Ready to build your own Founder-Led Growth engine? Book a Strategy Call
Frontlines.io | Where B2B Founders Talk GTM.
Strategic Communications Advisory For Visionary Founders
Actionable
Takeaways
Leverage Personal Experience for Product Development:
Umaimah used her background and recurring themes from her career in cryptography and startups to identify and address gaps in identity security. Founders should look at their unique experiences and insights to find niche problems they are uniquely qualified to solve.
Focus on Early Research and Networking:
Before fully launching Opal Security, Umaimah spent significant time researching and talking to industry experts to shape her understanding and approach to the product. This highlights the importance of foundational research and networking to validate and refine business ideas.
Prioritize User-Friendly Design in Enterprise Solutions:
Umaimah emphasizes the need for enterprise solutions to have high-quality UI/UX to facilitate wider adoption, drawing a parallel to how Slack transformed user expectations. Tech founders should ensure their solutions are accessible and intuitive, regardless of the complexity behind them.
Adapt Go-To-Market Strategies to Fit Product and Market Needs:
Adapt Go-To-Market Strategies to Fit Product and Market Needs: Opal Security’s marketing strategy focuses on cutting through industry noise by being transparent about their product's value and educating potential customers. Startups should consider how they can use educational marketing to stand out and build trust in crowded markets.
Adapt Go-To-Market Strategies to Fit Product and Market Needs:
Instead of following conventional go-to-market strategies, Opal Security developed a bespoke approach that aligns with their enterprise focus and product complexity. This takeaway encourages founders to customize their go-to-market strategies based on specific business conditions and customer requirements.
Conversation
Highlights
From Compliance Checkbox to Strategic Imperative: How Opal Security Redefined Identity Governance
Most security tools sell themselves as compliance necessities—features buried in procurement queues, evaluated by junior analysts, approved with minimal executive involvement. Umaimah Khan, CEO and Co-Founder of Opal Security, took the opposite approach. In a recent episode of Category Visionaries, she revealed how transforming identity governance from a compliance obligation into a strategic business priority helped Opal reach $50 million in ARR.
The shift wasn’t accidental. It required rethinking everything from product positioning to sales methodology to how technical depth translates into boardroom conversations.
Building for Technical Buyers Who Actually Deploy
Opal’s early GTM strategy centered on a crucial insight: identity governance fails when it’s purchased by compliance teams but deployed by engineering teams. “We really focused on engineering led sales,” Umaimah explains. “So our ICP was companies who had an engineering culture, who are building technology.”
This meant designing for practitioners first. Unlike legacy identity governance tools that catered to compliance officers with clunky interfaces and limited flexibility, Opal built for the people who would actually implement and maintain the system. The product needed to integrate seamlessly into existing workflows, support API-first architectures, and handle the complexity of modern cloud environments.
The technical-first approach created a natural expansion path. “We found our best customers were those companies where an engineer discovered us, started using the free tier, then brought us into their organization,” Umaimah notes. These weren’t top-down mandates—they were bottom-up adoptions driven by teams solving real operational problems.
The Enterprise Sales Pivot That Changed Everything
Despite strong product-market fit with technical teams, Opal hit a ceiling with mid-market deals. The breakthrough came from recognizing that enterprise sales required fundamentally different positioning. “When we started going upmarket and selling to Fortune 500 companies, we realized we needed to change our messaging,” Umaimah says. “We weren’t just selling to engineers anymore. We were selling to CISOs, to boards, to compliance teams.”
The shift required elevating the conversation beyond technical specifications. Identity governance needed to connect to business outcomes: audit readiness, risk reduction, operational efficiency. “We started talking about identity governance as a strategic initiative, not just a compliance checkbox,” Umaimah explains. “These were conversations about how identity sprawl creates business risk, how access creep increases attack surface, how manual reviews waste engineering time.”
This messaging evolution unlocked larger deals with longer sales cycles. But it also introduced new challenges. Enterprise sales meant navigating complex procurement processes, managing multiple stakeholders, and proving ROI to finance teams who viewed security as pure cost center.
Navigating Technical Complexity in Sales Conversations
One of Opal’s biggest GTM challenges was explaining technical depth without losing executive audiences. Identity governance involves intricate concepts—just-in-time access, privilege escalation workflows, entitlement mapping across dozens of systems. “You’re trying to explain why dynamic access is more secure than standing privileges, but the person across the table just wants to know if this helps them pass their SOC 2 audit,” Umaimah describes.
The solution was creating multiple narrative layers. For CISOs and board members, conversations focused on risk frameworks and compliance outcomes. For VP Engineering, discussions centered on developer productivity and operational overhead. For security engineers evaluating the product, Opal went deep on technical architecture and integration capabilities.
“We had to get really good at reading the room,” Umaimah says. “Sometimes you’re presenting to a mixed audience—CISO, CFO, and head of engineering all in the same meeting. You need to address everyone’s concerns without losing anyone.”
Category Creation Through Customer Education
Opal wasn’t just selling a product—they were creating a new category. Identity governance existed before Opal, but primarily as a legacy IGA (Identity Governance and Administration) market dominated by tools built for on-premise environments. Cloud-native identity governance was largely undefined.
“We spent a lot of time educating the market,” Umaimah explains. “Writing content, doing webinars, speaking at conferences—all focused on why identity governance needs to evolve for modern infrastructure.” This content strategy served dual purposes: generating inbound leads while establishing Opal’s thought leadership in the space.
The educational approach extended to sales conversations. “We often spent the first meeting just explaining the problem, not even talking about our solution,” Umaimah notes. “Many companies didn’t realize they had an identity governance problem until we showed them their own access data.”
Building Sales Infrastructure for Scale
Reaching $50 million ARR required building enterprise sales infrastructure from scratch. “We had to professionalize everything,” Umaimah says. “Hire experienced enterprise AEs, build out sales engineering, create proper deal review processes, implement Salesforce correctly—all the blocking and tackling of enterprise sales.”
The team invested heavily in sales enablement. “We created detailed battle cards, competitive positioning documents, ROI calculators, reference architectures,” Umaimah explains. “Our sales team needed to handle objections about budget, timing, competitive alternatives, and technical requirements—often all in the same deal.”
Perhaps most critically, Opal aligned compensation with strategic goals. “We structured our sales comp to reward larger deals with better margins,” Umaimah notes. “We wanted our team focused on enterprise accounts, not churning through small deals.”
The Path Forward
Opal’s GTM evolution from engineering-led bottoms-up to strategic enterprise sales demonstrates how technical products can scale by connecting deeply technical value to business outcomes. The lesson isn’t about choosing between technical and executive buyers—it’s about serving both simultaneously with different narratives that ultimately converge on the same solution.
For founders building in complex technical spaces, Umaimah’s approach offers a framework: start with practitioners who feel the pain most acutely, prove value in production environments, then systematically build the positioning and processes needed to sell strategically into enterprise accounts.
Recommended Founder
Interviews
Alan LeFort
CEO of StrongestLayer
How StrongestLayer achieved 85% meeting-to-POC and 100% POC-to-win rates using transparent one-week pilots | Alan LeFort
Michael Assraf
CEO & Co-Founder of Vicarius
Michael Assraf, CEO of Vicarius: $29 Million Raised to Build the Future of Vulnerability Prioritization
Neil Serebryany
CEO and Co-Founder of CalypsoAI
Neil Serebryany, CEO & Co-Founder of CalypsoAI: $38 Million Raised to Power the Future of AI Security
Stijn Vande Casteele
Founder of Sweepatic
Stijn Vande Casteele, Founder of Sweepatic: $4.4 Million Raised to Build the Future of External Attack Surface Management
Ryan Schonfeld
Founder & CEO of Hivewatch
Ryan Schonfeld, CEO of Hivewatch: $25 Million Raised to Build the OS of Physical Security
Peter Dvorak
Founder & CEO of Wultra
How Wultra built category leadership as the only post-quantum provider for banking digital identity | Peter Dvorak
Bill Moore
CEO and Founder of XONA
Bill Moore, CEO and Founder of XONA: $30 Million Raised to Build the Future of OT User Access
David Etue
CEO of Nisos
David Etue, CEO of Nisos: $33 Million Raised to Build the Future of Managed Intelligence
Tony Lombardo
VP of Marketing of ThreatModeler Software
Why 99% of Cybersecurity Marketers Are Doing Demand Gen Wrong
Jessica Pratt
Director of Marketing and Communications of Peak Metrics
How PeakMetrics Turns Product Data Into Marketing Gold
Ryan Lasmaili
CEO & Co-Founder of Vaultree
Ryan Lasmaili, CEO of Vaultree: $16 Million Raised to Build the World’s First Fully Functional Data-in-Use Encryption
Pukar Hamal
CEO and Founder of SecurityPal
Pukar Hamal, CEO and Founder of SecurityPal: $21 Million Raised to Power the Future of Customer Assurance
Mollie Breen
CEO and Co-Founder of Perygee
Mollie Breen, CEO and Co-Founder of Perygee: $6.4 Million Raised to Build the Future of IT/OT Security
Dimitri Sirota
CEO & Co-Founder of BigID
Dimitri Sirota: The GTM Story of BigID ($1.25 Billion Valuation)
Tiffany Ricks
CEO and Founder of HacWare
Tiffany Ricks, CEO and Founder of HacWare: $2.6 Million Raised to Build the Future of Security Awareness
Lisa O’Reilly
Vice President of Marketing of iVerify
How iVerify’s First Marketing Hire Built a Research-Driven Engine
Russell Spitler
CEO & Co-Founder of Nudge Security
Russell Spitler, CEO & Co-Founder of Nudge Security: $17 Million Raised to Build the Future of SaaS Security
Justin Beals
CEO, Co-Founder of Strike Graph
Justin Beals, CEO of Strike Graph: $12 Million Raised to Build the Future of Automated Security and Compliance
Tony Scott
CEO & President of Intrusion
How the ex-White House CIO turned around a failing cybersecurity company by fixing the product first | Tony Scott
Aurelie Guerrieri
Chief Marketing & Alliances Officer of DataDome
Aurelie Guerrieri, Chief Marketing & Alliances Officer at DataDome: 20 Years in Silicon Valley – Insights on the Evolving Tech Landscape
Adam Cecchetti
CEO & Co-Founder of Staris AI
Adam Cecchetti, CEO & Co-Founder of Staris AI: $5.7 Million Raised to Build Total Context Security for Application Protection
Austin Gadient
CTO & Co-Founder of Vali Cyber
Austin Gadient, CTO & Co-Founder of Vali Cyber: $15 Million Raised to Build the Future of Linux Security
Dan Lorenc
CEO & Founder of Chainguard
Dan Lorenc, CEO & Founder of Chainguard: $250 Million Raised to Power the Future of Software Supply Chain Security
Spencer Thompson
CEO and Co-Founder of Prelude
Spencer Thompson, CEO and Co-Founder of Prelude: Over $30 Million Raised to Build the Future of Continuous Security Testing
Tom Jermoluk
CEO of Beyond Identity
Tom “TJ” Jermoluk: The GTM Storyteller of Beyond Identity ($1.1 Billion Valuation)
Colby Proffitt
VP of Marketing of Shift5
From the Pentagon to B2B: Colby Proffitt’s Journey and ABM Insights
Danny Lopez
CEO of Glasswall
Danny Lopez CEO of Glasswall: $60+ Million Raised to Make the Content Disarm and Reconstruction (CDR) Category Mainstream
Mykolas Rambus
CEO & Co-Founder of Hush
Mykolas Rambus, CEO & Co-Founder of Hush: $7.5 Million Raised to Build the Future of Data Privacy
Itzik Alvas
CEO & Co-Founder of Entro Security
Itzik Alvas, CEO & Co-Founder of Entro Security: $24 Million Raised to Build the Future of Non-Human Identity Management
Ori Eisen
CEO & Founder of Trusona
Ori Eisen, CEO & Founder of Trusona: $38 Million Raised to Power the Future of Account Takeover Prevention
Arie Zilberstein
CEO and Co-Founder of Gem Security
Arie Zilberstein, CEO and Co-Founder of Gem Security: $34 Million Raised to Power the Future of Cloud Detection and Response
Joshua Motta
CEO & Co-Founder of Coalition
Joshua Motta: How Coalition Created the “Active Insurance” Category ($5B Valuation)
Julie Preiss
Chief Marketing Officer of Centripetal
Why Your Cybersecurity Brand Sounds Like Everyone Else
Oren Kaniel
CEO & Co-Founder of AppsFlyer
Oren Kaniel: The GTM Story of AppsFlyer ($2 Billion Valuation)
Robert Cowart
CEO & Co-Founder of ElastiFlow
Robert Cowart, CEO & Co-Founder of ElastiFlow: $8 Million Raised to Power the Future of Network Performance and Security Analytics
Diana Rabba
Head of Marketing of Exein
Long Game Marketing: Building Trust in High-Stakes B2B Sales
Nadav Arbel
CEO & Co-Founder of Cyrebro
Nadav Arbel, CEO & Co-Founder of Cyrebro: $51 Million Raised to Build the Future of ML-Backed MDR
Christian Almenar
CEO & Co-Founder of Monad
Christian Almenar, CEO of Monad: $19 Million Raised to Solve the Cybersecurity Big Data Problem
John Milburn
CEO of Clear Skye
John Milburn, CEO of Clear Skye: More Than $20 Million Raised to Build the Future of Identity and Access Governance
Eddie DeCurtis
Co-Founder and CEO of Shush
How Shush differentiated against competitors by solving business operations, not just deploying technology | Eddie DeCurtis, Co-Founder & CEO of Shush Inc.
Arjun Bhatnagar
CEO & Co-Founder of Cloaked
Arjun Bhatnagar, CEO of Cloaked: $25 Million Raised to Build the Future of Data Privacy
Joe Levy
CEO of Sophos
Joe Levy, CEO of Sophos: $1.5 Billion ARR and the Future of Cybersecurity at Scale
David Brumley
CEO of Mayhem
David Brumley, CEO of Mayhem: $38 Million Raised to Build the Future of Security Testing
Dave Mor
CEO and Co-Founder of OneLayer
Dave Mor, CEO and Co-Founder of OneLayer: $15 Million Raised to Protect Private Cellular Networks
Peter Prizio Jr
CEO of SnapAttack
Peter Prizio Jr, CEO of SnapAttack: $8 Million Raised to Power the Future of Threat Management
Tom Tovar
CEO and Co-Founder of AppDome
Tom Tovar, CEO of AppDome: Over $26 Million Raised to Build the Future of Mobile App Security
Josh Shaul
CEO of Allure Security
Josh Shaul, CEO of Allure Security: $6 Million Raised to Help Businesses Win the Battle Against Online Scammers
Paul Valente
CEO and Co-Founder of VISO Trust
Paul Valente, CEO and Co-Founder of VISO Trust: $17 Million Raised to Build the Future of Third-Party Cyber Risk Management
Stephen de Vries
CEO and Co-Founder of IriusRisk
Stephen de Vries, CEO and Co-Founder of IriusRisk: $40 Million Raised to Build the Future of Threat Modeling
Rohan Sathe
Co-Founder & CEO of Nightfall AI
How Nightfall AI uses CISO dinners to generate pipeline | Rohan Sathe
Kyle Hanslovan
CEO & Co-Founder of Huntress
Kyle Hanslovan, CEO of Huntress: $160 Million Raised to Build the Future of Managed Security
Matthew Howard
SVP & CMO of Virtru
How to Time Analyst Relations for Maximum Category Impact
Scott McCrady
CEO of SolCyber
Scott McCrady, CEO of SolCyber: $20 Million Raised to Build the Future of Managed Security
Edward Wu
CEO and Founder of Dropzone AI
Edward Wu, CEO & Founder of Dropzone AI: $20 Million Raised to Build the Future of AI SOC Analysts
Carole Winqwist
CMO of GitGuardian
How to Win with Rapid Response: GitGuardian’s Media Playbook
Ani Chaudhuri
CEO & Co-Founder of Dasera
Ani Chaudhuri, CEO & Co-Founder of Dasera: $21 Million Raised to Build the Future of Data Security
Jason Martin
Co-Founder and Co-CEO of Permiso Security
Jason Martin, Co-Founder and Co-CEO of Permiso Security: $10 Million Raised to Build the Future of Cloud Security
Ben Levine
Senior Director of Product Management and Marketing of Axiado Corporation
Building Marketing Guidelines That Actually Stick Across Teams
Mike Janke
Co-Founder of Data Tribe
Funding the Future: Mike Janke, Co-Founder of Data Tribe
Rodrigo Leme
Marketing Director of Right-Hand Cybersecurity
Rodrigo Leme, Marketing Director at Right-Hand Cybersecurity: Standing Out in a Crowded Market – Niche Targeting and Customer-Centric Approach
Jean Le Bouthillier
CEO of Qohash
Jean Le Bouthillier, CEO of Qohash: $20 Million Raised to Build the Future of Data Security
Ben Kliger
CEO and Co-Founder of Zenity
Ben Kliger, CEO and Co-Founder of Zenity: $21.5 Million Raised to Build the Future of Security and Governance for AI, Low-Code, and No-Code Development
Dimitri Sirota
CEO & Co-Founder of BigID
Dimitri Sirota: The GTM Story of BigID ($1.25 Billion Valuation)
Ken Bagnall
CEO & Founder of Silent Push
Ken Bagnall, CEO & Founder of Silent Push: $22 Million Raised to Transform Threat Intelligence Through Adversary Infrastructure Monitoring
Sivan Tehila
Founder and CEO of Onyxia
Sivan Tehila, Founder and CEO of Onyxia: $5 Million Raised to Build the Future of Cybersecurity Performance Management
Tom Jermoluk
CEO of Beyond Identity
Tom “TJ” Jermoluk, CEO of Beyond Identity: $200 Million Raised to Build the Future of Multi-Factor Authentication
Philippe Humeau
CEO of CrowdSec
Philippe Humeau, CEO of CrowdSec: $21 Million Raised to Build the Future of Cyber Threat Intelligence
Kyle Hanslovan
CEO & Co-Founder of Huntress
What happens when you outgrow your messaging? w/ Huntress CEO Kyle Hanslovan
Matteo Bogana
CEO and Co-Founder of Cleafy
Matteo Bogana, CEO & Co-Founder of Cleafy: $12 Million Raised to Build the Future of Online Fraud Prevention
Eric Olden
CEO and Founder of Strata Identity
Eric Olden, CEO and Founder of Strata Identity: $42 Million Raised to Build the Identity Orchestration Category
Amit Gupta
Senior Director of Marketing Operations of Fortanix
Why Marketing Ops Should Be Your First GTM Hire
Ian Amit
CEO and Founder of Gomboc
Ian Amit, CEO & Founder of Gomboc: $5 Million Raised to Build the Future of Cloud Security Remediation
Sebastian Stranieri
CEO & Founder of VU Security
Sebastian Stranieri, CEO & Founder of VU Security: $24 Million Raised to Build the Future of Digital Identity & Fraud Prevention
Bob Tinker
CEO & Co-Founder of BlueRock
How BlueRock identified three distinct buyer personas by asking “How would you describe what we do to your peers?” | Bob Tinker
Dan Lowden
CMO of Blackbird.AI
How to Create a Category: Dan Lowden’s 8-Exit CMO Playbook
Paul Lewis
Founder and CEO of Calamu
Paul Lewis, CEO of Calamu: $20 Million Raised to Build the Cyber Storage Category
Harley Sugarman
Founder & CEO of Anagram
Harley Sugarman, Founder & CEO of Anagram: $10 Million Raised to Transform Human-Driven Security
Marina Segal
CEO and Co-Founder of Tamnoon
Marina Segal, CEO & Co-Founder of Tamnoon: Over $5 Million Raised to Build the Future of Cloud Security
Ayal Yogev
CEO and Co-Founder of Anjuna
Ayal Yogev, CEO and Co-Founder of Anjuna: $42 Million to Build The Future of Confidential Computing
Michael Assraf
CEO & Founder of Flamingo
How Flamingo generated 1,000 waitlist signups before launching a product using a free community tool | Michael Assraf