SGNL Secures $30M Investment to Revolutionize ID Security with Zero-Standing Privileges

SGNL Secures $30M Investment to Revolutionize ID Security with Zero-Standing Privileges

In today’s digital landscape, identity security is increasingly recognized as the “new perimeter” in protecting sensitive information. With the rise of cloud services, the vulnerabilities posed by leaked and spoofed login credentials have become more pronounced. A startup called SGNL is taking a novel approach to address these challenges by implementing a zero-standing privilege model for user access management. Recently, SGNL announced a successful funding round of $30 million, highlighting its rapid growth in the cybersecurity sector.

SGNL Secures $30 Million in Series A Funding

The Series A funding round was led by Brightmind Partners, a newly established venture capital firm dedicated to cybersecurity investments. This round also saw participation from major strategic investors including Microsoft (via M12) and Cisco Investments, along with Costanoa, which previously led SGNL’s seed round in 2022.

With this latest funding, SGNL has raised a total of $42 million. Although the company has not disclosed its valuation, it has indicated that it is experiencing significant growth. SGNL boasts multiple major enterprise clients, including a prominent organization in the media, entertainment, and technology sectors that is leveraging SGNL’s services to streamline its cloud access management.

Addressing Identity Security Breaches

While SGNL keeps its customer list private, it highlights the risks associated with poor identity management. Notable breaches that could have been mitigated by advanced identity security measures include:

  • MGM: $100 million loss
  • T-Mobile: $350 million loss
  • AT&T
  • Microsoft
  • Caesars

The Founders Behind SGNL

SGNL was co-founded by Scott Kriz (CEO) and Erik Gustavson (CPO), who previously co-founded the identity access management company Bitium, which was acquired by Google in 2017. At Google, Kriz and his team were responsible for managing identity access for services like Google Workspace and Google Cloud Platform.

READ ALSO  Mistral AI Readies for IPO: What Investors Need to Know

During their time at Google, they identified significant gaps in identity services and the need for a solution that transcended the limitations of existing tools.

Redefining Access Management

Kriz explains that effective identity access requires contextual awareness, which includes not only passwords but also tailored access privileges for each application. He pointed out that while established companies like Okta and Microsoft excel at granting access, they often fail to revoke it when circumstances change, such as employment status.

Two primary factors have hindered security companies from effectively closing access gaps:

  1. Lack of Standardization: There has been a lack of consensus among vendors regarding standards for identity management.
  2. Innovative Technology: SGNL’s platform is built around the Continuous Access Evaluation Protocol (CAEP), developed by former Google engineer Atul Tulshibagwale, now SGNL’s CTO. This technology has gained adoption among major players like Microsoft, Apple, and Cisco.

How SGNL Enhances Identity Security

SGNL’s solution provides what Kriz describes as a “rich context” for access management. This allows companies to establish multiple access policies with various conditions that must be met for application access. SGNL has developed a comprehensive “data fabric,” an identity graph that operates independently of current data sources, thus enhancing security.

For instance, one of SGNL’s clients, with 400,000 employees and 30,000 roles within AWS, successfully streamlined its policies down to just six, significantly improving its security posture.

Competitive Landscape and Future Outlook

While established companies like CyberArt and SailPoint are also exploring zero-standing privilege, SGNL’s unique approach and the experience of its founders have attracted significant investor interest. Stephen Ward, one of Brightmind’s founders and a former Chief Information Security Officer (CISO) at Home Depot, emphasizes the founders’ deep understanding of large enterprise operations as a critical factor in SGNL’s potential success.

READ ALSO  Tompkins Community Bank Upgrades ATMs with Cutting-Edge NCR Atleos Technology

For more information on identity security solutions, consider exploring resources from CSO Online or Forbes.

Similar Posts

OpenAI CEO Sam Altman Unveils Exciting Plans for Free and ChatGPT Plus Users: Introducing O3 Deep Research Agent!

OpenAI CEO Sam Altman Unveils Exciting Plans for Free and ChatGPT Plus Users: Introducing O3 Deep Research Agent!

Bysupport

Free ChatGPT users can optimize their use of the Deep Research feature, which allows for two monthly queries to explore complex topics. To make the most of these queries, users should strategically select important subjects and formulate clear, specific questions. Prioritizing pressing topics and analyzing the provided responses can lead to valuable insights. Effective use of the Deep Research tool significantly enhances the learning experience. For further guidance on utilizing AI tools, refer to comprehensive resources, including OpenAI’s official page for more information on ChatGPT functionalities.

Understanding Apple’s Lockdown Mode: Boost Your Security While Navigating Confusing Notifications

Understanding Apple’s Lockdown Mode: Boost Your Security While Navigating Confusing Notifications

Bysupport

Apple’s Lockdown Mode, introduced in 2022, is a vital security feature for vulnerable users, including dissidents and journalists, designed to prevent advanced hacking attempts. It disables certain functionalities on Apple devices to safeguard against spyware and zero-day vulnerabilities. Key restrictions include blocking unknown contacts, disabling web tracking, and limiting file types. While effective—no successful hacks have reportedly occurred against users who enable it—confusing notifications often mislead users about its functionality. Despite testing revealing that some messages may still come through, the lack of clarity in alerts can hinder user confidence. Greater transparency from Apple is needed for optimal usage.

Mamo and Lyvely Join Forces to Supercharge UAE's Creator Economy with Streamlined Payment Solutions

Mamo and Lyvely Join Forces to Supercharge UAE’s Creator Economy with Streamlined Payment Solutions

Bysupport

Mamo, a leading UAE FinTech company, is partnering with Lyvely, a social e-commerce platform, to enhance payment solutions for content creators. This collaboration establishes Mamo as Lyvely’s preferred payment provider, aiming to streamline payment processing and support the growing creator economy in the UAE. Key features include a custom split payout functionality and improved transaction efficiency, benefiting creators in managing their finances. Mamo, licensed by the Dubai Financial Services Authority, focuses on automating payment collection, while Lyvely empowers creators to monetize their products effectively. This partnership aims to create a stronger ecosystem for creators’ success.

Stacks Secures $10M Investment to Revolutionize Financial Closures with Cutting-Edge AI Technology

Stacks Secures $10M Investment to Revolutionize Financial Closures with Cutting-Edge AI Technology

Bysupport

Stacks, an AI-driven financial close platform, has raised $10 million in funding through two rounds led by EQT Ventures and General Catalyst. This includes a $3 million pre-seed round and a $7 million seed round, with participation from s16vc and notable angel investors. Founded by Albert Malikov, a former Uber and Plaid executive, Stacks aims to automate financial workflows and reduce inefficiencies in closing processes. The platform integrates with ERP systems and collaboration tools, enhancing accuracy and reducing closing times. Malikov envisions simplifying month-end processes, allowing finance teams to focus on strategic contributions and revenue optimization.

Is GPT-4.5 Worth the Investment for Enterprises? Evaluating Its Accuracy and Knowledge

Is GPT-4.5 Worth the Investment for Enterprises? Evaluating Its Accuracy and Knowledge

Bysupport

The price of GPT-4.5 has generated considerable debate within the tech community. Although its cost is high, this does not indicate the technology’s failure or that it will always be expensive. Factors such as development costs, market demand, and competition influence pricing. GPT-4.5 remains valuable due to its enhanced performance, versatility in various applications, and future potential for cost reductions. As the AI landscape evolves, the current pricing may lead to more affordable options. Ultimately, while GPT-4.5 is costly, its benefits in the tech industry are significant, suggesting a promising future for AI affordability.

EBA Streamlines ICT Risk Management Requirements Under DORA: What You Need to Know

EBA Streamlines ICT Risk Management Requirements Under DORA: What You Need to Know

Bysupport

The European Banking Authority (EBA) has updated its Guidelines on ICT and security risk management to align with the Digital Operational Resilience Act (DORA), effective January 17, 2025. The revisions narrow the focus to credit institutions, payment institutions, and exempted entities, aiming to eliminate overlaps with existing regulations. Key changes include a streamlined approach to relationship management for payment service users and a refined scope that excludes certain payment service providers under the Payment Services Directive (PSD2). These updates reflect the evolving regulatory landscape as the financial sector prepares for DORA’s implementation.