Identity security startup SGNL has successfully raised $30 million in a Series A funding round to scale its innovative approach to access management. By focusing on “zero-standing privilege”—where user access is strictly conditional rather than permanent—the company aims to eliminate the vulnerabilities caused by legacy credential management. The round was led by Brightmind Partners, with participation from Costanoa Ventures and strategic backing from tech giants Microsoft (via M12) and Cisco Investments.
The Evolution of Identity as the New Perimeter
In modern cloud-native environments, the traditional network perimeter has dissolved. Security experts increasingly view identity as the primary target for attackers. When log-in credentials are leaked or spoofed, malicious actors gain unauthorized entry to sensitive assets. SGNL addresses this by ensuring that access is not a “standing” right, but a temporary, context-aware permission.
The company has now secured a total of $42 million in funding. While external data sources have speculated on a $100 million valuation, sources indicate this figure is significantly understated. SGNL reports strong traction among major enterprises, including a large-scale media and technology conglomerate currently utilizing the platform to automate access management across complex cloud infrastructures.
Addressing the “Open Door” Problem
SGNL was founded by CEO Scott Kriz and CPO Erik Gustavson, both veterans of the identity space who previously co-founded Bitium, which was acquired by Google in 2017. During their tenure at Google, they observed a systemic flaw: existing identity management tools, including major players like Okta and Microsoft, were excellent at granting access but notoriously poor at revoking it when conditions changed.
“There was this desire for companies to get to a place where there was no standing access,” Kriz explained. “Existing services were very good at opening doors, but they weren’t very good at closing them.”
The Role of CAEP and Data Fabric
The platform is built on the Continuous Access Evaluation Protocol (CAEP), an industry standard pioneered by SGNL’s CTO, Atul Tulshibagwale. Adopted by the OpenID Foundation and supported by tech leaders like Apple, Microsoft, and Cisco, CAEP provides the technical backbone for real-time security assessment.
Beyond protocol integration, SGNL differentiates itself through a proprietary “data fabric.” This identity graph allows organizations to move away from managing thousands of individual roles toward a policy-based model. In one real-world application, SGNL helped a client consolidate 30,000 AWS roles into just six core policies, significantly reducing the attack surface.
Market Landscape and Security Impact
The urgency for SGNL’s solution is highlighted by the high-profile breaches that have plagued major corporations, including MGM, T-Mobile, AT&T, Microsoft, and Caesars. These incidents often stem from failures to properly restrict or terminate access, a gap SGNL is designed to bridge.
Investors remain bullish on the startup’s potential to disrupt the market, even amidst competition from established players like CyberArk and SailPoint. Stephen Ward, founder of Brightmind Partners and a former CISO, emphasized that the founders’ deep experience with enterprise-scale systems provides SGNL with a distinct competitive advantage in building a robust, defensible platform.