Cybersecurity startup Oasis Security raises $120M from Craft, Sequoia, Accel to tackle AI identity risks

Less than two years after coming out of stealth, Oasis Security is pulling in another massive round—this time as AI agents quietly reshape the rules of cybersecurity.

The New York– and Tel Aviv–based cybersecurity startup has raised $120 million in new funding led by Craft Ventures, with participation from Sequoia Capital, Accel, and Cyberstarts. The company declined to share its valuation, though the latest raise brings total funding to $190 million.

Bloomberg confirmed the round, reporting, “Startup Oasis Security Raises $120 Million From Craft, Sequoia Oasis Security, a cybersecurity startup that helps companies manage access to their systems from non-human accounts such as artificial intelligence agents, has raised $120 million from investors including Sequoia Capital and Accel.”

The timing says everything. Enterprises are racing to deploy autonomous AI agents across their systems, and those agents come with identities—credentials, tokens, and access pathways that look a lot like human accounts but behave very differently. The result is a surge in what security teams now call non-human identities, or NHIs, and they’re quickly outnumbering people inside large organizations.

That shift has opened a gap. Traditional identity tools were built for employees logging in, not fleets of autonomous systems making decisions and calling APIs around the clock. Oasis is betting that the gap becomes one of the biggest security problems of the AI era.

Its platform focuses on discovery and control. It scans environments across cloud, SaaS, and on-prem systems to map every non-human identity, assess risk, and enforce policies. The company says its agentless Discovery Engine connects with more than 30 identity systems in minutes, giving security teams visibility without interrupting developers or operations.

“Oasis Security helps companies manage access to their systems from non-human accounts such as artificial intelligence agents,” Bloomberg noted in its exclusive report on the round.

From stealth to enterprise traction

Oasis Security was founded in 2022 by Danny Brickman and Amit Zimerman, both veterans of Israeli Defense Forces cyber units. The company emerged from stealth in January 2024 with $40 million in funding, including a $35 million Series A led by Sequoia Capital. A few months later, it added a $35 million extension backed by Accel, Cyberstarts, and Sequoia, bringing total funding to roughly $75 million at the time.

Since then, the company has focused on one problem: securing identities that don’t belong to people. Service accounts, API keys, tokens, and now AI agents have become core to how modern software runs. They’re everywhere, often over-permissioned, and frequently overlooked.

Oasis’s platform tracks these identities, flags risky behavior, and offers automated fixes. That approach has gained traction with large enterprises, including customers in finance and other regulated sectors where access control is tightly scrutinized.

Securing the AI agent wave

The company’s focus has tracked closely with the rise of AI agents. In November 2025, Oasis introduced its Agentic Access Management framework, developed in collaboration with Sequoia Capital and a group of CISOs. The framework outlines a governance model for securing machine-to-machine access and AI-driven systems, along with a maturity assessment tool to help organizations gauge their exposure.

At the same time, Oasis rolled out its Agentic Access Management product, built for real-time policy enforcement and full audit trails across AI agents in operation.

Sequoia partner Bogomil Balkansky framed the shift early: “Identity is the new perimeter, and non-human identity is the gaping hole in that perimeter.”

Internal data cited by the company suggests many organizations are still unprepared. One survey found 79% of IT professionals feel ill-equipped to handle attacks tied to non-human identities, even as adoption of AI agents continues to climb.

A growing category with rising stakes

The market around identity security is moving quickly as companies push deeper into cloud infrastructure and automation. Non-human identities now account for the majority of identities in many environments, and breaches involving compromised machine credentials have put the issue front and center for security leaders.

Oasis is entering a crowded space that includes players like Astrix Security, though its early focus on AI-driven systems and strong backing from top-tier investors have helped it stand out.

The new funding is expected to support product development, hiring, and go-to-market efforts, including partnerships such as the company’s recent work with GuidePoint Security. Oasis is continuing to scale across its New York and Tel Aviv teams as demand grows.

For now, the company is staying quiet on details beyond the raise. It has not issued a full press release, in line with Bloomberg’s report being the first to break the news. More information on how the capital will be deployed is expected in the coming weeks.

What’s clear is the direction of travel. As AI agents multiply inside enterprises, the number of identities to secure is exploding—and most of them no longer belong to humans.