ConductorOne bringing automation to identity and access management with $15M investment – Meczyki.Net

The founders of ConductorOne, an identity and access control startup, both came from oktaSelf based single sign-on vendor zero trust model, In fact, he was in charge of authentication and zero trust products, and he saw firsthand how companies were struggling to control permissions and access in a complex environment that often involved not only cloud applications, but also on-premises applications. -Premise pieces were also mixed.

They decided to go ahead and start a company to help solve that particular set of problems, with the goal of automating a lot of access control activities that, up to this point, have been done manually, or more. Worse, not at all.

Today the company announced a $15 million Series A.

CTO and co-founder Paul Cuerna said he is well aware of the issues companies are facing. “Permission and access management is still very painful for the users, and the IT teams or the engineering team to manage all this,” he told Meczyki.Net. That’s because with a poor permissions system, you may end up waiting for people to use the equipment they need to do their jobs under the provision, or provisions such as retaining permissions for users who are no longer at your company. are not working. “I think a lot of us have had experiences like this for the first time,” Cuerna said.

Their co-founder and CEO Alex Bowie says they wanted to make it easier for companies to control and bring about these access management functions. principle of least privilege for solution. Bowie told me, “We started Conductor One to automate as much as possible from an identity security perspective, providing access to help people achieve the least privilege level of access control , the access should be retained and the access should be revoked.”

Former Okta employees see their company solving a different problem than their former employers in order to gain recognition. “They do a great job of centralizing some of your corporate users into a central directory. I think when you think about identities from a security perspective, it’s basically about understanding all the identities in your environment. whether they are linked to your SSO solutions or not,” he said.

He adds, “It’s also about permissions, roles, understanding the data that those different identities can access. So we’re taking more of an orchestration centric approach. Clearly, it’s just one thing.” The different architecture is, an orchestration view and visibility into your environment first of all what you’re able to deliver as a security and GRC (Governance, Risk, Compliance) team, and then building the workflow on top of that. to execute, “

The way it works is through out-of-the-box integrations for popular services like Okta, GitHub, Slack, Datadog, Jira and more to understand what’s happening in the company, and who. C actions can affect one’s permission to access a program. However, it’s worth noting that they can work with any corporate directory solution beyond Okta.

Today, the startup has 17 employees with plans to double it by the end of the year. Bowie says the creation of a diverse workforce is documented in the company’s core values. “We posted our company values ​​long ago. It’s one of our first blog postAnd I think one mechanism for attracting that talent, especially in the sourcing funnel, is to be public and transparent about how you want to run the company, and emphasize that you believe in diversity and You want it as part of you. company culture,” he said.

Today’s $15M Series A investment was led by Accel with participation from existing investors Fuel Capital, Fathom Capital and Active Capital, as well as several leading industry angels. The company raised a seed round of $5 million last year, which was also led by Accel.

The new funding will help them realize their long-term vision for the company. “Our vision and strategy for product long-term is to automate that full lifecycle in access control. So not just the on boarding process, but ultimately the off boarding process, and handling things like time-based access control, so that’s why it’s there in the first place. Also no problem because you grant access for a period of time and then remove it,” Bowie explained.