Oasis is the market leading platform for non-human identity management. Our mission is to fortify cybersecurity defenses by enabling enterprises to efficiently secure non-human identities throughout their lifecycle. The shift to hybrid multi-cloud, microservices, agile development and AI-driven business process automation has led to the exponential growth of non-human identities, completely changing the identity fabric of enterprise environments. We created the first enterprise platform purpose-built to address the security and operational challenges of Non-human Identities. Our platform empowers security, engineering and developers teams to improve security posture, implement stronger governance and simplify compliance by taking control of the non-human identity lifecycle without risking system resilience and without operational complexity.
External link for Oasis Security
Oasis NHI Security Cloud is the leading enterprise cloud service for managing and securing NHIs. Oasis is the first integrated solution purpose-built to address the unique challenges of visibility, security, and governance of NHIs across the hybrid cloud. In a single integrated platform, Oasis NHI Security Cloud combines advanced capabilities in NHI discovery, risk assessment, threat detection, rapid remediation, policy-based lifecycle orchestration, and compliance management. Oasis provides the first-of-its-kind solution that accomplishes it thanks to the following unique characteristics: NHI Discovery Engine, Context Reconstruction Engine, Ownership Discovery, and policy-driven orchestration, Oasis enables organizations to secure, manage, and operationalize NHI security at scale—without disrupting existing workflows or introducing third-party risk.
New York, New York, US
Oasis Security reposted this
𝐁𝐥𝐚𝐜𝐤 𝐅𝐫𝐢𝐝𝐚𝐲, 𝐛𝐮𝐭 𝐦𝐚𝐤𝐞 𝐢𝐭 𝐚𝐠𝐞𝐧𝐭𝐢𝐜 The AAM Capsule Collection by Oasis Security just dropped 🎤 A limited release of travel-ready essentials for the identity and security leaders powering the agentic era 😎 Built for long days, long flights, and the kind of work that demands both stamina AND style. Available now… until it’s not. https://lnkd.in/d7xSVhtS #AgenticAccess #AgenticAccessManagement #AAM
🚨𝗚𝗮𝗶𝗻𝘀𝗶𝗴𝗵𝘁 × 𝗦𝗮𝗹𝗲𝘀𝗳𝗼𝗿𝗰𝗲 𝗢𝗔𝘂𝘁𝗵 𝗶𝗻𝗰𝗶𝗱𝗲𝗻𝘁 - 𝘄𝗵𝗮𝘁 𝗵𝗮𝗽𝗽𝗲𝗻𝗲𝗱 & 𝘄𝗵𝗮𝘁 𝘁𝗼 𝗱𝗼 𝗻𝗼𝘄 🚨 If your CS / RevOps org uses Gainsight connected to Salesforce, 𝗿𝗲𝘃𝗶𝗲𝘄 𝘆𝗼𝘂𝗿 𝗢𝗔𝘂𝘁𝗵 𝗮𝗰𝗰𝗲𝘀𝘀 𝘁𝗼𝗱𝗮𝘆. 𝗧𝗟;𝗗𝗥: stolen Gainsight creds were used to access Salesforce OAuth refresh tokens. Refresh tokens are long-lived → bigger blast radius than access tokens. 𝗪𝗵𝘆 𝘁𝗵𝗶𝘀 𝗺𝗮𝘁𝘁𝗲𝗿𝘀: Gainsight ↔ Salesforce is a common CS stack link. It continuously syncs customer data and insights, so if refresh tokens leak, Salesforce data becomes reachable via that bridge. 𝗪𝗵𝗮𝘁 𝗵𝗮𝗽𝗽𝗲𝗻𝗲𝗱 • In September, Gainsight disclosed exposure linked to the broader “Salesloft Drift” credential-theft campaign. • Threat actors later said that foothold let them compromise Gainsight further and steal internal credentials. • Those credentials were then used to access OAuth refresh tokens tied to customer Salesforce integrations. 𝗪𝗵𝗮𝘁 𝘄𝗲 𝗸𝗻𝗼𝘄 𝘀𝗼 𝗳𝗮𝗿 • Nov 20: Gainsight reported Salesforce integration issues • Google suggested 200+ Salesforce instances may be impacted • Salesforce revoked active access + refresh tokens and notified affected customers • Salesforce published IoCs (IPs + user agents) for log review 𝗪𝗵𝗮𝘁 𝘆𝗼𝘂 𝘀𝗵𝗼𝘂𝗹𝗱 𝗱𝗼 𝗿𝗶𝗴𝗵𝘁 𝗻𝗼𝘄 ✅ 1. 𝗟𝗶𝗺𝗶𝘁 𝗿𝗲𝗳𝗿𝗲𝘀𝗵 𝘁𝗼𝗸𝗲𝗻𝘀 2. 𝗠𝗮𝗶𝗻𝘁𝗮𝗶𝗻 𝗮 𝗹𝗶𝘃𝗲 𝗶𝗻𝘃𝗲𝗻𝘁𝗼𝗿𝘆 𝗼𝗳 𝘃𝗲𝗻𝗱𝗼𝗿 𝗮𝗰𝗰𝗲𝘀𝘀 3. 𝗛𝘂𝗻𝘁 𝗦𝗮𝗹𝗲𝘀𝗳𝗼𝗿𝗰𝗲 𝗹𝗼𝗴𝘀 𝗳𝗼𝗿 𝗜𝗼𝗖𝘀 4. 𝗥𝗼𝘁𝗮𝘁𝗲 𝗶𝗻𝘁𝗲𝗴𝗿𝗮𝘁𝗶𝗼𝗻𝘀 + 𝗰𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹𝘀 𝗶𝗺𝗺𝗲𝗱𝗶𝗮𝘁𝗲𝗹𝘆 Security incidents like this aren’t just “vendor problems.” They’re a reminder that third-party OAuth access is part of your attack surface. 𝗖𝘂𝗿𝗶𝗼𝘂𝘀: do you already track refresh-token grants across SaaS vendors in real time, or is it still spreadsheet-based? #Salesforce #Security #OAuth #ThirdPartyRisk #CustomerSuccess #RevOps #Gainsight
Microsoft’s new Agent 365 and Entra Agent ID are reshaping how enterprises think about AI agent governance. In his latest post, our Director of Product Strategy & GTM, Adam O., unpacks what these announcements mean for visibility, control, and scaling agents across complex, hybrid environments. 📘 Read Adam’s breakdown: https://lnkd.in/gXPUg2fs #Agent365 #AgentID #MSIgnite #AI #AgenticAccess #AgenticAccessManagement #AAM
𝐀𝐠𝐞𝐧𝐭𝐬 𝐣𝐮𝐬𝐭 𝐛𝐞𝐜𝐚𝐦𝐞 𝐟𝐢𝐫𝐬𝐭-𝐜𝐥𝐚𝐬𝐬 𝐢𝐝𝐞𝐧𝐭𝐢𝐭𝐢𝐞𝐬. 𝐍𝐨𝐰 𝐭𝐡𝐞 𝐫𝐞𝐚𝐥 𝐰𝐨𝐫𝐤 𝐛𝐞𝐠𝐢𝐧𝐬: 𝐠𝐨𝐯𝐞𝐫𝐧𝐢𝐧𝐠 𝐰𝐡𝐚𝐭 𝐭𝐡𝐞𝐲 𝐜𝐚𝐧 𝐚𝐜𝐭𝐮𝐚𝐥𝐥𝐲 𝐝𝐨 𝐚𝐜𝐫𝐨𝐬𝐬 𝐲𝐨𝐮𝐫 𝐡𝐲𝐛𝐫𝐢𝐝 𝐞𝐬𝐭𝐚𝐭𝐞. Last week at Ignite was a blast. The hallway talk? Microsoft's new Agent 365 and Entra Agent ID, and what it means for agent management at scale. I wrote up my take on what they nail, where teams still need more, and how this plays out in hybrid environments - In short, Agent 365 is a great step in the right direction around seeing what exists, but it 𝘪𝘴𝘯’𝘵 𝘢 𝘤𝘰𝘮𝘱𝘭𝘦𝘵𝘦 𝘴𝘰𝘭𝘶𝘵𝘪𝘰𝘯. With Oasis Security, orgs can take it one step further toward governance, lifecycle management, and control of agentic access - across Microsoft and every other platform. 🔗 Read the blog in the comments to learn more. If you were at Ignite, or are actively rolling out agentic access controls, I’d really love to hear your thoughts! #AI #MSIgnite #Agent365 #AgentID #AgenticAccess
On December 3 at 1pm ET, Dave Bittner of CyberWire Daily sits down with Barak Shelef, Oasis Security Chief Architect, to unpack how Agentic Access Management (AAM™) brings precision, accountability, and real-time control to AI-driven workflows, without slowing teams down. If you’re exploring how to safely scale AI across the enterprise, this is a conversation you won’t want to miss. 🔗 Register here: https://lnkd.in/esa2bKbE #AI #Cybersecurity #AgenticAccessManagement #CyberRisk #N2K
Security teams should not have to choose between control and innovation. On December 3 at 1pm ET, Dave Bittner (#CyberWireDaily) sits down with Barak Shelef (Oasis Security) to explore how agentic access management gives teams measurable guardrails and accountability while maintaining speed and agility. Discover how this modern approach to identity security brings precision, transparency, and confidence to every AI-driven workflow. Register here: https://lnkd.in/esa2bKbE #AI #Cybersecurity #AccessManagement #CyberRisk #N2K
𝗜𝗻𝘁𝗿𝗼𝗱𝘂𝗰𝗶𝗻𝗴: 𝗢𝗮𝘀𝗶𝘀 𝗔𝗴𝗲𝗻𝘁𝗶𝗰 𝗔𝗰𝗰𝗲𝘀𝘀 𝗠𝗮𝗻𝗮𝗴𝗲𝗺𝗲𝗻𝘁 (𝗔𝗔𝗠™) 🎉 AI agents are now first-class actors in the enterprise, yet access models haven’t kept up. 𝗧𝗼𝗱𝗮𝘆, 𝗔𝗔𝗠™ 𝗰𝗵𝗮𝗻𝗴𝗲𝘀 𝘁𝗵𝗮𝘁. It brings intent-aware control, real-time policy decisions, and precise, time-bound access that adapts as fast as AI does. One unified layer. Clear rules. Accountable behavior. Enterprise speed. Identity security shouldn’t slow teams down, it should empower them. 𝗔𝗔𝗠 𝗶𝘀 𝘁𝗵𝗮𝘁 𝗻𝗲𝘄 𝗳𝗼𝘂𝗻𝗱𝗮𝘁𝗶𝗼𝗻. Dive in and watch your enterprise scale, safely 🚀 https://lnkd.in/dYem-NKb #AgenticAccess #IdentitySecurity #AgenticAI #AgenticAccessManagement #AAM #NonHumanIdentity
As organizations adopt agentic AI at scale, one challenge keeps coming up: 𝘃𝗶𝘀𝗶𝗯𝗶𝗹𝗶𝘁𝘆. Before you can govern or secure agents, you must understand what they are, what they can access, and who owns them. In Sharon Stone latest post, we break down: ✦ Why AI visibility is the foundation of governance ✦ How agents rely on complex webs of non-human identities ✦ The risks created by proliferation, over-permissioning, and unclear ownership ✦ How Oasis brings identity-first security to AI systems 👉 Read the full blog here: https://lnkd.in/dxfdsQK9 Want to see how this works across your tenant in minutes? Get a live demo: https://lnkd.in/dtYFFj9j #AIsecurity #AgenticAI #IdentitySecurity #Cybersecurity #AAM #OasisSecurity #AgenticAccessManagement
🚀 𝗘𝘅𝗰𝗶𝘁𝗲𝗱 𝘁𝗼 𝗯𝗲 𝗮𝘁 Identiverse 𝗶𝗻 𝗪𝗮𝘀𝗵𝗶𝗻𝗴𝘁𝗼𝗻 𝗗.𝗖. 𝘁𝗵𝗶𝘀 𝗡𝗼𝘃𝗲𝗺𝗯𝗲𝗿 𝟭𝟵–𝟮𝟬! Stop by booth #1 to to see how Oasis secure and govern non-human identities and agents. Meet Chris Gruel, Drew Sullivan, and Etzer Leveille Jr. and chat about what’s new in identity security. We’ll have quick demos, practical tips, and some fun swag. 👋 #Identiverse #OasisSecurity #Identity #Cybersecurity #WashingtonDC
🚀 𝗪𝗲’𝗿𝗲 𝘁𝗵𝗿𝗶𝗹𝗹𝗲𝗱 𝘁𝗼 𝘀𝗵𝗮𝗿𝗲 𝘁𝗵𝗮𝘁 𝗢𝗮𝘀𝗶𝘀 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗵𝗮𝘀 𝗯𝗲𝗲𝗻 𝗻𝗮𝗺𝗲𝗱 𝘁𝗼 𝘁𝗵𝗲 𝟮𝟬𝟮𝟱 𝗖𝗥𝗡® 𝗦𝘁𝗲𝗹𝗹𝗮𝗿 𝗦𝘁𝗮𝗿𝘁𝘂𝗽𝘀 𝗹𝗶𝘀𝘁! This recognition reflects our ongoing commitment to helping organizations and partners secure and govern non-human identities and AI agents across complex environments. As AI adoption accelerates, the identity landscape is evolving faster than ever. Oasis Security is proud to be leading this transformation, delivering innovation that enables enterprises to manage access, enforce governance, and build trust in the age of intelligent systems. We’re celebrating this milestone with our incredible team, partners, and customers, thank you for making this achievement possible. Learn more about the 2025 Stellar Startups here: https://lnkd.in/eRP6CpeA #CRNStellarStartups #Cybersecurity #MachineIdentity #OasisSecurity #Innovation #ChannelPartners
𝗪𝗲’𝗿𝗲 𝗵𝗶𝘁𝘁𝗶𝗻𝗴 𝘁𝗵𝗲 𝗿𝗼𝗮𝗱 𝗮𝗴𝗮𝗶𝗻! Oasis Security is excited to be at Microsoft Ignite, join us in San Francisco, Nov 18–21 at the Moscone Center. 🚀 Visit us at Booth #5220 to: See our agentic access management demo in action Pick up some exclusive Oasis swag Chat with our team about securing AI-native enterprises Can’t wait to connect, see you there!
IAM enforces verbs. Agents act on intent. 𝐀𝐠𝐞𝐧𝐭𝐢𝐜 𝐀𝐜𝐜𝐞𝐬𝐬 𝐌𝐚𝐧𝐚𝐠𝐚𝐦𝐞𝐧𝐭 (𝐀𝐀𝐌™) bridges that gap, turning agent decisions into secure, just-in-time sessions. 🔗 Learn more in our latest blog by Barak Shelef, Chief Architect at Oasis Security: https://lnkd.in/eE6XsXn2 #AgenticAccess #AgenticAccessManagement #IAM #AI #OasisSecurity #NonHumanIdentity