Governance & Risk Management,
Identity & Access Management,
Multi-factor & Risk-based Authentication
Just-in-Time, Database, Kubernetes Access Fuel Privileged Access Startup M&A
Okta has announced its intention to acquire Axiom Security, a startup specializing in privileged access management. This strategic move aims to enhance the company’s protection over databases, Kubernetes, and just-in-time access, further reinforcing Okta’s existing capabilities in identity security.
Based in San Francisco, Okta has identified Axiom’s expertise in database and Kubernetes connectivity, AI-driven connectors, and agile access provisioning as key assets that will align with its SaaS-first approach. Arnab Bose, Okta’s CPO, emphasized that the acquisition is designed to deliver quicker value and improve their current privileged access offerings.
Founded in 2021 and emerging from stealth mode in December 2022 with $7 million in seed funding, Axiom has roughly 20 employees. Its leader, Itay Mesika, previously oversaw network and security for a unit of the Israeli Air Force. This acquisition marks Okta’s first since its purchase of identity security firm Spera for $58 million in early 2024.
Enhancing Existing Privileged Access Management
Bose confirmed that Okta purposely avoided acquiring a legacy PAM solution that could pose integration challenges, opting instead for Axiom, which offers modular and scalable services. This alignment with Okta’s SaaS-first vision will help to seamlessly integrate Axiom’s capabilities into the existing privileged access framework.
While Okta excels in passwordless server access and secrets management, the integration of Axiom will address gaps related to dynamic environments like databases and containers. By enriching its offerings, Okta aims to secure all sensitive infrastructure, moving beyond merely managing server access and secrets.
Bose described the synergy between Axiom and Okta’s services, stating that Axiom will act as a complementary component within the Okta Privileged Access ecosystem. Traditional PAM systems often depend on static credentials, introducing risks through over-permissioned users, whereas Axiom’s design favors cloud control and a just-in-time access model.
Dynamic Access Control Through Axiom
Okta plans to leverage session risk analytics for real-time access adjustments. In cases where a developer’s account is compromised, integrations with EDR tools will enable immediate session and credential revocation before any potential harm can occur. Axiom’s infrastructure will facilitate the implementation of a robust zero trust model.
This just-in-time principle minimizes standing privileges, ensuring that access to critical services like Kubernetes containers and databases is tightly controlled and evaluated only as needed. The acquisition will fortify Okta’s move toward a more dynamic, intelligent, and automated identity security framework, enabling continuous monitoring of user sessions and risk conditions.
Bose noted that while an in-house solution could have brought integration benefits, it would require substantial resources and expose Okta to various development risks. Axiom already meets many of Okta’s technical prerequisites, displaying an advanced level of connectivity and robust modularity that supports rapid deployment of a comprehensive privileged access product.
