Sunnyvale, Calif.—WideField Security, a platform offering visibility and protection across the entire identity lifecycle, announced it has secured $11.3 million in Series A funding. The round was led by Crosspoint Capital, with participation from existing investor Engineering Capital and other undisclosed investors. The capital is designated to accelerate product development and expand go-to-market strategies as enterprises face an increasing number of identity-related breaches.

Identity compromise continues to be a primary cause of data breaches, affecting both human and machine identities. Despite ongoing investments in cybersecurity, organizations frequently experience incidents such as the recent Salesloft Drift breach, where stolen OAuth tokens provided unauthorized access to data within Salesforce, Google Workspace, and Microsoft environments. This incident highlights the need for identity security that extends beyond initial authentication.

Abhay Kulkarni, Co-founder and CEO of WideField Security, stated, “Identity compromise is the root cause of too many breaches. This funding enables us to accelerate our mission to reduce data breaches stemming from identity compromises. We’re grateful for the support of our investors as we make identity security comprehensive and effective.” Zach Siverston, Managing Director at Crosspoint Capital, will join WideField’s board of directors.

Siverston added, “Most identity security solutions stop at authentication, leaving enterprises vulnerable to post-authentication threats like session hijacking and token theft. WideField’s comprehensive approach to securing the full identity lifecycle closes the post-authentication gap that’s responsible for many of today’s most damaging breaches. We are proud to back the WideField team.”

Founded in 2023 by Abhay Kulkarni (formerly VP of Engineering at Netskope) and Kartik Kumar (founding architect at Netskope), WideField Security addresses a gap where many organizations monitor authentication but leave post-authentication sessions unmonitored, creating vulnerabilities. The WideField platform provides visibility into the complete identity attack surface, encompassing human, machine, and AI identities across cloud, SaaS, and on-premises environments.

The technology employs AI to analyze identity attributes, privileges, and relationships to identify exploitable risks. It also ensures consistent application of authentication policies and multi-factor authentication, and detects post-authentication threats such as session hijacking and third-party token theft. The company’s methodology is designed to provide comprehensive visibility across all identities simultaneously and throughout their entire lifecycle—at rest, in motion, and in use.

John McLeod, CISO at NOV, commented on the platform’s utility, saying, “Like many enterprises, we had good authentication controls in place, but limited visibility into what happened after users and services authenticated. WideField immediately put eyes on our entire identity attack surface, including the machine identities. It’s rare to deploy a security tool and immediately see value. WideField delivered from day one.”

WideField Security aims to help organizations improve their identity posture and detect both external and insider threats. The company is currently recruiting across its product, sales, and marketing departments.