Artificial Intelligence, Machine Learning, Cloud Security, Next Generation Technologies and Secure Development
The company focuses on runtime context and AI optimizations to address evolving cloud threats
Michael Novenson (Michael Novenson) •
December 2, 2024
A cloud security startup led by a former NetApp executive has raised $100 million to help organizations effectively filter and remediate vulnerabilities through runtime context scanning.
See also: Uncovering the Threat Landscape: 2024 Resilient Global Threat Report
Upwind Security said the Series A proceeds will help the San Francisco-based vendor address long-term cloud security challenges such as API protection, misconfiguration management and vulnerability detection while integrating functionality, according to co-founder and CEO Amiram Shashar. Upwind will also invest in artificial intelligence to simplify the process of identifying threats and securing AI-driven operations, he said.
“Sometimes, startups raise money and use it to expand into new products,” Shashar told Information Security Media Group. “But in reality, what we will do with this money is deepen our existing capabilities because we see that customers will continue to buy from us if we give them the best-in-class product.”
Upwind, founded in 2022, employs 150 people and has secured $180 million in external funding, including a $50 million cash infusion in September 2023. The company has been led since its inception by Shachar, who previously sold cloud infrastructure optimization company Spot. io. to NetApp for $450 million in July 2020. Upwind has tripled its valuation over the past 15 months to $900 million, according to sources.
Why runtime remains the right approach to securing the cloud
Upwind will use the latest proceeds to double its headcount to 300, adding 50 engineers to enhance the platform's capabilities as well as 50 to 75 go-to-market employees focused on enhancing customer engagement efforts globally, Shashar said. Shashar said the funds will be allocated to improving core capabilities rather than diversifying too early, which will ensure quality services are provided to existing clients.
“In these markets, when you can grow faster, you need to do a lot of upfront evaluation,” Shachar said. “It also allows us to be a significant player in the market while we are still only two years old.”
While traditional cloud security tools focus on static data and configurations, Shachar said Upwind uses real-time runtime insights to deliver accurate, actionable security recommendations. He said customers experience a significant reduction in critical alerts due to the accuracy of runtime filtering, as the company applies runtime context to vulnerability and identity management, not just detection and response.
“How is technology required? How does this configuration relate to real risk? Same for vulnerability, same for identities,” Shachar said. “This really helps customers go from thousands of alerts to just a few.”
Application programming interfaces (APIs) are the backbone of modern applications, but Shachar said their security remains an ongoing challenge with risks such as identity mismanagement and data leaks emerging as well as the need for contextual integration. By integrating API security into a unified cloud security stack, he said Upwind addresses API vulnerabilities in the context of broader cloud risks, reducing cost and complexity.
“The API is not an independent activity that can be viewed as an independent control panel,” Shachar said. “It's really a dashboard that needs to be cohesive with other security functions. The API is the cornerstone. It's a core capability. We were this overarching concept, and we tried to solve it with a different product than just creating more code in there.”
How the AI is progressing in the Upwind mission
Shachar said Upwind leverages AI to enhance operational efficiency as well as to secure training and deployment of AI models, and to address the unique vulnerabilities of AI-driven operations. Upwind uses AI to reduce the time needed to discover, resolve and prioritize vulnerabilities as well as fix risks related to the training and operation of AI systems such as data poisoning and model manipulation.
“You need to secure this process,” Al-Shashar said. “You need to make sure that someone isn't sending the wrong data. Someone isn't poisoning your model. AI has a lot of open source dependencies, so you want to make sure that someone is sitting between you and your model and actually telling you the right AI to do something.” “
Upwind competes primarily with Palo Alto Networks, CrowdStrike and Wiz, and Shachar said his company excels because its technology is not tied to legacy endpoints or network tools, or fragmented by acquisitions. Unlike legacy cloud security technologies that focus on visibility and inventory, Shashar said Upwind emphasizes runtime context and API integration to properly meet the needs of more advanced customers (see: Wiz Boosts Application Security with $450M Dazz Acquisition).
“We don't rely on legacy technology or acquisition groups,” Shachar said. “So, we have a really good opportunity to deliver a much better product experience.”
Upwind has excelled with organizations with 1,000-10,000 employees who have significant use of cloud, containers, virtual machines, and serverless, but have retained the flexibility to adopt new solutions. While North America represents 80% of Upwind's business today, Shashar said Upwind will hire technical sales professionals to engage with European customers on both a technical and strategic level.
“There will be tens of thousands of security projects for companies to replace their security tools and take their security to the next level,” Shashar said. “When you have a great product and when you have the right amount of funding, you can build a great company.”
