Cybersecurity, Identity & Access Management (IAM)
Main Offerings:
Feature Breakdown: Policy-as-Code (OPA, Cedar, OpenFGA support), No-Code Policy Editor, Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), Relationship-Based Access Control (ReBAC), Audit Logs, User Management UI, Approval Flows, GitOps Integration, Infrastructure-as-Code (Terraform, OpenTofu), AI Access Control with Four-Perimeter Framework (Prompt Filtering, RAG Data Protection, External Access Security, Response Enforcement), MCP (Model Context Protocol) Integration, LangChain Integration, Real-time Policy Enforcement (Departments: IT, Security, DevOps, SRE, Product Engineering, Compliance)
Business Industry Gearing: Enterprise SaaS, FinTech, Healthcare, Cloud-Native Applications, Microservices Architectures
Certifications: Follows SOC 2 best practices; formal certification status not publicly confirmed, ISO 27001 compliance practices; GDPR compliant
Vendors/Tools: Cloudflare (CDN), nginx (web server), SurrealDB (database for authorization decisions)
Risk Profile:
Aggregated Reviews: Limited public reviews on G2/Capterra; generally positive feedback from available sources
Adoption Insights:
Metrics: Not publicly available
Barriers: Pricing model for high-growth teams, performance considerations for extreme scale, learning curve for advanced policy configurations
Revenue Model: SaaS subscription with tiered pricing (Free, Startup, Pro, Enterprise), usage-based billing, add-ons for premium features, professional services/consulting
Pricing: Free tier (basic features, limited usage), Startup tier ($150/month for up to 10,000 users), Pro tier (higher limits, advanced features), Enterprise tier (custom pricing, unlimited usage, premium support) (Sources: Permit.io pricing page, recent pricing model announcement (2024))
Market Context:
| Name | Description | X Account | |
|---|---|---|---|
| Or Weis | Co-Founder & CEO - Serial entrepreneur with background in cybersecurity and developer tools; previously co-founder and CEO of Rookout (acquired by Dynatrace); experienced in building solutions for developer pain points | https://www.linkedin.com/in/orweis | https://twitter.com/orweis |
| Asaf Cohen | Co-Founder & CTO - Former Software Engineer at Facebook (2017-2020) working on developer tools and infrastructure; Principal Software Engineer at Claroty; served in Israel's elite cyber unit 81; Master's degree in Computer Science from Bar-Ilan University with cryptography research | https://www.linkedin.com/in/raz-cohen | |
| Gabriel Manor-Liechtman | VP of Developer Relations - Leads developer advocacy and technical community engagement; focuses on AI identity security and fine-grained authorization; active speaker at industry conferences | https://www.linkedin.com/in/gemanor |
Key Metrics Update:
News/Trends:
Target Market: Enterprise organizations, SaaS companies, FinTech, Healthcare, cloud-native businesses requiring scalable, secure access control
Target Users & Personas: Developers, IT security teams, DevOps/SRE engineers, infrastructure teams, product managers, compliance officers
User Experience Level: Intermediate to Advanced; supports both low-code (non-technical) and code-based (technical) users
Key Use Cases:
Measurable Outcomes:
Fit Assessment: Excellent fit for IT teams managing identity and access management in cloud-native, microservices-based environments; strong alignment with organizations prioritizing developer productivity and security compliance
Custom Rec Flags: