Clutch Security
Also known as: Clutch
Universal non human identity security platform that discovers, governs, and secures every NHI, AI agent, and secret across cloud, SaaS, and on prem, powered by the Identity Lineage graph and a zero trust, ephemeral credentials approach.
Clutch Security is a Tel Aviv founded company, incorporated in the United States in Wilmington, Delaware, started in 2023 by CEO Ofir Har-Chen, a cybersecurity veteran with leadership roles at Sygnia and Hunters. The company raised an eight and a half million dollar seed and a twenty million dollar Series A in January 2025 led by SignalFire with Lightspeed Venture Partners and Merlin Ventures participating, bringing total funding to twenty eight and a half million dollars. Its thesis: the security pendulum is swinging from humans as the weakest link to machines, and the rapid enterprise adoption of AI agents makes non human identities the next major attack surface.
The platform describes itself as the industry's first Universal Non Human Identity Security Platform, extending coverage across three surfaces: every NHI, every AI agent, and every secret. It is powered by the Identity Lineage graph, which connects each entity to its origin, the people behind it, where it is stored, what consumes it, and the resources it reaches. Capabilities span discovery and contextualized inventory across cloud, SaaS, and on prem, lifecycle management with ownership and access reviews, posture and risk management prioritized by blast radius, real time threat detection when behavior deviates from baselines, and Agent Guardrails that take agents from shadow to governed, tracing each agent from the person who deployed it through its tools, credentials, and reachable resources. The zero trust model validates NHI usage continuously and migrates static credentials to short lived ephemeral alternatives that render exposed secrets useless, and a Zero Knowledge Architecture keeps data within the customer's network with no credentials stored or transmitted. Roughly sixty integrations cover cloud providers, SaaS applications, code repositories, CI/CD pipelines, vaults, password managers, endpoints, and AI platforms, with bi directional flows into SIEM, SOAR, and ticketing tools.
Clutch fits enterprise security teams in banking, financial services, insurance, and technology confronting NHI sprawl and agent adoption, and competes in a crowded field including Astrix, Oasis, Token Security, and Silverfort. It is a weaker fit for buyers wanting a developer API, SDK, or published pricing, none of which appear on retrieved pages.
Vendor details
Canonical URL
https://www.clutch.security
Category
Security / SOC agent
Subcategory
Non human identity and AI agent security platform
Funding status
Independent, founded in 2023 in Tel Aviv by CEO Ofir Har-Chen, a Sygnia and Hunters veteran, with a United States entity in Wilmington, Delaware. Raised twenty eight and a half million dollars total: an eight and a half million dollar seed and a twenty million dollar Series A announced January 2025, led by SignalFire with participation from Lightspeed Venture Partners and Merlin Ventures. Customers span banking, financial services, insurance, and technology.
Company status
independent
Use cases & customers
Primary use cases
Target customers
Deployment options
Integrations
Close to sixty integrations spanning cloud providers, SaaS applications, code repositories, CI/CD pipelines, vaults, password managers, endpoints, and AI platforms, with insights, alerts, and remediation actions flowing bi directionally into SIEM, SOAR, ticketing, and collaboration tools. Also listed on the AWS Marketplace and the CrowdStrike Marketplace.
In practice
A bank discovers service accounts and API keys outnumber employees many times over, scattered across cloud, SaaS, and on prem. Clutch builds a contextualized inventory mapping each identity to its owner, permissions, and blast radius within minutes of connecting.
Teams deploy AI agents faster than security can track them. Clutch traces every agent from the person who deployed it through its tools, credentials, and reachable resources, applying guardrails that move agents from shadow to governed.
A leaked API key would normally mean a fire drill. With ephemeral identities and continuous zero trust validation, the exposed credential is already expired or unusable, and anomalous access attempts trigger real time alerts with full context.
Sources & related URLs
Related / legacy domains
Research sources
Capability coverage
6.5 / 14 capabilities · 46%
| Integrations & Tool CallingClose to sixty integrations across cloud providers, SaaS, code repositories, CI/CD, vaults, password managers, endpoints, and AI platforms, with bi directional flows into SIEM, SOAR, and ticketing, clutch.security platform page and TechCrunch coverage retrieved 2026-07-08 | Full |
|---|---|
| Workflow OrchestrationActionable remediation playbooks and lifecycle workflows for ownership, access reviews, and expiration are documented, though this is security workflow rather than agent orchestration, clutch.security platform page and AWS Marketplace listing retrieved 2026-07-08 | Partial |
| Knowledge Grounding & RAGThe Identity Lineage graph grounds every finding in context, connecting each entity to its origin, owners, storage, consumers, and reachable resources, though this is a context graph rather than a knowledge or RAG layer, clutch.security homepage retrieved 2026-07-08 | Partial |
| Human Oversight & GuardrailsAgent Guardrails move agents from shadow to governed and zero trust enforcement constrains what identities and agents can do, though explicit human approval workflows were not documented on retrieved pages, clutch.security homepage and platform page retrieved 2026-07-08 | Partial |
| Security, Identity & GovernanceThe product is non human identity security itself: zero trust validation, ephemeral credentials, lifecycle governance, posture management, and a Zero Knowledge Architecture where no credentials are stored or transmitted, clutch.security homepage, principles page, and trust center retrieved 2026-07-08 | Full |
| Observability & AuditabilityContinuous monitoring of behavior and access patterns across identities and agents against established baselines, real time detection, and investigation with full context, clutch.security platform page retrieved 2026-07-08 | Full |
| Memory & State PersistenceNo agent memory or state persistence capability is described on retrieved pages, clutch.security retrieved 2026-07-08 | Unable to verify |
| Deployment & Data ResidencyThe Zero Knowledge Architecture keeps all data within the customer's network with no credentials ever stored or transmitted, a meaningful residency property, though self hosting the platform itself is not documented, clutch.security homepage and trust center retrieved 2026-07-08 | Partial |
| Prebuilt Agents, Templates & PacksNo prebuilt agents or template packs are documented on retrieved pages, clutch.security retrieved 2026-07-08 | Unable to verify |
| Triggers & Channel CoverageReal time detection fires when activity deviates from established baselines, such as a service account reaching a new region or an agent exceeding its scope, with alerts carrying full investigation context, clutch.security platform page retrieved 2026-07-08 | Full |
| Model Flexibility & RoutingClutch is an identity security platform rather than an LLM product and no customer model choice is documented, clutch.security retrieved 2026-07-08 | Unable to verify |
| APIs, SDKs & MCP ExtensibilityBi directional integrations flow insights, alerts, and remediation actions into SIEM, SOAR, ticketing, and collaboration tools, but no public developer API, SDK, or MCP surface is documented, clutch.security platform page retrieved 2026-07-08 | Partial |
| Testing, Debugging & OptimizationNo testing, evaluation, or optimization tooling is documented on retrieved pages, clutch.security retrieved 2026-07-08 | Unable to verify |
| Browser & Computer UseNo browser or computer use capability is described on retrieved pages, clutch.security retrieved 2026-07-08 | Unable to verify |
Recent platform changes
No recent material changes tracked yet.
Pricing
No public pricing; enterprise contracts are quoted through sales
enterprise contracts, structure not publicly documented
What is public
Nothing numeric. The platform structure is public: discovery and inventory, lifecycle management, posture and risk management, threat detection and response, Agent Guardrails, and secret governance, sold as an enterprise platform. Listings exist on the AWS Marketplace and CrowdStrike Marketplace but neither carries public rates.
Billing mechanics
Enterprise sales led motion, with marketplace procurement available through AWS Marketplace and the CrowdStrike Marketplace for organizations that prefer those channels.
Cost watchouts
The number of connected environments and integrations under management is the likely driver of both deployment effort and contract size.
Variable cost rationale
No public rate structure exists, so exposure depends on the negotiated contract. NHI security platforms typically scope by the number of identities and connected environments, and identity counts in enterprises grow continuously, which suggests contract size can drift upward with footprint.
Additional watchouts
Identity count is the natural scoping axis and NHIs typically outnumber humans many times over, so inventory growth between renewal cycles is worth negotiating up front.
Sales call required
Yes — required for paid access
Free / trial
No free tier or self serve trial is documented; the site leads with demo requests and the homepage promises full inventory from day one and findings within minutes of connecting
Key ambiguities
Whether contracts scope by identity count, connected environments, modules, or some combination.
Missing data
No published pricing, tiers, minimums, per identity rates, or contract terms were retrievable.
Related vendors
- 7AI — Swarming agentic SOC from the Cybereason founders: sixty plus domain…
- Airrived — Agentic OS that unifies SOC, GRC, IAM, vulnerability management, IT,…
- Assail — Autonomous red teaming platform (Ares) whose AI agents discover,…
- Astelia — AI native exposure management platform from Israeli National Red…
- Capsule Security — Runtime security layer for AI agents that detects and blocks unsafe…
- CrowdStrike — Cybersecurity platform whose Charlotte AI delivers agentic…