Identity management is one of the most common fulcrums around which security breaches have pivoted in the last several years. One of the main reasons it has become the gift that keeps on giving to malicious hackers is that it’s a nightmare for organizations to track.
A security startup founded in Tel Aviv called Linx has been quietly building technology using AI and analytics to address this, and today, on the back of picking up customers in stealth mode, it’s coming out into the open with $33 million in funding to take on the challenge of identity management more aggressively.
Linx’s funding is being announced in a single sum, but more specifically, it’s coming in two tranches that speak to its momentum while in stealth. The latest is a $27 million round co-led by Index Ventures and Cyberstarts, and before that, Linx raised $6 million in a round led by Cyberstarts.
Other investors in Linx speak to the founders’ reputation in the Israeli security community: they include Mickey Boodaei (Imperva, Trusteer, Transmit), Rakesh Loonkar (Trusteer, Transmit) and Assaf Rappaport and Yinon Costica (Wiz, Adallom). Other investors in the round are Cerca Partners and Knollwood Investment Advisory.
Linx Security has been around for just over a year, but it has an interesting backstory. The two co-founders, Israel Duanis (CEO) and Niv Goldenberg (CPO), originally met and became friends when they were enlisted together in the army in the 8200 cyber unit. They were not the only ones in that particular cohort: Assaf Rappaport and the other Wiz founders were also in that group.
Both founders went on to work for cybersecurity companies: Duanis with Checkpoint Software, and Goldenberg with Adallom, Microsoft and Transmit. Duanis also later ranged away from the space, founding, running and eventually selling (to Via) an automotive fleet management tech company called Fleetonomy. Yet, Duanis still felt like there was something in security that he needed to do.
“When I looked at the past 20 years, I felt like ID has always been overlooked,” he said in an interview. At Checkpoint, he recalled, access management and permissions were essentially IT issues, not security, “but so many attacks now are ID-driven.” A quick look at some of the most high-profile breaches of the last several years — Equifax, T-Mobile and Snowflake, to name just a few — underscores how identity, specifically ungoverned credentials, could be exploited by malicious hackers. “These were all credentials issues,” said Duanis.
The founders’ bet was that a platform that could understand and fix this from the perspectives of compliance, security and efficiency “could create a real impact,” he said.
“Today, identity is the new perimeter, and so you need to address that.”
Ultimately, the Rappaport Rapport (heh) was pretty strong. When Duanis told Assaf he was thinking about forming a startup to focus on ID management, Assaf introduced him to Gili Raanan at Cyberstarts — kind of a kingmaker in Israeli cybersecurity. The seed deal was done within 24 hours and Linx Security was born.
Linx is not disclosing who its customers are, nor much detail about how it works, but the basic idea goes a little something like this:
Organizations typically use or have used hundreds, if not thousands, of different apps and software. Each will require user authentication, but when an app is no longer used regularly, or when workers come and go, a business might not comprehensively eliminate all of the identity information in sync with those changes.
Over time, an organization can accrue a stockpile of so-called “ungoverned identity information,” and that soon becomes a big liability: All that valuable information is sitting there, ignored, until a malicious actor picks something up and uses it to access the whole system.
Linx’s approach is to use analytics and AI to scan and understand the landscape of an organization’s system to link (hence the name) all identities together and to actual, active employees. In the process, it also finds IDs that are no longer connected to active users so that they can be removed.
The resulting data then yields a map that can be used to track the system over time. So when an ID is picked up and used unexpectedly, the company will know about it.
Although AI has quickly become a hackneyed term in tech, Duanis said that Linx’s use of it is very targeted. “AI is overused as a term,” he admitted, “but I think that once you’re able to take the essence of [a network] and run [algorithms] very quickly on the development side, and use that power to provide suggestions and automations, that has created a real impact. It’s created a place for real change in the way that people manage today.” He said that work that could have taken months to weed out ungoverned identities can now be done “in hours.”
Raanan at Cyberstarts made the deal to back Linx quickly because of how he could see the market evolving.
“Identity is the top threat vector for the modern enterprise,” he said in a statement. “Identity teams under the CISO are struggling to cope with a growing number of tasks and suffer from antiquated legacy solutions.”