Market consolidation accelerates: The $740 million price reflects broader consolidation as cybersecurity vendors race to expand identity capabilities. The deal marks the latest in a wave of identity security acquisitions as platform vendors expand beyond core products. Liu compared the move to Palo Alto Networks’ acquisition of CyberArk in 2025, noting both vendors are racing to combine detection and enforcement into a single platform.”Identity has become the center of gravity in cybersecurity,” said John Paul Cunningham, CISO at Silverfort. “We’re seeing clear segmentation emerge: pure identity security players, hybrid vendors trying to bolt identity into existing products, and large platform companies like Palo Alto Networks and now CrowdStrike expanding as part of broader security ecosystems.”The identity security market is expected to grow from approximately $29 billion in 2025 to $56 billion by 2029, according to IDC data cited by CrowdStrike. The $740 million price follows Okta’s $6.5 billion purchase of Auth0 in 2021 and Thoma Bravo’s $2.3 billion take-private of ForgeRock in 2023.SGNL was founded by former Google employees and raised approximately $75 million from Costanoa Ventures and CRV before the acquisition.
Enterprise adoption questions: Whether continuous authorization becomes standard practice depends partly on how rapidly non-human identities proliferate. “The urgency is real, but uneven across enterprises,” Chauhan said. “In client conversations, we increasingly see interest in adaptive and continuous authorization, especially in regulated industries, digital-native enterprises, and organizations with high levels of third-party or machine identity access.”Most enterprises are not replacing traditional IAM. “Instead, they are layering real-time controls on top of existing IAM to address gaps around insider risk, session-level anomalies, and post-authentication compromise,” Chauhan said.The practical challenge is defining policies that adapt to dynamic conditions. Unlike role-based access control, continuous authorization requires organizations to establish baseline behavior patterns and acceptable risk thresholds.Integration details remain unclear. CrowdStrike has not disclosed when SGNL capabilities will be available to Falcon customers, whether they require additional licensing, or what changes to existing IAM configurations may be necessary.The acquisition is part of CrowdStrike’s platform expansion spree following the July 2024 software update incident that caused widespread Windows system outages. The company reported fiscal third-quarter annual recurring revenue of $4 billion in December, up 25% year-over-year. “This should primarily be viewed as long-term platform expansion rather than a short-term recovery signal,” Chauhan said. “CrowdStrike has been steadily positioning itself as a broader cybersecurity platform for several years. The acquisition reinforces that trajectory and helps reduce overreliance on endpoint security alone.”
First seen on csoonline.com
Jump to article: www.csoonline.com/article/4114957/crowdstrike-to-acquire-sgnl-for-740m-expanding-real-time-identity-security.html
