Umaimah Khan

Security sometimes ends up being an afterthought, especially in product-led organizations, when it hinders the business. You just get to a point where you got this like insane wild west of like authentication and authorization and you don't really know what's going on in your org and you're a little bit scared to pull the trigger anywhere because of what could happen down the line.

I found myself like just fascinated, like both from an organizational and technical perspective that like this kept happening and eventually got so frustrated that I was like, you know what, I'm going to go figure out why this is the case and possibly build it. I was confused.

I found myself like just fascinated, like both from an organizational and technical perspective that like this kept happening and eventually got so frustrated that I was like, you know what, I'm going to go figure out why this is the case and possibly build it. I was confused.

I found myself like just fascinated, like both from an organizational and technical perspective that like this kept happening and eventually got so frustrated that I was like, you know what, I'm going to go figure out why this is the case and possibly build it. I was confused.

It just seemed like there would be these big legacy players that were just built to check boxes from a compliance standpoint so that you could say, oh yeah, we definitely do this internally. but not actually solving the problem at some deep technical or product level. And I at some point just said, you know what? Screw it. I'm just going to build internally and try to build a good system here.

It just seemed like there would be these big legacy players that were just built to check boxes from a compliance standpoint so that you could say, oh yeah, we definitely do this internally. but not actually solving the problem at some deep technical or product level. And I at some point just said, you know what? Screw it. I'm just going to build internally and try to build a good system here.

It just seemed like there would be these big legacy players that were just built to check boxes from a compliance standpoint so that you could say, oh yeah, we definitely do this internally. but not actually solving the problem at some deep technical or product level. And I at some point just said, you know what? Screw it. I'm just going to build internally and try to build a good system here.

And what I found was that I wasn't the only one who had gone through this. There were many companies, especially in the Bay Area, who had a similar realization. And then they would hit this point where they're like, I can't scale this internally anymore. I can't justify this internally anymore. And it was like such an intense conviction.

And what I found was that I wasn't the only one who had gone through this. There were many companies, especially in the Bay Area, who had a similar realization. And then they would hit this point where they're like, I can't scale this internally anymore. I can't justify this internally anymore. And it was like such an intense conviction.

And what I found was that I wasn't the only one who had gone through this. There were many companies, especially in the Bay Area, who had a similar realization. And then they would hit this point where they're like, I can't scale this internally anymore. I can't justify this internally anymore. And it was like such an intense conviction.

This was like the right place to start that I took sabbatical from that job and just worked on it full time. I thought about it from many different angles. And it was funny. Two and a half years ago, I would meet people and they would just be like, isn't this a solved problem? I don't get it. It doesn't like so and so like company already do this.

This was like the right place to start that I took sabbatical from that job and just worked on it full time. I thought about it from many different angles. And it was funny. Two and a half years ago, I would meet people and they would just be like, isn't this a solved problem? I don't get it. It doesn't like so and so like company already do this.

This was like the right place to start that I took sabbatical from that job and just worked on it full time. I thought about it from many different angles. And it was funny. Two and a half years ago, I would meet people and they would just be like, isn't this a solved problem? I don't get it. It doesn't like so and so like company already do this.

And I would just constantly just be like pushing back and saying, no, have you actually looked at the guts of what gets deployed and like what happens? No, people are just buying things and nothing is actually like solving the problem.

And I would just constantly just be like pushing back and saying, no, have you actually looked at the guts of what gets deployed and like what happens? No, people are just buying things and nothing is actually like solving the problem.

And I would just constantly just be like pushing back and saying, no, have you actually looked at the guts of what gets deployed and like what happens? No, people are just buying things and nothing is actually like solving the problem.

So the MVP was born from this, what is like a really obvious, like tactical problem or pain point to solve and how do you get there? And so like in our space, if you think about all of the context and the data necessary to even begin to like build scalable access, it's overwhelming, right?

So the MVP was born from this, what is like a really obvious, like tactical problem or pain point to solve and how do you get there? And so like in our space, if you think about all of the context and the data necessary to even begin to like build scalable access, it's overwhelming, right?

So the MVP was born from this, what is like a really obvious, like tactical problem or pain point to solve and how do you get there? And so like in our space, if you think about all of the context and the data necessary to even begin to like build scalable access, it's overwhelming, right?

And so then you scale back and you say, what is a way we can solve the problem knowing everything and having all the context would in a faster time to value? And that's this concept of just-in-time access. How do you just patch through access that's very time-based, that's very role-specific for a period of time that's tied to very specific events?