Semperis
Last updated: Apr 28, 2026
Semperis builds comprehensive identity protection and disaster recovery solutions for Active Directory, Entra ID, and Okta environments, serving Fortune 500 companies, hospitals, utilities, and government agencies.
Visit WebsiteCompany Overview
Semperis is a privately held, venture-backed cybersecurity company founded in 2015 by Israeli entrepreneurs, headquartered in Tel Aviv with operations in Hoboken, New Jersey, and global teams. The company addresses a mission-critical vulnerability in enterprise and critical-infrastructure cybersecurity: Active Directory (AD) and modern identity platforms remain the primary attack vector in over 80% of breaches, yet organizations lack purpose-built tools for preventing, detecting, and recovering from identity-layer compromise.
The company's platform integrates eight core products spanning pre-attack, during-attack, and post-attack phases. Directory Services Protector (DSP) provides threat prevention and detection with proprietary attack-pattern analysis and non-human identity protection. Active Directory Forest Recovery (ADFR) enables cyber-first disaster recovery for AD environments. Entra ID recovery and Okta recovery products address modern cloud-identity layers. Delegation Manager simplifies AD privilege management. Lightning Intelligence provides SaaS-based continuous posture assessment and attack-path discovery. Purple Knight and Forest Druid are community assessment tools with 150+ security indicators and first-of-kind Tier 0 attack-path discovery. Ready1 is an enterprise cyber crisis response platform. This modular architecture allows customers to adopt components aligned with their hybrid-identity architecture (on-premises AD, cloud Entra ID, SaaS Okta, or multi-cloud combinations).
Commercialization and traction signals are strong: Semperis has demonstrated six years of consecutive double-digit growth, securing Series C venture funding from institutional investors, and named to Fortune's 2024 Cyber 60 list. Customer logos visible on the website include Fortune 500 companies (United Airlines), healthcare systems (Prime Healthcare, Blue Cross Independence), telecommunications (Altice), technology (Lenovo), pharmaceuticals (Sanofi), and state government (Michigan). The company employs 501-1,000 people, indicating substantial scale and institutional hiring. Leadership includes 25+ former Microsoft Premier Field Engineers and 175+ combined years of Microsoft MVP experience, providing deep credibility in AD and Entra ID environments.
The dual-use relevance is acute and obvious. Identity infrastructure is foundational to all cyber defense and crisis response: military command-and-control networks, government systems, utilities, and other critical infrastructure depend entirely on identity systems. Semperis' identity-forensics and incident-response (IFIR) services team provides breach-response expertise applicable to nation-state attack scenarios. Active Directory is nearly universal in government, defense, and critical-infrastructure networks. Entra ID is increasingly critical for hybrid-cloud government systems. The company's recovery automation and forensic tools address post-compromise scenarios directly relevant to national-security incident response. Semperis has positioned itself as expert in the most critical vector in cyberwarfare.
Dual-Use Assessment
Identity systems (Active Directory, Entra ID) are the attack surface in virtually all government, military, and critical-infrastructure cyberattacks. Semperis builds purpose-built tools for identity-layer attack prevention, detection, and forensic recovery. Dual-use potential is clear and high: the same ransomware-recovery and identity-forensics capabilities that protect hospitals and Fortune 500 companies are directly applicable to post-compromise defense of military networks, intelligence systems, critical infrastructure, and other national-security assets. The company explicitly markets to government agencies (visible customer: Michigan state), and identity resilience is a national-security imperative in cyber-warfare and critical-infrastructure defense. Unlike generic security tools, Semperis specializes in the exact layer where nation-state and advanced actors operate (identity compromise, Tier-0 asset control, privilege escalation). This is not adjacent dual-use; it is central to defense cybersecurity.
Strategic Fit Assessment
Priority signal means this entry may be worth researching within the Claw & Talon thesis. It does not mean investable, suitable, endorsed, available, or likely to produce returns.
Semperis is a high-conviction investment for a deep-tech dual-use fund for multiple converging reasons. First, market fundamentals are exceptional: Active Directory is present in 95%+ of enterprise networks globally, Entra ID penetration is accelerating in government and enterprise, and identity-layer attacks remain the highest-confidence breach vector (80%+ of incidents involve credential abuse or identity compromise). Ransomware damage costs exceeded $30 billion in 2024 and are growing; identity recovery represents a critical and underpenetrated revenue opportunity. Second, Semperis demonstrates strong execution: 6 years of consecutive double-digit growth, Series C validation from institutional investors, 501-1,000 employee organization, and technology leadership recognized by Fortune (Cyber 60). Third, the company has built genuine defensibility through specialized expertise (25+ former Microsoft PFEs, deep AD/Entra ID domain knowledge), proprietary threat intelligence, and comprehensive product coverage that competitors cannot easily replicate. Fourth, the dual-use thesis is unusually strong and non-speculative: the company already serves government customers, identity resilience is a national-security imperative, and the IFIR services team provides direct value to defense and intelligence agencies. Fifth, growth runway is substantial: identity-platform adoption is accelerating, cloud-identity complexity is rising, and the company is only beginning to penetrate critical-infrastructure and government segments where the highest-value customers reside.
Strategic Value to U.S.-Israel Alliance
For a deep-tech, dual-use focused fund, Semperis provides multiple layers of strategic value. At the commercial level, the company is addressing a market with exceptionally high switching costs and compliance criticality: once identity-recovery solutions are embedded in organizational incident-response procedures and disaster-recovery playbooks, replacing them becomes operationally painful and regulated (government/critical-infrastructure compliance requirements). At the defense and national-security level, identity resilience is now recognized as foundational to military cyber defense and critical-infrastructure protection: defense contractors, intelligence agencies, and federal/state governments have material incentives to source identity-resilience expertise domestically. At the technology level, Semperis is building the playbook for identity-layer attack detection and post-compromise forensics that will likely become a standard component of national-level cyber-defense architecture. The company positions a portfolio investor to own a stake in the identity-resilience layer of critical-infrastructure and government cyber defense.
Key Technologies
- Proprietary identity attack-pattern detection and threat intelligence
- Cyber-first Active Directory and Entra ID disaster recovery automation
- Tier-0 attack-path analysis and privilege-escalation mapping
- Identity forensics and incident-response orchestration
- Non-human and service-account identity threat detection
- Multi-cloud identity environment integration (AD, Entra ID, Okta)
- Continuous SaaS-based identity posture assessment and IOE discovery
Use Cases & Applications
- Ransomware prevention and detection across Active Directory environments
- Cyber-crisis identity recovery and forensics for enterprise incident response
- Government and critical-infrastructure identity-layer breach response
- Healthcare system recovery from identity-targeted attacks
- Hybrid multi-cloud identity environment consolidation and hardening
- Zero-trust architecture deployment with continuous identity posture assessment
- Nation-state attack forensics and attribution (IFIR services)
- Supply-chain attack detection through Tier-0 privilege and attack-path analysis
Sources and verification
This profile is based on public-source research, Claw & Talon curation, and editorial judgment. Inclusion does not imply endorsement, partnership, investment, or a recommendation to transact. Readers should still confirm current status, customers, funding, and product claims before relying on this profile.
Public sources
The links below are visible public references used for source discipline around company identity, status, funding, customer, acquisition, public-company, or other material claims where available.
- Official website Primary public reference for company identity, positioning, and current web presence.
- Profile update timestamp Last updated in the Claw & Talon database on Apr 28, 2026.
Investor Lens
What this entry is
Private startup
Why it may matter
Semperis may matter as a Cybersecurity entry with direct private-company diligence for Israeli technology research.
How an independent investor should read this
Direct private-company diligence. Read this profile as a starting point for independent verification, not as a recommendation or suitability assessment.
Evidence to verify
- Verify current status
- Verify traction
- Verify cap table/funding
- Verify technical claims
- Verify regulatory/export-control issues
- Verify customer concentration
Main investor questions
- Is the company currently active, independently financeable, and raising or not raising on terms you can verify?
- What customer, revenue, product, and technical evidence supports the company story?
- What valuation, cap table, rights, and follow-on assumptions would govern any private exposure?
- Does the dual-use claim map to actual commercial and government/defense/resilience buyer evidence?
- What evidence would change the thesis or show that the profile is stale?
What not to infer
- Inclusion does not imply endorsement.
- Inclusion does not imply allocation availability or current fundraising.
- Scores do not indicate investment suitability or expected returns.
- Strategic importance does not automatically imply venture return potential.
Diligence questions
- What evidence verifies Semperis's current customer traction, deployment status, and revenue concentration?
- Which technical claims are independently demonstrable today, and which remain roadmap or pilot-stage assertions?
- Where does the product create real defense, intelligence, critical-infrastructure, or emergency-response value beyond ordinary commercial adoption?
- How does the platform integrate into existing SOC, cloud, identity, or compliance workflows without adding operational burden?
- What would disconfirm the priority signal: weak customer references, thin technical differentiation, poor capital efficiency, or limited allied-market access?
Related sector
See the Cybersecurity sector page for market context, related subcategories, and other Israeli companies in this part of the database.
Related companies
Need a diligence readout?
Use the profile and related checklists as a starting point. If the decision needs more context, request a company screen, founder-call prep, diligence memo, or sector readout.