Back to Work

Security & Identity · Builder.ai

Zero Trust at Scale

IAM/IGA platform for 2M+ enterprise users — from 0 to production.

Feb 2024 – May 2025

2M+

Active Users

40

Enterprise Clients

65%

Onboarding Time Reduction

90%

Excess Permissions Eliminated

40%

Unauthorized Access Reduction

The Problem

Builder.ai was scaling rapidly across 40 enterprise clients — but had no centralised identity layer. Onboarding took weeks, access sprawl was endemic, and there was no audit trail. Every privileged action was a compliance risk.

The Approach

  • 01Mapped the full access lifecycle — provisioning, reviews, de-provisioning — across all 40 clients
  • 02Defined RBAC/ABAC entitlements per role family, scoped to tenant boundaries
  • 03Converted IAM into an API-first service with automated provisioning and SoD controls
  • 04Led DevSecOps to implement WAAP-aligned API gateways with OAuth2 scoped tokens
  • 05Built audit-ready evidence pipelines for compliance reviews

Impact

  • 65% reduction in onboarding time across 40 enterprise clients
  • 90% of excess permissions eliminated at launch
  • 40% reduction in unauthorized API access attempts
  • Mitigated scraping abuse from high-volume API consumers
  • Platform scaled to 2M+ active users with zero trust at every layer
All case studies