CrowdStrike to Acquire SGNL to Transform Identity Security for the AI Era

CrowdStrike Holdings, Inc. announced on January 8, 2026, that it has entered into a definitive agreement to acquire SGNL, a leader in Continuous Identity management. The transaction, reportedly valued at approximately $740 million, aims to transform identity security for the modern AI era. By integrating SGNL into the Falcon platform, CrowdStrike intends to provide real-time access control for human, non-human, and AI identities alike.

The acquisition specifically targets the growing risks associated with the agentic workforce, where autonomous AI entities operate with extensive access to sensitive data. Traditional security models often fail to account for the speed and autonomy of these agents. CrowdStrike CEO George Kurtz noted that every AI agent must be treated as a privileged identity that requires continuous protection to prevent exploitation.

CrowdStrike plans to leverage SGNL’s runtime enforcement capabilities to bridge the gap between identity providers and cloud resources. This integration will enable the Falcon platform to dynamically grant or revoke access based on live risk signals. By using the Continuous Access Evaluation Profile standard, the system can protect downstream applications in real time if an endpoint becomes compromised.

A central goal of this merger is the total elimination of standing privileges, which are static permissions that remain active regardless of actual use. These permanent access rights are often the primary targets for attackers seeking to move laterally within a network. Moving to a Just-in-Time access model ensures that permissions exist only for the duration of a specific task, significantly hardening the enterprise perimeter.

The deal is expected to close during the first quarter of CrowdStrike’s fiscal year 2027, subject to standard regulatory clearances and closing conditions. This move comes as industry analysts forecast the identity security market to grow to $56 billion by 2029. CrowdStrike is positioning itself as a dominant player in this expanding field, offering a unified solution that spans on-premise, SaaS, and cloud environments.

This strategic expansion allows CrowdStrike to move left into enforcement rather than simply reacting to breaches after they occur. By becoming the gatekeeper for access across hyperscalers and SaaS layers, the company is building a comprehensive ecosystem for the future of work. The integration of SGNL ensures that identity security remains robust even as organizations scale their use of complex AI technologies.