Oasis Security Brings "Secure by Default" to Non-Human Identities with New Provisioning Solution

At the RSA Conference 2025, Oasis Security unveiled a major expansion of its Non-Human Identity Management (NHIM) platform: Oasis NHI Provisioning. The new capability promises to fundamentally change how enterprises create, govern, and secure non-human identities (NHIs) from the moment they are born, addressing longstanding security gaps that have grown dangerously wider in the age of cloud and AI-driven automation.

Non-human identities—service accounts, machine credentials, managed secrets, and the digital keys that drive cloud applications and agentic AI workflows—are multiplying at a staggering pace. ESG Research estimates NHI inventories are expanding by roughly 20% annually. Yet provisioning them remains a chaotic and often manual affair, rife with blind spots, fragmented ownership, and inconsistent access policies.

Oasis believes it has the antidote. Built natively into the Oasis NHI Security Cloud, the new provisioning engine bakes in governance, ownership, and least-privilege enforcement at the identity’s point of creation—regardless of whether it lives in AWS, Azure, GCP, Snowflake, Databricks, or beyond. Crucially, Oasis’ infrastructure- and vault-agnostic approach is designed to preserve developer autonomy while embedding consistent security controls across heterogeneous environments.

“Oasis NHI Provisioning redefines identity security by automating provisioning with built-in governance, enabling security teams to reduce risk, remove error-prone manual tasks and enhance developers' productivity," said Danny Brickman, CEO and Co-Founder of Oasis Security. "With Oasis NHI Provisioning, NHIs are secured by default the moment they are created and throughout their lifecycle."

Unlike traditional methods that bolt governance onto identities after they proliferate, Oasis aims to turn the model on its head. Automated request and approval workflows can be triggered through the Oasis UI, ServiceNow, or Terraform, while credential vaulting integrates seamlessly with cloud-native services or third-party tools like HashiCorp Vault and CyberArk. Sensitive credential operations remain fully contained within the customer's infrastructure via Oasis Outpost, avoiding risky external processing.

Once provisioned, each NHI is automatically enrolled into Oasis’ Identity Lifecycle Management (ILM) engine, ensuring that policies like credential rotation, least-privilege maintenance, and decommissioning are enforced without manual intervention.

This new offering lands at a critical time. As businesses race to scale automation and AI, they are increasingly relying on NHIs without having the corresponding governance frameworks to secure them—an imbalance that cyberattackers have started to exploit. By making security intrinsic to the provisioning process, Oasis positions itself as a proactive shield rather than a reactive patch.

The company’s efforts are not going unnoticed. Cyber Defense Magazine named Oasis a winner for “Groundbreaking Identity Security” in its 2025 Global InfoSec Awards announced this week at RSA, reinforcing its growing reputation as a pioneer in this fast-evolving domain.

As identity sprawl becomes the next front in cybersecurity, Oasis’ vision for secure-by-default non-human identities may well set a new standard—and not a moment too soon.