XOOMAR
Futuristic identity security hub connecting human users and AI agents through protected access layers.
CybersecurityJuly 15, 2026· 6 min read· By XOOMAR Insights Team

$60M Seed Bets Oak Identity Management Can Tame AI Agents

Share
Updated on July 15, 2026

Can Oak identity management, a startup emerging from stealth with $60 million in seed funding, solve the access-control problem that AI agents are making harder for enterprises?

XOOMAR Intelligence

Analyst Take

59/ 100
Moderate
3 sources analyzedLow confidenceTrend10Freshness100Source Trust90Factual Grounding92Signal Cluster20

The Israeli identity management company Oak is going public with its product generally available and already deployed by enterprise clients, according to TechCrunch. Oak did not name those clients, but said it raised the seed round late last year.

Can Oak identity management turn $60 million into a new control layer for AI-era access?

Oak’s pitch is blunt: identity tools built for earlier enterprise computing cycles are not enough when humans now work alongside machines and AI agents in digital environments.

The company was co-founded by Shai Morag, a serial cybersecurity entrepreneur, and Tal Marom, Oak’s chief product officer. Oak says it has built a unified control plane for identity across an organization, positioning the product as an AI-native alternative to older identity and access management tools.

The funding is unusually large for a seed-stage company by local standards, Morag told TechCrunch. The round was co-led by Accel, CRV, and Greylock Partners, with participation from AlphaDrive Ventures, Hetz Ventures, and angel investors.

“Our vision is to be born as a giant,” Morag told TechCrunch.

The size of the round matters because Oak is not selling a narrow admin tool. It is trying to sit in the middle of enterprise access decisions at a time when companies are adding more non-human digital actors to their systems.

That creates a high bar. Identity products are sticky. Oak has to convince security teams that the AI-agent problem is not just another feature request for existing IAM vendors, but a reason to adopt a new platform.

For readers tracking the adjacent enterprise security pressure around agentic systems, XOOMAR’s earlier coverage of AI Agents Trip Alarms in Enterprise AI Security Rush offers useful context. Oak’s launch sits inside that same practical anxiety: who, or what, gets access, and how fast can that access be removed?


Why did Oak build around real-time permission removal instead of periodic reviews?

Oak says it spent months speaking with 100 CISOs and IAM leaders before building its product. The result, according to TechCrunch, is an AI connector framework that maps access to actual app usage and removes permissions that are no longer needed in real time.

That is the clearest product claim in the launch. Oak is not only saying enterprises have too many stale credentials. It is saying the review cycle itself is wrong.

“Right now, the whole process is too manual, and it’s operations-based, not risk-based — for instance, there’s no trigger when an employee logs in from an unusual location,” Morag said.

The company’s framing is that outdated credentials and weak identity access management remain common security vulnerabilities, and that AI is expected to make those gaps easier for attackers to exploit. Oak’s bet is that identity controls need to react to usage and risk signals, not just periodic checklists.

Here is the product contrast Oak is drawing from the available details:

Area Legacy-style process described by Oak Oak’s stated approach
Access review Periodic and manual Real-time removal of permissions no longer needed
Decision basis Operations-based Risk-based
Signal use No trigger in Morag’s example for unusual location login Maps access to actual app usage
Platform claim Fragmented legacy tools Unified identity control plane

The word identity can mean very different things in news coverage. This story is about enterprise access control, not the political or social identity fight XOOMAR covered in Barnaby Joyce Ignites Christian Nation Identity Fight. Oak’s focus is narrower, but for companies, the consequences are operational and immediate.

Does Shai Morag’s track record explain the size of Oak’s seed round?

Morag’s résumé is central to the financing story. He is a former army major with more than two decades in cybersecurity and three exits, including the 2018 sale of Secdo to Palo Alto Networks.

His most recent company before Oak was Ermetic, a cloud identity and security startup acquired by Tenable for $265 million in 2023. Morag stayed on as CPO after that deal.

TechCrunch reports that after Tenable CEO Amit Yoran became ill and passed away, Morag left and told his wife he would retire. Instead, he co-founded Oak with Marom, whom he met at Tenable. Marom had previously held product roles at Salesforce and in the Israeli military.

Oak has already built a team of 50 people while in stealth. Morag said the company is actively hiring, especially in the U.S., where a majority of Oak’s staff will soon be based.

Accel partner Andrei Brasoveanu said Accel had led Ermetic’s Series A when that company was pre-revenue. After Tenable acquired Ermetic, Accel gave Morag an informal standing offer to back whatever he built next, Brasoveanu said.

“I knew he had it in him to build another company, but this time even bigger and even better.”

That explains part of the round. Oak is selling into a complex category where buyer trust matters, and investors are clearly underwriting the founder as much as the first product.

Which questions will enterprise buyers still need answered?

Oak has disclosed the funding, the product thesis, the investor list, the team size, and the fact that enterprise clients are already using the product. It has not disclosed client names.

That matters. In identity management, the proof is not only whether a product can map permissions. The proof is whether large organizations trust it inside sensitive access flows, and whether it can work across messy real-world environments.

The next set of details to watch is concrete:

  • Customers: Which enterprises are willing to be named?
  • Integrations: Which major cloud and SaaS platforms does Oak support at launch?
  • Enforcement: How does Oak act when access should be removed?
  • Competition: How fast do incumbent identity and cloud security vendors respond?
  • Scale: Can Oak hire quickly enough while maintaining enterprise-grade execution?

Both Morag and Brasoveanu told TechCrunch they expect plenty of competitors to use AI as a catalyst in identity management, especially in a market where vendor lock-in runs deep. That makes speed part of Oak’s strategy, not just a growth preference.

Morag’s own framing is more absolute.

“I will go big or go home.”

The practical watch item is whether Oak identity management can turn that ambition into named customers, repeatable deployments, and evidence that AI-native access control is a separate platform category rather than a feature incumbents can absorb. If AI agents become routine enterprise actors, the winning identity layer will have to govern machines with the same seriousness companies once reserved for employees.

The Bottom Line

  • AI agents are expanding the number of digital identities enterprises must manage and secure.
  • Oak’s $60 million seed round signals strong investor belief that identity management needs a new AI-era layer.
  • The startup faces a tough challenge because existing IAM systems are deeply embedded in enterprise security stacks.

Oak vs. legacy identity tools

OakLegacy identity tools
Built as an AI-native unified control plane for enterprise identityDesigned for earlier enterprise computing cycles
Targets access control across humans, machines, and AI agentsPrimarily built around traditional human and application access patterns
Must persuade security teams to adopt a new platformAlready sticky and embedded in enterprise security workflows

Oak seed funding

Seed round
$M60
XOOMAR

Written by

XOOMAR Insights Team

Research and Editorial Desk

The XOOMAR Insights Team pairs automated research with human editorial judgment. We track hundreds of sources across technology, fintech, trading, SaaS, and cybersecurity, cross-check the facts, and explain what happened, why it matters, and what to watch next. We do not just rewrite headlines. Every article is fact-checked and scored for reliability before it goes live, and we link back to the original sources so you can verify anything yourself.

Related Articles

Futuristic identity security hub protecting humans, machines and AI agents with shields and data streams.Cybersecurity

$66M Bet Throws NewCore Into AI Identity Security Fight

NewCore exits stealth with $66M to secure human, machine and AI agent identities from one enterprise control plane.

Jun 21, 20266 min
Rogue AI agent node threatens an enterprise network protected by digital shields and security monitoring.Cybersecurity

AI Agents Trip Alarms in Enterprise AI Security Rush

DigiCert says 78% of AI-using enterprises saw an incident or vulnerability, mostly from rogue or misconfigured AI agents.

Jul 11, 20267 min
AI workflow security breach exposing private repository data through a malicious issueCybersecurity

GitLost Turns GitHub Agentic Workflows Against Private Repos

GitLost shows one malicious public GitHub Issue can hijack AI workflows and reach private repo data without stolen credentials.

Jul 10, 20267 min
AI agent workstation with shielded data defenses blocking a code execution breachCybersecurity

AutoJack Turns AutoGen Studio Flaw Into Code Execution Risk

Microsoft patched the AutoGen Studio flaw before PyPI release, but AutoJack exposes a dangerous trust gap in local AI agents.

Jun 22, 20267 min
Generic TV boxes linked as proxy nodes with shields and locks in a dark cybersecurity sceneCybersecurity

Popa Botnet Pulls Alarum Into Android TV Proxy Scandal

Researchers say Popa turned cheap Android TV boxes into proxy relays linked to Alarum's NetNut, putting consent and investor risk in focus.

Jun 20, 202611 min
Engineer watches files vanish beside a flickering database under an ominous AI network.Technology

File Deletion Claims Drag OpenAI GPT-5.6 Sol Into Crisis

Users claim GPT-5.6 Sol wiped files and a production database, turning OpenAI's agent ambitions into a trust crisis.

Jul 14, 20268 min
Indian AI startup workspace with holographic unicorn and abstract coding screens.Technology

$130M Round Crowns Emergent AI Coding Startup Unicorn

Emergent raised $130M at a $1.5B valuation after hitting $120M in annualized revenue and 200,000 paying customers.

Jul 15, 20266 min
Giant Halloween skeleton in a futuristic smart-home tech hub with glowing app controls and circuits.Technology

A Talking Home Depot Skelly Raises $379 Halloween Stakes

Home Depot's 2026 Skelly talks through an app, turning a $379 Halloween prop into a gadget-style refresh.

Jul 15, 20268 min
Repurposed factory interior with glowing fusion reactor and scientists in a futuristic research hubTechnology

Old Hot Dog Plant Lands Realta Fusion's $55M Reactor Bet

Realta Fusion will turn Madison's old Oscar Mayer plant into Forge, a fusion R&D hub backed by up to $55M in incentives.

Jul 15, 20267 min
Forex trading desk with bullish market charts and New Zealand–US currency theme in cinematic lighting.Trading

Fed Scare Cracks as NZD/USD Price Forecast Holds 0.5820

NZD/USD is holding near 0.5820 as Fed hike odds fall, but US PPI and a firmer dollar could decide the next breakout.

Jul 15, 20266 min

Don't miss the signal

Get our weekly roundup of the stories that matter across tech, fintech, and trading. No noise, just signal.

Free forever. No spam. Unsubscribe anytime.