OmniTrust (formerly INTEGRITY Security Services): Company Profile

OmniTrust Bets Its Green Hills Pedigree Can Bridge Silicon Trust to AI Agent Governance — But Must Prove It Commercially

OmniTrust, the Santa Barbara-based security software company spun out from Green Hills Software's INTEGRITY Security Services (ISS) division in late 2024, made its formal market debut at RSA Conference 2026 in March with a Trust Lifecycle Management (TLM) platform claiming coverage from hardware silicon through to autonomous AI agent authorization. The company inherits decades of embedded safety-critical security work across automotive, aerospace, and defense programs — a genuine technical foundation — but enters the market as a commercially unproven entity with no disclosed financials, no named customers, and several product layers whose depth remains unverified.

Product Portfolio — OmniTrust (formerly INTEGRITY Security Services)

OmniTrust's defensible differentiation is the hardware root-of-trust integration from silicon level upward — a capability that SaaS-native identity vendors cannot replicate quickly.

Signal Activity — OmniTrust (formerly INTEGRITY Security Services)

Competitive Positioning — OmniTrust (formerly INTEGRITY Security Services)

Business Profile

OmniTrust operates as an independent software vendor following its spinout from Green Hills Software, where it functioned as the INTEGRITY Security Services business unit. CEO and co-founder David Sequino leads the company, bringing embedded-security domain expertise from the Green Hills lineage. No funding disclosures, revenue figures, employee count, or ownership structure have been made public — a transparency gap that complicates any investment or procurement diligence.

The company targets five verticals: automotive and connected mobility, aerospace and defense, energy and utilities, financial services, and healthcare. Its go-to-market spans OT, IT, and AI buyer groups simultaneously — an ambitious cross-domain play that requires significant sales infrastructure and partnership depth that a newly independent company has yet to demonstrate.

MODERATE CONFIDENCE: The spinout timeline and Green Hills lineage are confirmed. Commercial structure and financial position are unverifiable.

Technology Architecture

The TLM platform is structured as three integrated layers:

Layer	Product	Deployment Status	Key Capability
Hardware/Firmware	Device Lifecycle Management (DLM)	FIELDED	Secure provisioning, identity injection at silicon/firmware, OTA integrity
Cloud/Identity	Identity Lifecycle Management (ILM)	FIELDED	Certificate, key, and secrets governance; no volume-based metering
AI Agent	TrustAI	LIMITED	Policy-based identity, authorization, and monitoring for autonomous AI agents
Unified Control Plane	TLM Platform	LIMITED	Continuous trust thread: silicon → firmware → device → cloud → NHI → AI agent

The DLM layer is the most credible component, inheriting ISS deployment history in safety-critical embedded programs. ILM's flat-rate pricing model — explicitly avoiding per-certificate metering — is a commercially meaningful differentiator for large robotic fleet operators facing non-human identity (NHI) sprawl. The TrustAI layer is the least substantiated: supported agent frameworks, authorization models, telemetry schemas, and integration points with MLOps, SIEM, or IAM stacks have not been publicly specified.

The platform claims quantum-resilient cryptography and alignment with EU NIS2, DORA, and CRA regulatory frameworks — positioning it for compliance-driven procurement cycles in European critical infrastructure.

Market Position

OmniTrust's claimed installed base — 2 billion+ devices protected and 3 billion+ software updates secured annually, across "many Fortune 100" customers — is inherited from ISS operations and has not been independently audited. HIGH CONFIDENCE that ISS had meaningful embedded deployments in automotive and aerospace supply chains; LOW CONFIDENCE on the specific figures as stated.

The competitive landscape is crowded and accelerating. At RSAC 2026 alone, Cisco, CrowdStrike, Wiz, and Datadog each announced AI agent security capabilities, directly overlapping with TrustAI's positioning. Established machine identity incumbents — including Venafi (acquired by CyberArk), DigiCert, and Keyfactor — can extend into device lifecycle management from their existing PKI infrastructure. Cloud IoT platforms from AWS, Azure, and Google provide device provisioning and OTA at hyperscaler scale.

OmniTrust's defensible differentiation is the hardware root-of-trust integration from silicon level upward — a capability that SaaS-native identity vendors cannot replicate quickly. The coherent silicon-to-AI-agent trust chain narrative also has no direct single-vendor equivalent today, though that gap is narrowing.

Outlook

The company's near-term credibility depends on a short list of concrete catalysts: named customer case studies with quantified outcomes, third-party security certifications, disclosed integrations with robotics middleware such as ROS 2 or industrial control platforms, and evidence of TrustAI depth beyond the launch announcement. A funding disclosure or major multi-year contract would materially change the risk profile.

EU regulatory enforcement timelines for NIS2, CRA, and DORA create a genuine demand signal for lifecycle trust governance — OmniTrust's regulatory alignment is well-timed if the company can convert it into contracted revenue before well-capitalized incumbents consolidate the space. The post-quantum cryptography migration cycle across automotive and defense fleets represents a second structural tailwind.

OmniTrust carries a WATCH rating. The embedded-security pedigree is real. The commercial execution is entirely unproven. The differentiation window is present but not wide, and it is compressing.