Skip to content
    Back to Security Operations (SecOps)
    Security Operations (SecOps)StartupSaaS Security

    Obsidian Security

    SaaS security platform detecting threats and misconfigurations across Okta, Salesforce, Microsoft 365, and 50+ enterprise SaaS applications

    Mkt Cap / ValPrivate
    RevenueEst. $30M ARR
    Growth+80% YoY
    Detects threats and misconfigurations across 50+ enterprise SaaS applications (Okta, Salesforce, M365), eliminating blind spots in shadow and managed SaaS.
    Analyst take · Competitive edge

    SWOT Analysis

    Strengths
    • Purpose-built for SaaS threat detection; more granular than generic SIEM approach
    • Pre-built integrations with top 50+ SaaS platforms reduce deployment friction
    • Captures SaaS-native attack surface (OAuth, misconfigured permissions, insider threats)
    Opportunities
    • Expand to security posture management and compliance automation across SaaS
    • Integrate with SOAR platforms to auto-remediate misconfigurations and accounts
    • M&A by cloud security or identity platform vendors seeking SaaS threat depth
    Weaknesses
    • Narrow scope—SaaS-specific; limited visibility into network, endpoint, or on-prem threats
    • Smaller vendor—less established incident response playbook library vs. incumbents
    • SaaS API rate limits and authentication complexity can delay threat visibility
    Threats
    • Okta, Salesforce, Microsoft adding native threat detection and logging features
    • Incumbent SIEM and XDR vendors launching SaaS threat modules in response

    User Sentiment

    Synthesized from G2, Gartner Peer Insights, and analyst review data.

    What users love
    • Detects SaaS-native threats (OAuth abuse, permission escalation) that SIEMs miss
    • Pre-built SaaS connectors reduce engineering overhead vs. custom SIEM rules
    • Consolidates multiple point SaaS tools into single visibility pane
    Common complaints
    • Limited ability to correlate SaaS threats with network/endpoint/identity context
    • Requires high API rate limits and careful credential management per SaaS tenant
    • Alert tuning for SaaS environments steeper than traditional endpoint-centric SIEM

    Customer Profile

    Who buys this

    Typical segments

    Mid-to-large enterprises with 100+ deployed SaaS applications and security-conscious cultureManaged security service providers (MSSPs) serving SaaS-first customers

    Typical buyer

    Security Operations Center (SOC) Manager or CISO's cloud security lead

    Top use cases
    1. 1Real-time detection of compromised user accounts and unauthorized data access across SaaS
    2. 2Configuration auditing and drift detection (exposed sharing, weak authentication policies)
    3. 3Insider risk and anomalous user behavior detection within SaaS platforms

    Future Focus Areas

    1

    Cross-layer threat correlation: SaaS + identity + network for holistic breach detection

    2

    Native SOAR automation for SaaS remediation (revoke tokens, reset passwords, block IPs)