Britive in May partnered with Tevora to reduce security risks related to cloud data breaches, simplify and standardize the privilege authorization process, and achieve operational efficiency by managing the entire user and system account life cycle. Combining Britive’s privileged access platform with Tevora’s expertise in cybersecurity, risk and compliance should provide comprehensive security for the cloud. Paris-based GitGuardian is a cybersecurity startup working to solve the issue of secrets sprawling through source code, a problem that leads to credentials ending up in compromised, or even public, places. The company, founded in 2017, says it solves this issue by automating secrets detection for application security and data loss prevention.
Trend Micro is a global leader in hybrid cloud security and provides an integrated and automated approach for protecting data, users, and applications, no matter where they are located. Trend Micro Hybrid Cloud Security solutions provide protection across on-premises and cloud environments. Symantec, one of the most recognizable names in cybersecurity, has been part of Broadcom since 2019.
The tool produces only actionable and high confidence alerts, which in turn requires minimal work from the security team and enables them to quickly prioritize and respond to threats in their cloud infrastructure. SafeBase is a trust-focused security platform streamlining the third-party risk management process between companies. Through the Smart Trust Center, companies can quickly share their private documents, compliance policies, risk profile, and product security details.
Ethyca can automate compliance tasks, including real-time data mapping, automated subject requests, consent management, and subject erasure handling. SpiderSilk offers an impressive proprietary internet scanner that maps out a company’s assets and network attack surface to detect vulnerabilities. Over the years, SpiderSilk’s research has informed several high-profile breaches, and for clients, the vendor can simulate cyberattacks to ensure organizations take preventive measures before the real thing.
Upgrade for full access
Our top startups are independent companies with innovative cybersecurity products or services, with a viable business plan with evidence of scalability. For this list we’ve generally favored companies that have been around for 5 years or less and are still in their first few rounds of funding, although older companies receiving renewed investor interest have also made this list. Sources include our observations and analysis of the cybersecurity market and startup databases such as Growjo and Crunchbase. Within the United States, the San Francisco Bay Area remains the hottest region for startups. The second-largest contingent of cybersecurity startups is a continent away from Palo Alto, in New York City.
The company’s platform is a SaaS offering with a distributed architecture and works immediately without any installation, configurations or modifications. Founded in 2018, Fuzzbuzz has developed an automated fuzzing tool that runs code through procedurally generated test cases to find bugs and vulnerabilities. The company says its fuzzing platform does not require any security knowledge to use, allowing developers to get started in under 30 minutes. Rama Sekhar, a partner at venture capital firm Norwest Venture Partners, told Insider that an authorization platform like Veza can help companies pinpoint unprotected data.
The United States, Israel, Canada, and the United Kingdom continue to be popular national locations for cybersecurity startups, with most of the funding directed between the first two. A leading startup hailing from Latin America, Truora offers a stack of solutions to simplify and secure user interactions. On top of solutions for chatbots, electronic signatures, and employee background checks, Digital Identity by Truora helps organizations quickly and safely verify online identities by validating documents, email, and phone, facial recognition, and more. SnapAttack is a threat hunting and detection startup recently spun out from Booz Allen’s DarkLabs incubator. SnapAttack seeks to empower clients with proactive threat intelligence, behavioral analytics, and attack emulation through a collaborative platform.
- Seemplicity also automates identification of remediation owners and tracks remediation progress.
- Vanta is a security and compliance automation platform that simplifies the process of achieving and maintaining compliance certifications such as SOC 2, ISO 27001, and HIPAA.
- Versa Networks is a leading provider of secure SD-WAN solutions that enable organizations to optimize their WAN connectivity while maintaining a strong security posture.
- According to the company, the platform will give companies and their insurance providers greater clarity on companies’ true digital risk.
Lightpsin is a cloud-native application protection platform (CNAPP) offering agentless tools to protect cloud and virtual environments, including Kubernetes infrastructure. With graph-based analytics into existing relationships, the startup’s solutions help visualize prospective attack routes so clients can prioritize sensitive remediation within their cloud stack. Satori is a data access startup for monitoring, classifying, and controlling access to sensitive data. Satori’s platform creates a layer of protection and visibility between data users and data stores to guard against vulnerabilities related to transferring sensitive data. Ultimately, Satori aims to provide data access control, visibility into usage and traffic, and compliance fulfillment. We’ll start with the top 20 startups overall and then look at other noteworthy startups in a number of markets, including threat detection, identity, DevSecOps, cloud security, and attack surface management.
Submit or Claim Your Company
Investors also want to see financial reports and revenue growth projections backed up by market analysis.
Built on zero-trust, Application Access Cloud offers a new agentless model that connects users online to any application, private or public, without touching the network or the apps themselves. Axis Security is a privately held company backed by Canaan Partners, Ten Eleven Ventures and Cyberstarts. Axis https://www.globalcloudteam.com/ is headquartered in San Mateo, California, with research and development in Tel Aviv, Israel. Black Hat USA 2023 also featured an emphasis on early stage innovation with its “startup spotlight,” a competition that selected four cybersecurity startups—Binarly, Endor Labs, Gomboc and Mobb—as finalists.
Best Compliance & Governance Startups
It says companies like the content-management system WordPress and the recruiting software SmartRecruiters use the product. Sai Senthilkumar, an investor at Redpoint, told Insider that the platform helps organizations eliminate software vulnerabilities. Incident.io is backed by VC firms such as Index Ventures, Point Nine Capital, and Mantis VC. Incident.io says companies like Loom, a video-messaging tool, Linear, an issue-tracking firm, and Vanta, which makes security-compliance software, use the platform. Mellen said companies have become more prone to attacks that can cost them tens of millions of dollars to fix as they move to the cloud. As a result, hackers are developing more sophisticated ways to steal data — even legacy tech companies such as Cisco, Nvidia, and Twilio with established internal security measures were victims of attack this year, Mellen said.
That data is protected with security controls while it is stored, moved, copied or transacted. It can also prioritize risks around cloud data based on the value of the data and who is accessing it. Launched in 2020, SafeBase’s Smart Trust Center claims to simplify cloud security providers security and compliance reviews, more easily communicate a company’s security posture, and automate non-disclosure agreements (NDAs). Its goal is to speed the sales process at a time when corporate customers have heightened concerns about third-party risk.
Fend: IoT security and intelligence [Early Stage Expo 8]
Additional trends in cybersecurity include the zero-trust movement, a software-driven approach to verifying user or application identity across multiple vectors; and confidential cloud – securing data in cloud computing environments. Dasera is a data lifecycle security platform for cloud data warehouses and data stores. Dasera’s Radar and Interceptor products deliver visibility, governance, and remediation solutions for data-agile companies. Blumira’s end-to-end platform offers both automated threat detection and response, enabling organizations of any size to more efficiently defend against cybersecurity threats in near real-time. Revelstoke offers what it claims is the first low-code security orchestration, automation and response (SOAR) platform.