-driven threats, has raised a $10 million seed funding. With Spera, businesses get a single end-to-end tool that allows them to manage all aspects of identity security, be that visibility and context to prevent attacks, or remediation when things go awry. In the current market, where many businesses are looking to cut costs, a service like Spera also serves a purpose that goes beyond security: it helps companies lower their license costs, as it allows them to find dormant accounts that can be turned off.


2023. Aembit raises $16.6M to bring identity management to workloads



Aembit, a security startup that specializes in aiding DevOps and security teams in regulating the communication between federated workloads, has officially launched its service and disclosed a $16.6 million seed funding round. Aembit's service for workload identity and access management leverages industry expertise to handle user and device access to cloud workloads, including APIs, databases, and other cloud resources, without necessitating developers to modify their code. Aembit's objective differs from that of API gateways and security services, which operate ahead of the API and assist developers in creating and securely exposing them to both internal and external developers. In contrast, Aembit focuses on the client that interacts with the API and guarantees its authorization to access it.


2022. Opal secures $10M for dynamic access management



Opal, a platform dedicated to decentralizing access management for enterprise customers, has recently announced the successful completion of a $10 million Series A funding round. Opal provides employees with a self-serve catalog that enables them to request and obtain access to various systems. To assist the customer's security team, Opal's analytics dashboard offers suggestions, visualizations, and insights based on usage patterns and data. For example, if a user has not accessed a particular resource for an extended period, the analytics dashboard may recommend revoking their access.


2022. Microsoft introduces Microsoft Entra to help customers secure access



Microsoft has introduced a new product line Microsoft Entra, consolidating all of the company's identity and access capabilities. This comprehensive suite comprises Azure Active Directory (Azure AD) alongside two innovative product categories: Microsoft Entra Permissions Management, a Cloud Infrastructure Entitlement Management (CIEM) solution, and Microsoft Entra Verified ID, a decentralized identity offering. Aligned with Microsoft's broader vision for identity and access, Microsoft Entra aims to authenticate diverse identities and effectively secure, oversee, and regulate their access to any resource. Its functionalities encompass safeguarding access to applications and resources for all users, validating identities across hybrid and multicloud environments, governing permissions in multicloud settings, and enhancing user experience through real-time intelligent access decisions.


2022. Identity platforms Thycotic and Centrify united into Delinea



Delinea is a new provider of privileged access management (PAM) solutions, formed as a result of the merger between established PAM leaders Thycotic and Centrify. Delinea caters to both small businesses and global enterprises, ensuring everyone's digital freedom by efficiently defining access boundaries. Their solutions enable access to critical data, devices, code, and cloud infrastructure through a centralized dashboard. Users enjoy access precisely when and where they need it, for the necessary duration to complete their tasks. Delinea empowers organizations with enhanced agility, productivity, and security, whether they operate in the cloud or on-premises. Furthermore, Delinea's solutions are robust, customizable, and scalable, accommodating organizations of all sizes and industries, irrespective of their PAM maturity level.


2021. Identity verification startup Socure raises $450M



Socure, a company specializing in AI and machine learning-powered identity verification, has recently secured $450 million in funding. Socure's advanced identity resolution engine leverages predictive analytics to analyze over 8 billion records, enabling a comprehensive understanding of a consumer's identity for the purpose of fraud detection. This capability extends to populations that are typically challenging to identify, including Gen Z individuals, those with limited credit history, and newcomers to the country. Socure serves an impressive customer base, encompassing 12 of the top 15 banks, as well as prominent fintech companies, online gaming providers, and cryptocurrency exchanges. Notable clients include Voyager, Public, Stash, and DraftKings, among others.


2021. Customer due diligence platform First AML gets $21M



New Zealand-based First AML, an end-to-end due diligence platform, has successfully secured $21 million in funding. What sets First AML apart from other digital ID authentication startups like Jumio, Onfido, and ForgeRock is its focus on complex entities and transactions rather than individual end users. This approach allows the platform to conduct due diligence on multiple organizations and individuals simultaneously. Unlike many authentication and KYC (know your customer) startups, First AML's primary client base does not consist of banks alone. It serves various financial service providers, accountants, law firms, and real estate agencies.


2021. One Identity has acquired OneLogin, a rival to Okta and Ping Identity



More consolidation is underway in the realm of cybersecurity, particularly concerning services that assist organizations in identity and access management. Today, One Identity, a provider of tools for managing "zero trust" access, log management, and governance services for enterprises, revealed its acquisition of OneLogin. OneLogin, a competitor to companies such as Okta and Ping in the secure sign-on services domain for end users, boasts an impressive customer base of around 5,500 organizations, including renowned names like Airbus, Stitch Fix, AAA, and Pandora.


2021. Microsoft acquires access management startup CloudKnox



Microsoft has recently completed the acquisition of the IAM (identity and access management) startup, CloudKnox Security. CloudKnox specializes in aiding organizations in implementing the least-privilege principles to mitigate risks and prevent security breaches. By integrating CloudKnox's activity-based authorization service, Azure Active Directory customers will gain comprehensive visibility, continuous monitoring, and automated remediation for managing permissions across hybrid and multi-cloud environments. Microsoft has plans to seamlessly integrate CloudKnox with its other cloud security services, such as 365 Defender, Azure Defender, and Azure Sentinel. This acquisition aligns with Microsoft's strategic efforts to bolster its security portfolio, as demonstrated by its recent acquisitions of IoT security startups CyberX and Refirm Labs.


2021. Australian ID verification startup OCR Labs raises $15M



With the rise of the gig economy, the demand for ID verification has become crucial, leading to the emergence of startups like OnFido (which has raised $188.8 million) and others. However, this sector is continuously evolving. Now, originating from Australia, OCR Labs has announced a €12.5 million funding round. OCR Labs offers a comprehensive solution that combines five proprietary technologies, including optical character recognition (OCR) for identity documents, document fraud assessment, liveness detection, video fraud assessment, and face matching. These capabilities enable compliance with Anti-Money Laundering (AML) and Know Your Customer (KYC) regulations. The goal is to streamline identity verification processes, whether for job applications or opening bank accounts, while ensuring protection against identity theft and fraud. Digital ID verification plays a crucial role, although this year has exposed the limitations of hybrid models. While people can introduce barriers and risks, fully automated technology has the potential to revolutionize various industries without compromising privacy. OCR Labs prioritizes security, seamlessness, and speed, capable of recognizing ID documents from around the world.


2021. Aserto raises $5.1M to build authorization as a service



Aserto, an emerging startup aiming to develop an authorization-as-a-service solution, has recently secured $5.1 million in seed funding. Aserto's primary objective is to simplify the process for developers by providing them with a sophisticated service that offers granular control over role-based access control through policy management. Their approach, referred to as "policy-as-code," enables developers to author, edit, store, version, build, deploy, and manage authorization rules. This solution leverages the CNCF Open Policy Agent (OPA) project, ensuring a robust foundation for Aserto's offering.


2021. Jumio raises $150M for its all-in-one ID authentication platform



Jumio, a company that has developed a platform offering a wide range of digital identity tools and technology, including biometrics, machine learning, computer vision, and big data, has successfully concluded a funding round, raising $150 million. Jumio's platform enables various checks on ID documents and log-ins to combat suspicious financial activities and prevent identity theft. Currently, Jumio primarily operates in the B2B space, providing digital identity verification tools to enterprise customers such as HSBC. The company plans to allocate the funding towards expanding its AI capabilities, particularly in anti-money laundering efforts. Additionally, Jumio aims to explore the development of a B2C product that leverages its existing data, tools, and customer network to assist individuals in better managing their online identities.


2021. Okta acquires cloud identity startup Auth0 for $6.5B



Cloud identity company Okta has announced its acquisition of the cloud identity startup Auth0 for a significant $6.5 billion. This deal brings together two companies that approach identity management from different perspectives, creating potential synergies and opportunities in the identity market. Okta specializes in delivering identity and access management (IAM) solutions to organizations, enabling seamless single-sign-on access for employees across various cloud services such as Gmail, Salesforce, Slack, and Workday. On the other hand, Auth0 offers developers an easy-to-use API for implementing single-sign-on functionality, eliminating the need for developers to build IAM tools from scratch. Following the acquisition, Auth0 will continue to operate as an independent unit within Okta, and the two companies will explore integration possibilities in the future.


2021. BeyondID grabs $9M to help clients implement cloud identity


BeyondID, a cloud identity consulting firm, has secured a $9M Series A funding. The company specializes in assisting clients with security and identity management in the cloud, with a particular focus on Okta customers. BeyondID is a platinum partner for Okta and offers comprehensive solutions in various domains, such as identity and access management, secure app modernization, Zero Trust security, cloud migration, and integration services.


2020. Cloud directory service JumpCloud raises $75M



JumpCloud, the cloud directory service, has successfully raised $75 million in Series E funding. Since its inception in 2013, the company has witnessed significant transformations in the IT landscape. Previously, organizations predominantly relied on Microsoft Active Directory within Windows-centric environments. However, the subsequent rise of diverse operating systems, web applications, cloud computing, and mobile devices necessitated a new approach to directory structures. JumpCloud fills this gap by offering an independent cloud directory platform that securely connects users to their required resources while providing IT teams with complete control over access management. This flexible solution accommodates the evolving needs of modern IT environments, enabling seamless connectivity across heterogeneous systems and ensuring robust security measures.


2020. Okta adds new no-code workflows that use identity to trigger sales and marketing tasks



Identity management provider Okta has unveiled new no-code workflows that enable businesses to leverage identity as a trigger for launching customer-centric processes. Okta has developed a range of connectors that simplify the integration of identity with sales and marketing tools within a workflow. In the previous year, Okta introduced Platform Services, which disaggregated various components of the platform and presented them as individual services for larger enterprise customers to leverage as required. This latest development builds upon that concept, allowing users to effortlessly incorporate Okta services into their workflows by dragging and dropping the appropriate connectors, eliminating the need for complex coding or engineering resources.


2020. Google finally fixed the worst thing about its Authenticator app



To enhance data security and protect against hackers, utilizing two-factor authentication is highly recommended, and Google Authenticator serves as a straightforward and sensible choice. Excitingly, a new feature has been added to Google Authenticator, making it effortless to transfer data from one phone to another. Google Authenticator is a mobile application that generates a dynamic, constantly changing code. This code, along with your password, is required to access various online accounts, including Facebook, Gmail, and Twitter. With the recent update, Google has introduced the capability to seamlessly transfer all data from Google Authenticator to a new phone. The process is straightforward, involving the selection of an account and scanning a QR code using the old phone.


2020. ForgeRock nabs $93.5M for its ID management platform



ForgeRock, a company that has developed a platform focused on ensuring the authenticity of users accessing services and enabling organizations to effectively track and manage service usage, has secured $93.5 million in funding. In a competitive industry landscape, with notable players like Okta, LastPass, Duo Security, and Ping Identity vying for prominence in different aspects of identity management, ForgeRock has achieved remarkable success. It boasts an impressive customer base of 1,100 enterprises, collectively overseeing the management of 2 billion identities through its platform. Additionally, ForgeRock's platform supports the authentication and management of a significant number of devices, further highlighting its reach and impact.


2020. Okta launches Lifecycle Management Workflows to make building identity-centric processes easy



Okta, the widely-used identity and access management service, has introduced Lifecycle Management Workflows, a novel tool that empowers IT teams to create and oversee automated processes akin to IFTTT (If This Then That), utilizing a user-friendly graphical interface. This new offering extends Okta's existing automation tools, but its distinctive feature lies in enabling IT teams and developers to effortlessly construct intricate workflows centered around identity, encompassing a broad array of applications. Consequently, these teams can easily automate onboarding procedures, ensuring that the establishment of a new Okta account seamlessly triggers relevant processes on third-party platforms such as Box, Salesforce, ServiceNow, and Slack, leading to the swift setup of corresponding accounts on those platforms.


2019. Identity management software Okta introduced end-user-security product


Under the SecurityInsights umbrella, Okta has introduced two new products. The first is UserInsights, designed for end users, while the second is HealthInsights, catering to administrators. UserInsights provides users with valuable information regarding any suspicious activity associated with their accounts, such as unrecognized device logins. In the event of a potential password theft, users can report the incident by clicking the Report button, initiating an automated workflow for further investigation by the company's security team. Additionally, users are strongly advised to change any compromised passwords promptly. HealthInsights functions similarly but targets system-level administrators, offering suggestions to enhance the overall identity security posture of the company.


2019. Okta brought identity management to server level



Okta has unveiled an advanced server-level identity protection solution called Advanced Server Access. This innovative tool offers comprehensive identity management for Windows and Linux Servers, whether they are located in a data center or the cloud. The product is compatible with major cloud infrastructure providers such as Amazon Web Services, Microsoft Azure, and Google Cloud Platform. Advanced Server Access empowers IT teams to safeguard server access, minimize the risk of identity theft, and introduce automation to the server credential process. Continuous monitoring is a key feature of this tool, ensuring that user information remains unchanged and mitigating the risk of man-in-the-middle attacks. It also performs regular checks for viruses or malware and verifies the authenticity of the user operating the machine, as well as their access level. With Advanced Server Access, Okta aims to enhance server security, bolster identity protection, and streamline the server credentialing process.


2019. Okta acquired workflow automation startup Azuqua



Okta has announced its acquisition of Azuqua, a workflow automation startup, for a sum of $52.5 million. In today's dynamic enterprise environment, employees and tasks frequently transition across various applications and services. The integration of automation software with identity and access management presents an opportunity to facilitate seamless movement between these entities. By combining their capabilities, the two companies aim to enable smooth application transitions within complex workflows, reducing the need for repetitive credential input. Product teams will have the ability to incorporate this technology into their own applications, alongside Okta's core authentication and user management tools, in order to create cohesive and integrated customer experiences.