Rezonate
Capability scores
Methodology →- Authentication
- 4.0
- SSO & Federation
- 3.0
- Authorization
- 4.5
- Lifecycle & Provisioning
- 3.0
- MFA & Passwordless
- 3.5
- Governance & Audit
- 4.5
- Developer Experience
- 3.5
- Deployment Flexibility
- 3.5
- Pricing Transparency
- 2.5
- Support & Ecosystem
- 3.5
Scored 0–5 against a published rubric. Independent analysis, no vendor sponsorship.
Overview
Rezonate provides identity-centric security that maps identity risk across identity providers and cloud platforms, combining posture management with threat detection and response. Founded in 2021 with teams in Boston and Tel Aviv, it builds an identity graph that connects who has access to what, then watches that graph for risky changes and active attacks. The aim is to unify the usually separate worlds of identity posture and runtime detection. See what ITDR is and why it matters for context.
What it is good at
The differentiator is the identity graph that links posture and runtime detection across IdPs and cloud, so teams can both reduce standing risk and catch attacks in progress against the same model. It surfaces over-privileged access, risky configuration drift, and identity-based threats across providers like Okta, Entra, and the major clouds. The unified view helps teams prioritize what actually matters rather than triaging disconnected alerts.
Where it falls short
As a newer vendor, scale references and ecosystem breadth are still building, and the maturity of integrations varies by provider. It does not offer Active Directory backup and recovery, and buyers wanting a large, long-established vendor with extensive customer proof points may hesitate. Coverage is strongest in cloud and SaaS identity rather than deep on-prem AD detection.
Pricing
Subscription and quote-based, with no public list pricing; expect scaling by identities and connected environments. Model it with the TCO calculator.
Best for, and who should look elsewhere
A strong fit for teams mapping and reducing identity risk across cloud and IdPs that also want runtime detection on the same model. Look elsewhere if you need AD recovery and backup or insist on a mature, large-scale incumbent. Compare with AuthMind, Sharelock, Silverfort.
Bottom line
A capable identity-centric posture and detection platform for cloud-first teams that want one graph spanning risk and runtime, less suited to AD-recovery use cases. See the ITDR vendor directory.
More ITDR vendors
All ITDR →By SWI Community Team · Last evaluated 2026-06-19
Independent, community-driven analysis. No vendor sponsorship. Compiled from public research and community input and verified on a best-effort basis, so details may be incomplete or out of date. Scores are opinions, not advice. Trademarks belong to their owners; mention does not imply affiliation or endorsement. See the full disclaimer, or send corrections to community@startwithidentity.com.