Aqua Security, a Tel Aviv, Israel cybersecurity startup, announced on Sept. 19 that it had raised $25 million in a Series B round of financing led by Lightspeed Venture Partners, a record in the container security space, claimed the company. Other backers include Microsoft Ventures, TLV Ventures and Shlomo Kramer. To date, Aqua has attracted $38.5 million in venture funding.
The firm will use the cash to grow its sales and marketing operations, wrote Dror Davidoff, CEO and co-founder of Aqua Security, in a blog post. The company already has a head start, having quadrupled in size and made clients out of three of the world’s top 10 independent software vendors (ISVs) and two of the 10 largest financial services firm since its Aqua Container Security Platform launched in May 2016, said the company.
The product uses automation and machine learning technologies along with threat intelligence to improve security throughout an application’s lifecycle, which has experienced massive acceleration with the advent of agile DevOps-enabling container platforms like Docker. And for threat-resistant containerized applications, the earlier security is baked into the development process, the better, said Amir Jerbi, CTO and co-founder of Aqua Security.
According the executive, “the potential for containers to bake security into the fabric of the application by securing the entire development pipeline is unprecedented. A container driven development process provides also better control over application behavior and networking.”
To achieve this, Jerbi advocates a “shift left” approach–where security work begins in the earliest stages of the development cycle—using automated controls that profile and whitelist legitimate container behavior. “Without these measures, it would be difficult to control the inflow of new and updated code, as well as have visibility into what’s running where and what constitutes an anomaly,” he added.
To help enterprise development teams deliver safer software, Aqua Security capitalizes on the “inherent benefits of containers,” noted Jerbi. “Since containers are immutable, it’s easy to detect when something or someone is trying to tamper with them [at] runtime.”
“Since containers have a simple, often single-purpose functionality, it’s easy to understand their intended behavior and use a whitelisting approach. And since containers bring networking much deeper into the application than before, it’s easier to prevent lateral movement and limit the blast radius of a potential attack,” continued Jerbi.
“Aqua automates these processes across the entire container lifecycle, regardless if the container is in the dev cycle or if it’s in production,” he added.
Aqua Container Security Platform supports Linux and Windows containers and multiple orchestration environments. It can be used in Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platfrom and other public cloud environments or in on-premises deployments.