Vega provides an AI-native security analytics platform that helps enterprise security teams detect and respond to threats across their entire environment, directly on top of the data they already have. As the company scaled rapidly from stealth to serving Fortune 500 customers, they needed authentication that could keep pace with enterprise requirements. Here’s how Descope helped Vega move upmarket without pulling engineering focus away from their core product.
About Vega
As an AI-native cybersecurity startup, Vega is rethinking the role data plays in security operations. Traditional security analysis tools require enterprises to centralize all of their log and telemetry data into a single repository before it can be analyzed. This process is slow, expensive, and increasingly untenable as data volumes grow in size and complexity. Vega takes a federated approach, deploying detection and investigation capabilities directly against data wherever it already lives: across cloud platforms, within data lakes, inside SaaS applications, and buried in legacy systems.
Vega emerged from stealth in late 2025 and grew quickly, raising $185 million in total funding and signing multimillion-dollar contracts with global banks, healthcare organizations, and Fortune 500 companies. The current valuation of Vega after less than two years is $700 million.
The challenge
The Vega engineering team was focused on building and shipping their revolutionary detection platform. Authentication was essential infrastructure for approaching their target market: enterprise buyers in verticals like banking and healthcare, who expect standards-compliant identity. But identity wasn’t where their team wanted to spend dev cycles.
The Vega team had used another popular CIAM solution in previous roles and ended up having a sub-par experience. The technical capabilities of this provider were adequate, but unpredictable pricing, sudden spikes, and the need for custom development work to get the intended customer identity experience left them wanting to go down a different path this time. For a company moving from early stages to enterprise contracts as quickly as Vega, the prospect of re-evaluating their auth provider at each growth milestone was an unwanted distraction.
Beyond their immediate needs (SSO, magic links) the Vega roadmap aimed at customers whose identity requirements were significantly more complex: SAML and IdP-initiated SSO for enterprises with rigid identity provider configurations, SCIM provisioning for automated user lifecycle management, fine-grained authorization (FGA) for multi-tenant access control, and machine-to-machine (M2M) credential management for service-level integrations.
They needed an authentication provider that could handle today’s requirements while supporting their growth into tomorrow’s, all without forcing a total platform migration in the middle of their enterprise scaling effort.
Eli Rozen, Co-Founder and CTO at Vega, said:
“Strong enterprise identity is table stakes for our customers, but it’s not our core product. We needed something we could implement quickly and not revisit every time we closed a bigger customer or addressed a new requirement.”
The Descope experience
Vega onboarded with Descope through our Startup Plan, giving them access to the full platform while the company was still in its early stages. Their implementation used the Descope Go SDK on the backend and React on the frontend, aligning with the existing Vega stack. Authentication proved easy and quick to set up, and the team rapidly iterated and could remain focused on their core product.
Eli Rozen, Co-Founder and CTO at Vega, said:
“We were able to get authentication running with a fraction of the effort it would take on our own, which let our developers spend more time with our detection platform. With Descope, we just stopped worrying about auth and started letting it work for us.”
As Vega grew from the Startup Plan to a more expansive tier, their use of Descope expanded alongside their enterprise requirements:
Enterprise authentication was a natural progression for Vega. They began with a typical SSO implementation with magic links for passwordless. As they brought on larger customers, they needed IdP-initiated SSO and SAML support, which Descope provided without needing custom engineering work per tenant.
The Descope SSO Setup Suite is a self-service, configurable wizard that allows customers to handle SSO onboarding all on their own. Rather than spending hours or even weeks of back-and-forth dialing in these sensitive details, Vega could customize a well-defined path that their customers followed and set up SSO connections with zero hand-holding.
SCIM provisioning proved a genuine business enabler for Vega because their customers aren’t always deeply familiar with provisioning protocols. Descope made SCIM configuration accessible regardless of the Vega customer’s technical background, resulting in smoother tenant onboarding and automated user lifecycle management. An added benefit was that the Vega team didn’t need to build or explain the provisioning process themselves.
RBAC was an obvious requirement for early-stage growth. Vega currently uses Descope’s role-based access control (RBAC) to manage permissions at the tenant level. On the back end, Descope’s SDK functions automate RBAC management within the application itself.
M2M authentication was an essential part of how Vega manages machine-to-machine communication. Descope allowed them to handle token exchange for M2M access keys, with potential to expose these capabilities to customers as the platform matures.
Enterprise-grade identity built for scale
For Vega, Descope was a valuable asset helping them achieve enterprise-ready identity from day one. SSO, SAML, SCIM, RBAC, and M2M auth are all capabilities that enterprise security decision-makers expect to see before they can even consider doing business with a vendor. Yet, to meet these demanding requirements with their old provider, Vega would have needed to dedicate engineering resources to build them or pay steep fees and face unpredictable pricing fluctuations to obtain out-of-the-box functionality.
Vega knew that they needed to abstract away enterprise identity requirements so they could focus on what really mattered: delivering first-of-its-kind, cutting edge security analytics to their enterprise customers. That was a genuine differentiator in a market where the authentication experience is often the first thing a security-conscious buyer evaluates.
The Vega journey with Descope has also scaled. Vega moved from the Startup Plan to a more robust tier without the pricing uncertainty or capability limitations that had characterized their earlier experience with another auth provider.
As Vega scaled and requirements grew, Descope's platform has kept pace. Meanwhile, internal customer feedback has been direct and enthusiastic. While Vega team members have praised the developer experience and interface, the company’s view is that authentication has become a real factor in how enterprise customers perceive the platform overall.
Eli Rozen, Co-Founder and CTO at Vega, said:
“Customers are citing capabilities we offer through Descope, like SCIM support, as a differentiator for Vega itself. We’re glad to have them as a long term auth partner as our company continues to scale and disrupt the security analytics and operations space.”
Descope is a flexible drag & drop CIAM platform that helps organizations easily add authentication, authorization, and identity management to their apps, AI agents, and MCP servers. Customers use us for initiatives such as passwordless authentication, SSO, identity federation, strong MFA, fraud prevention, and agentic identity.
To get started with Descope, sign up for a Free Forever account. If you have questions about our platform, book time with our auth experts.
