Identity That Thinks
Runtime decisions for access, security first and AI-proofed
Identity That Thinks
Runtime decisions for access, security first and AI-proofed
Trusted by leading companies
Trusted by leading companies
Trusted by leading companies
Built for how identity security works today and tomorrow
Built for Scale
Deep Terraform, SOAR, and CLI support lets you manage access as code — scaling controls alongside infrastructure, automating and integrating directly into DevOps workflows.
Built for Scale
Deep Terraform, SOAR, and CLI support lets you manage access as code — scaling controls alongside infrastructure, automating and integrating directly into DevOps workflows.
Built for Scale
Deep Terraform, SOAR, and CLI support lets you manage access as code — scaling controls alongside infrastructure, automating and integrating directly into DevOps workflows.
Built for Speed
Event-driven sync keeps all pipelines up to date. Bidirectional integrations with cloud, data, and other mission-critical systems help you visualize and orchestrate in real time.
Built for Speed
Event-driven sync keeps all pipelines up to date. Bidirectional integrations with cloud, data, and other mission-critical systems help you visualize and orchestrate in real time.
Built for Speed
Event-driven sync keeps all pipelines up to date. Bidirectional integrations with cloud, data, and other mission-critical systems help you visualize and orchestrate in real time.
Built for Intelligence
Risk scoring and recommendations adapt to your evolving environment, enabling direct remediation of both the sensitive and urgent while keeping human oversight and interpretability.
Built for Intelligence
Risk scoring and recommendations adapt to your evolving environment, enabling direct remediation of both the sensitive and urgent while keeping human oversight and interpretability.
Built for Intelligence
Risk scoring and recommendations adapt to your evolving environment, enabling direct remediation of both the sensitive and urgent while keeping human oversight and interpretability.
FROM OUR Customers:
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
FROM OUR Customers:
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
FROM OUR Customers:
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
“At Obsidian, we use Opal to run quarterly access reviews, maintain just-in-time access, and handle access requests to some of our sensitive applications, like AWS. Once we started using Opal’s Risk Layer in AWS, it changed the way we connect to it, which is fantastic. We’re excited to find the time to set up a deeper Terraform integration, along with the API and CLI that Opal built. Overall, Opal has been a great time saver—really helped us out.”
Chris Kennington
Security Engineer, Obsidian
"Opal helps Elastic protect more of our attack surface than we could before with a small but mighty team. Whether we're speeding up workflows with Slack, orchestrating authorization directly from Terraform, or using the API, Opal has helped us do more with less. In the near future, we're excited to implement Just-in-Time (JIT) access for all of our employees who use GitHub, as well as begin to secure LLMs, service accounts, and other NHIs with Opal."
Mandy Andress
CISO, Elastic
"Opal's Access Review module allows us to provide internal and external auditors with the evidence required for multiple compliances, and provides our Privileged Access Reviewers with the necessary information to make meaningful decisions about appropriateness of access. Opal's ability to self-host their solution also allows us to host in our own FedRAMP High environment, thus allowing us to utilize all of their capabilities to harden our FedRAMP resources.
Also, we built Databricks Genie to help our Databricks customers leverage AI and democratize data for all. In the same vein, we're excited about the new AI features that Opal is releasing such as the MCP server capabilities that will allow our teams to do the same for our ever expanding workforce."
Jack Zaldivar, Jr.
Staff Systems Engineer, Databricks
"At Grammarly, Opal enabled us to migrate all access management for over 150 corporate applications and hundreds of production services across two public clouds to a unified employee experience in just a few weeks."
Suha Can
CISO, Grammarly
“Access reviews and access management were a tedious time sink for us at Obsidian before we adopted Opal. But unlike a lot of other security products, Opal is one of those rare products that gives us back time to focus on what matters, which is amazing.”
Alfredo Hickman
CISO, Obsidian
How Opal Works
See why the best security teams manage access with Opal
See why the best security teams manage access with Opal
See why the best security teams manage access with Opal
See why the best security teams manage access with Opal
Headquartered in New York City
and San Francisco
235 W 23rd Street, 8th Fl, New York, NY 10011
77 Geary St, 5th Fl, San Francisco, CA 94108
Resources
Customers
© 2025 Perma Security Inc. | DBA Opal Security
Headquartered in New York City
and San Francisco
235 W 23rd Street, 8th Fl, New York, NY 10011
77 Geary St, 5th Fl, San Francisco, CA 94108
Resources
Customers
© 2025 Perma Security, Inc. DBA Opal Security
Headquartered in New York City
and San Francisco
235 W 23rd Street, 8th Fl, New York, NY 10011
77 Geary St, 5th Fl, San Francisco, CA 94108
Resources
Customers
© 2025 Perma Security Inc. | DBA Opal Security
Headquartered in New York City
and San Francisco
235 W 23rd Street, 8th Fl, New York, NY 10011
77 Geary St, 5th Fl, San Francisco, CA 94108
Resources
Customers
© 2025 Perma Security Inc. | DBA Opal Security