As AI agents become employees, NewCore emerges with $66M to give them identities
NewCore exited stealth with a $66M seed round, valuing it at $300M. Focus: Identity and governance for AI agents in the enterprise. Founders from Dome9, Check Point, Unit 8200, and major telcos. Bets legacy identity platforms will break under AI agent scale/complexity. Positioning as a ground-up solution vs. Okta/Microsoft add-ons.
Analysis
TL;DR
- NewCore exited stealth with a $66M seed round, valuing it at $300M.
- Focus: Identity and governance for AI agents in the enterprise.
- Founders from Dome9, Check Point, Unit 8200, and major telcos.
- Bets legacy identity platforms will break under AI agent scale/complexity.
- Positioning as a ground-up solution vs. Okta/Microsoft add-ons.
Key Data
| Entity | Key Info | Data/Metrics |
|---|---|---|
| NewCore | Seed Funding | $66 million |
| NewCore | Post-money Valuation | $300 million |
| NewCore | Lead Investor | Cyberstarts |
| McKinsey | AI Agent Deployment | 25,000 agents alongside 60,000 employees |
| Goldman Sachs | AI Agent Test | Tested Devin as a "new employee" |
Deep Analysis
NewCore’s pitch is a clean, almost inevitable problem statement: when your workforce includes digital entities that operate at machine speed and scale, the identity systems designed for human logins and 9-to-5 permissions are going to shatter. It’s not a speculative bet; it’s observing a reality in motion at firms like McKinsey. The real insight isn't that AI agents need identity—it's that their identity must be a fundamentally different class of entity from the start, not an afterthought bolted onto a legacy IAM (Identity and Access Management) stack.
The $300M pre-product valuation screams that investors are buying the timing and the team more than a proven platform. Zohar Alon’s experience selling Dome9 to Check Point is crucial here. He didn’t just found a company; he successfully navigated the brutal consolidation cycle of cybersecurity. He’s now playing a similar game: identifying a core infrastructure weakness (identity) right as a disruptive force (AI agents) is about to amplify that weakness exponentially. The "split-key" architecture mention, though cut off, hints at a technical moat—likely a way to cryptographically separate agent and human authority, solving a critical delegation-of-trust problem that current systems fumble.
The challenge is the elephant in the room: Okta and Microsoft. Their counter-narrative—"we’re just extending our platform"—is powerful because it’s cheaper and easier for CISOs to accept. NewCore’s counter-argument, that you can’t properly govern a jet engine by treating it as a fancier propeller, is technically sound but a harder sell. They’re fighting not just against competitors, but against institutional inertia and the sunk cost fallacy. The market window is narrow: they must become the default standard before the Okta/Microsoft "agentic patches" become "good enough" for the average enterprise.
This move also signals a broader shift. We are entering the age of "non-human entities" (NHEs) as first-class citizens in corporate networks. This isn't just about identity; it’s about auditability, liability, and real-time control. Who is accountable when an AI agent, acting on its permissions, causes a data breach? NewCore is building the answer key and the lock at the same time. Their success hinges on whether enterprises believe a new, purpose-built platform is a strategic necessity versus a costly convenience. The early, bleeding-edge adopters—those running thousands of agents—will be their proving ground. If they can demonstrate a tangible reduction in agent-related risk and administrative overhead there, the $300M valuation might look like a bargain.
Industry Insights
- The "Identity-as-a-Service" market will bifurcate into human-centric (legacy) and agent-centric (next-gen) stacks, creating new acquisition targets.
- AI agent "passports" will emerge, requiring embedded, auditable policies and real-time revocation mechanisms far beyond API keys.
- Enterprise security architectures will undergo foundational redesign to accommodate autonomous digital entities as permanent, privileged users.
FAQ
Q: Why can't companies just use Okta or Microsoft's existing identity tools for AI agents?
A: They can, but those are extensions of platforms designed for human workflows and lifecycles. NewCore argues this creates governance gaps and complexity at scale, like using a spreadsheet to manage an air traffic control system.
Q: What is the core innovation NewCore is proposing?
A: Treating AI agents as "first-class identities" from day one, not as service accounts. This implies a new data model and lifecycle management (creation, permissioning, monitoring, termination) built for machine-scale operations and autonomy.
Q: Does this matter to businesses not yet using AI agents heavily?
A: It’s a leading indicator. As AI agent adoption grows, identity governance will become a critical bottleneck and risk vector. Companies that plan their identity infrastructure now will avoid costly, chaotic migrations later.
Disclaimer: The above content is generated by AI and is for reference only.