Oak Inc., a Tel Aviv-based identity management startup, launched today with $60 million in seed funding to address a growing cybersecurity vulnerability: enterprises cannot easily track who accesses what applications and when, especially as AI agents proliferate across corporate networks.
The round was co-led by Accel, Greylock Partners, and CRV, with participation from Hetz Ventures, AlphaDrive Ventures, and several unnamed angels. The company is led by CEO Shai Morag, who has previously founded three cybersecurity startups, each acquired by major vendors including Mellanox, Palo Alto Networks, and Tenable.
The funding arrival marks a concrete bet on a specific operational problem: as enterprises expand their technology stacks and deploy AI agents that themselves consume multiple applications, visibility into access permissions has become fragmented and risky. One misconfigured account or overprivileged AI agent can expose sensitive data or systems if compromised.
The Core Problem: Fragmented Visibility Across Applications and AI Systems
Large enterprises typically issue employees access to dozens of business applications. Many workers now also rely on AI agents that independently use several programs to complete tasks. This layered access model makes it difficult to audit who can do what, especially when checking for compliance with security best practices like separation of duties, or SoD.
SoD is a control that prevents a single employee from accessing multiple sensitive components of the same system. For example, a company may require that workers who download database files cannot also modify access logs. When SoD rules break down, risk accumulates. Similarly, AI agents often retain access to services they do not strictly need, creating unnecessary exposure if the agent itself is compromised.
Existing identity and access management tools were not designed to work together, and vendors have simply added more disconnected products rather than solving the underlying coordination problem. Morag said in a statement: “I’ve built several companies in this space, so I understand why identity has stayed broken for so long. The tools were never built to work as one, and adding more of them was never going to fix it.”
Oak’s platform automatically maps application accounts and AI agent permissions across a corporate network, identifies risky access patterns, and surfaces them in a natural-language interface similar to ChatGPT. Administrators can query the platform in plain English to understand why a gap exists and request fixes.
Platform Capabilities and Automation
Oak collects telemetry through prepackaged connectors to popular enterprise software. The company claims that what normally takes months of manual integration work can be completed in days. For systems without standard application programming interfaces, Oak’s technology can still extract access data, reducing blind spots in legacy environments.
The platform can automatically remediate some issues. Before applying a fix, it generates a step-by-step remediation plan and requires administrator approval, balancing speed with control. This approval workflow addresses a key concern in security automation: the need for human oversight before changes are deployed.
Oak’s natural-language interface allows security teams to ask contextual questions about specific incidents and request remediation suggestions without requiring deep technical knowledge of each application’s permission model. This design choice reflects a broader industry shift toward lowering friction in security operations, where alert fatigue and tool complexity often leave gaps unfixed.
Market Timing and Capital Deployment
The funding round arrives as enterprises face mounting pressure to prove they can audit and control access across their technology estates. Regulatory requirements around data protection, insider threat prevention, and AI governance have intensified scrutiny of access management practices. The timing also reflects investor confidence that identity and access management remains a durable security category.
Oak will use the capital to expand its engineering team and accelerate product development. The company faces established competition from legacy identity providers and newer entrants, but the specific focus on AI agent access and automated mapping represents a narrower market niche than broad identity and access management platforms.
Whether Oak can sustain its product differentiation and migrate customers away from incumbent tools at scale remains to be tested. The identity and access management market is crowded, and enterprises are typically cautious about consolidating security functions. Morag’s track record of three successful exits suggests execution credibility, but each of his prior ventures benefited from either broader market adoption cycles or larger acquirer integration opportunities.
Enterprise Adoption Challenges Ahead
Oak’s core value proposition depends on seamless data collection from diverse enterprise systems. While prepackaged connectors reduce implementation time, each customer environment is unique, and custom integrations may still be required. If setup costs and timelines remain high relative to Oak’s claims, adoption friction could limit growth.
The platform’s effectiveness also hinges on the quality of its access risk detection algorithms. False positives could flood administrators with low-priority alerts, undermining trust. Conversely, missed risks could expose the company to liability if customers experience breaches involving undetected access violations.
Morag’s prior successful exits suggest the team understands how to build products that solve real problems at scale. Oak’s focus on AI agent access also positions it to benefit from rapid growth in enterprise AI adoption, where visibility and control mechanisms are still immature. The $60 million seed round provides meaningful runway to prove product-market fit before the next funding milestone.
Michael Peres is a Columnist at Grit Daily, founder, and software engineer best known for founding various tech and media startups.



