Offroad raises $7M to automate identity security
Offroad launched on June 4, 2026 with $7 million in seed funding, led by Ibex Investors and Skywell Capital Partners, according to VentureBeat. The startup, founded in September 2025 and based in New York and Tel Aviv, builds what its press materials describe as an "agentic identity security team" that uses AI agents to gather cross-system context, investigate access posture and runtime issues, and either remediate risks autonomously or route high-impact changes to humans (VentureBeat; SiliconANGLE). As part of the launch, Offroad published ohauth.ai and said it audited 2,890 public OAuth apps across the Google Workspace and GitHub marketplaces, finding roughly one in three, representing more than 1.85 billion installations, with serious structural security concerns (SiliconANGLE). "Identity is no longer just a workforce access problem," said co-founder and CEO Dan Bendler (SiliconANGLE).
What happened
Per VentureBeat's press release, Offroad emerged from stealth on June 4, 2026 with $7 million in seed funding led by Ibex Investors and Skywell Capital Partners. According to SiliconANGLE, the company was founded in September 2025 and is based in New York and Tel Aviv. Both the press release and reporting describe Offroad's product as an agent-driven system that aggregates context from identity providers, HR systems, SaaS apps, cloud platforms, logs and tickets to investigate identity posture and remediate access risks.
Technical details
SiliconANGLE and the VentureBeat press release state that Offroad's agents are designed to either take direct action where safe or escalate high-impact changes with contextual evidence. The company also released ohauth.ai, described as a free OAuth security catalog, and published an audit of 2,890 public OAuth applications across the Google Workspace Marketplace and GitHub Marketplace; SiliconANGLE reports that roughly one in three of those apps, representing more than 1.85 billion installations, showed serious structural security concerns.
Editorial analysis
Industry context: Companies in identity and access management are increasingly packaging automation and orchestration around detection to reduce manual triage. Observed patterns in comparable deployments show operators prioritize cross-source context enrichment and automated remediation playbooks to reduce mean-time-to-remediate for high-volume, low-signal identity alerts.
Context and significance
For practitioners: Identity risk now spans human users, machine identities, API keys and agent-driven workflows, which raises scale and ownership challenges across tooling and governance. Reporting on Offroad frames the startup as addressing that operational gap with agentic automation; the underlying evidence release (ohauth.ai and the OAuth audit) provides a tangible data point practitioners can inspect for OAuth governance risk.
What to watch
Industry observers will likely track adoption signals such as enterprise integrations with major identity providers, support for machine identity inventories, and the maturity of safe-action heuristics versus false-positive remediation. Also watch whether the dataset behind ohauth.ai is expanded, and whether independent audits validate the company's OAuth findings.
"Identity is no longer just a workforce access problem," said co-founder and CEO Dan Bendler (SiliconANGLE).
Scoring Rationale
This is a notable early-stage launch addressing a practical scaling problem for security teams. The story is relevant to practitioners working on IAM and automation, but it is not a platform-level or model-level milestone.
Practice interview problems based on real data
1,500+ SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems
