Modernizing Authentication — What It Takes to Transform Secure Access
ShiftLeft, a Santa Clara, Calif application security startup emerged from stealth on Oct. 11 after securing $9.3 million in a Series A round of funding. Bain Capital Ventures and Mayfield participated in the investment round along with a number of individual investors, including VMware COO Sanjay Poonen and Mesosphere CTO Tobias Knaup.
Today also marks the official launch of the company's automated ShiftLeft security as a service, enabling organizations to secure their rapidly-evolving cloud applications as they make their way through the software development process rather than react to threats after those applications are in production.
ShiftLeft accomplishes this by creating a Microagent, a custom and lightweight security software agent, that is "purpose-built for every version of every application" for each new software build, Manish Gupta, co-founder and CEO of ShiftLeft, told eSecurity Planet. ShiftLeft's technology, is able to "extract the security DNA," the security-related elements within an application's source code, each time changes are made to the software, enabling the platform to inject application-specific threat detection directly into today's fast-paced continuous integration and continuous deployment (CI/CD) processes.
"The single source of truth in an application is its source code," added Gupta, so it makes sense that it should dictate its security requirements. And the process of analyzing that source code and creating ShiftLeft Microagents is a swift one—it generally takes five minutes—hardly slowing the momentum built up by today's agile software development processes.
Continuing the DNA theme, ShiftLeft's "approach is synonymous [with] precision medicine (PM), a medical approach that proposes the customization of healthcare, with medical decisions, practices, or products being tailored to the individual patient," in an Oct. 11 blog post related to the launch.
ShiftLeft joins a long line of security startups to receive venture capital funding in recent months.
Last month, Aqua Security announced it had set a record for container security funding by raising $25 million in a Series B round of financing. Also in September, Threat Stack raised $45 million and IoT security startup Axonius raised $4 million. In August, fellow IoT security innovator ZingBox announced a $22 million Series B round.
One established security companies is making waves on Wall Street. After 17 years in operation, the network access control (NAC) vendor filed for an initial public offering (IPO) that could potentially be worth $100 million.