– csoonline.com
Aembit produces a cloud-based identity platform that lets DevOps and security teams discover, manage, enforce, and audit access between federated workloads. Founded in 2021, Akto focuses on API security. The company claims its platform, run locally or in the cloud, discovers and tests internal, external, and third-party APIs. It then finds vulnerabilities quickly during runtime. Axiado develops trusted control/compute unit (TCU) processors that offer hardware-based and AI-driven security technologies. Backslash Security, a cloud-native application security solution for enterprise AppSec teams, provides unified security and business context to cloud-native code risk, as well as automated threat modeling, code risk prioritization, and simplified remediation across applications and teams. Binarly is an advanced automated firmware supply chain security platform that employs machine-learning techniques to both known and unknown vulnerabilities, misconfigurations, and malicious code in firmware and hardware components. BoostSecurity offers a DevSecOps automation platform that it claims can help detect and remediate vulnerabilities while allowing DevOps to work at its own pace. BreachQuest’s Priori incident response platform promises to collect and analyze security event data quickly to scope and contain attacks as well as speed recovery. Threat identification and mitigation company Camelot Secure offers “an offensive approach” to cybersecurity offering vulnerability assessments, risk assessments, red teaming, cyber threat hunting, and cyber threat intelligence analysis employing artificial intelligence and machine learning. Threat identification and mitigation company Camelot Secure offers “an offensive approach” to cybersecurity offering vulnerability assessments, risk assessments, red teaming, cyber threat hunting, and cyber threat intelligence analysis employing artificial intelligence and machine learning. Cybersecurity company Circle Security has developed a platform “purpose-built” to protect against credential-driven threats and cloud attacks. Founded in 2022, CommandK offers management solutions for the end-to-end lifecycle of sensitive data within a company’s virtual private cloud. Its platform aims to ensure zero developer dependency in managing sensitive data, allowing security teams to attain a high order of security while letting developers focus on building features. California-based Confidencial produces a solution for the secure sharing of sensitive information within unstructured documents. Conveyor, founded in 2021, offers a way to make filling out customer security questionnaires easier. AI security and trust software firm Cranium offers the Cranium Enterprise software platform, aimed at helping organizations map, monitor, and manage AI/ML environments against threats without interrupting how teams train, test, and deploy their AI models. Cyclops offers a search engine powered by generative AI to answer critical and timely questions about the state of an organization’s security posture and provide proactive defense against cyber threats and address vulnerabilities. Descope is an authentication and user management platform for passwordless authentication. The DoControl platform provides automated, self-service tools for data access monitoring, orchestration, and remediation of SaaS applications. Billing itself as “the world’s only fly-direct secure web gateway (SWG),” dope.security performs security directly on the endpoint instead of routing traffic through stopover datacenters. Hush offers AI-based digital privacy services for individuals and families, but it also has an enterprise-grade product to protect workforce privacy. Launched in 2023, Inside-Out Defense claims to be “the cybersecurity industry’s first platform to solve privilege access abuse.” Emerging from stealth mode in December 2022, Interpres Security offers a platform that allows organizations to better manage their “defense surface.” It will show what their current security toolset can detect and defend against. Kodem claims to be the “world’s first dynamic software composition platform.” Naxo Labs was founded in 2022 by a group of noted experts and former FBI special agents to provide forensic and investigation services. The company works on cases involving cybercrimes such as insider threats or intellectual property theft and packages the facts for referral to law enforcement or for litigation. Nudge Security offers a solution aimed at managing the security of software as a service (SaaS) for distributed workforces. Its platform allows for the discovery of cloud SaaS assets created without the need for network changes, endpoint agents, or browser extensions. Founded in 2022, Oligo offers an open-source security platform that detects and prevents attacks such as Log4Shell by monitoring malicious activity at the library level. Piiano offers two products: Piiano Scanner scans source code for references to personally identifiable information (PII), and Piiano Vault secures sensitive data while allowing it to be used. Scanner can scan any Java or Python GitHub projects on a single click and is intended to improve collaboration between development and privacy teams. The Privya platform is able to discover and identify personal data across multiple data sources and map the data flow and business logic. It also provides an automated architecture to better meet compliance requirements. Protect AI is an artificial intelligence and machine learning security company that help organizations protect ML systems and AI applications from unique security vulnerabilities, data breaches and emerging threats. Its platform, AI Radar, “helps organizations build safer AI by providing developers, ML engineers, and AppSec professionals a way to see, know, and manage an ML environment,” according to the company. Savvy’s workforce security automation platform addresses human error by giving SecOps visibility and security automation playbooks for orchestrating SaaS incident response before an unsecure action takes place. Founded in 2020, Sharepass provides a means to share confidential information securely across platforms. SnapAttack provides a purple-teaming platform that the company claims to address the entire threat detection process. The platform includes an Attack Signal Library that catalogs attack threats and simulations. SquareX is developing a browser-based cybersecurity product to keep consumers safe online. Identity and access management (IAM) governance company Stack Identity targets the problem of shadow access –unauthorized, unmonitored, and invisible cloud data access patterns created by the myriad of human and machine cloud identities accessing the cloud. The TrustCloud platform is intended to help companies pass audits, manage risk, and complete security reviews. Business payments security company Trustmi offers an end-to-end solution aimed at helping businesses protect their bottom line by eliminating losses from cyberattacks, internal collusion, and human error. Valence Security, founded in 2021, offers a platform to remediate SaaS security risks around third-party integration, identity, misconfiguration, and data sharing. The platform provides its own cross-SaaS data and permissions model to help maintain access control. Trust management platform developer Vanta has launched its Vendor Risk Management product, providing third-party vendor security reviews and due diligence. Vaultree, founded in 2020, has developed what it claims is the first “fully functional” data-in-use encryption software development kit (SDK). The product is designed to eliminate the risk of data being leaked or stolen in plaintext form. Veza provides an authorization platform for data for use in hybrid, multi-cloud environments. The company claims it enables organizations to better understand, manage, and control who can and should take actions on data. Wing’s platform is designed to detect and automatically remediate SaaS application threats. It continuously monitors usage for every user, app and file.
Link: https://www.csoonline.com/article/574053/cybersecurity-startups-to-watch-for-2023.html
Cybersecurity startups to watch for in 2023
Categories:
Tags: