Norwegian startup Bsure has raised $2.1 million in seed funding to tackle one of the least glamorous yet most damaging issues inside modern IT systems: the silent sprawl of digital identities inside Microsoft environments. The round was led by Scale Capital, alongside returning U.S. investors doubling down on the company’s early traction.
Identity clutter has become the new attack surface. As organisations accumulate employees, contractors, applications and automated services, access permissions rarely shrink. They expand. And in most companies’ Microsoft 365 setups, the number of accounts and admin roles grows far faster than IT teams can manage. Inactive accounts remain enabled, old privileges survive long after people leave, and entire admin pathways stay hidden in corners no one has checked in years.
This is the blind spot that Bsure—founded in 2022—is trying to eliminate. Built natively on Azure, the platform connects directly to Microsoft Entra ID to provide organisations a real-time, continuously updated view of every user, every permission and every identity risk. The system identifies dormant accounts, flags unnecessary privileges and helps companies reduce licence waste, all while tightening security controls.
The market signals are clear. Microsoft’s own Digital Defense Report for 2024 shows that more than 90% of account compromises originate from forgotten or unmonitored accounts. Meanwhile, regulatory pressure is intensifying: EU frameworks such as NIS2 and DORA require firms to document and monitor access paths with fines reaching €10 million or 2% of global revenue. Gartner predicts that by 2028, 70% of CISOs will deploy identity visibility platforms to address these exact problems.
Henrik Skalmerud, CEO and co-founder of Bsure, says the scale of hidden access is still underestimated:
“We often see that up to 40% of user accounts are inactive. That represents both a security risk and unnecessary cost. Companies are often genuinely surprised when they see the real picture for the first time.”
Today, Bsure serves more than 200 organisations across nine countries, spanning both public and private sectors. The new capital will be used to expand the team, accelerate international expansion—especially in the U.S.—and scale the product with new AI-driven capabilities designed to make identity visibility more actionable and easier to deploy.
Editorial View: Why Identity Visibility Is Becoming the Next Big Cyber Category
There is a reason investors such as Scale Capital are backing companies like Bsure: the identity layer is becoming the foundation of modern security, not an afterthought. As cloud adoption accelerates and organisations rely on increasingly complex Microsoft environments, the number of unmanaged accounts quietly multiplies. Attackers know this; defenders are only now catching up.
Where Bsure distinguishes itself is not in creating another dashboard but in pursuing the problem at infrastructure depth—cleaning up the identity fabric inside Microsoft environments where most global organisations already live. Visibility isn’t just a feature; it’s a prerequisite for any serious security posture. And the company’s early traction across nine countries indicates that enterprises recognise the urgency.
The long-term potential sits in what happens after visibility. Once organisations have a live, accurate map of users and permissions, automation, AI-driven insights and compliance alignment become significantly easier. Bsure is positioning itself at the critical layer where cost reduction, security improvement and regulatory demands intersect—an unusually strong alignment for an early-stage cybersecurity startup.
If the company continues refining its platform while scaling internationally, it is well-positioned to become one of the category-defining players in identity intelligence within the Microsoft ecosystem—a space that remains vast, underserved and primed for consolidation.
If you need further assistance or have any corrections, please reach out to editor@thetimesmag.com.
