Ballistic Ventures

Veza is the data security platform that helps users use and share their data safely. It makes it easy to understand, manage, and control who can and should take what action on what data. It organizes authorization metadata across identity providers, data systems, cloud service providers, and applications, all to address the toughest data security challenges of the modern era. The company is funded by top-tier investors including Accel, Bain Capital, Ballistic Ventures, Blackstone, GV, Norwest Venture Partners, and True Ventures.

AuthMind is a firm specializing in identity security. It employs access neural network technologies to identify and prevent hidden identity risks continuously.

GetReal specializes in advanced digital content verification and real-time communication security. It offers solutions to detect and authenticate content, safeguarding against manipulation and deception by malicious synthetic content and deepfakes.

SpecterOps is a cybersecurity firm offering products, services, and training to help enterprises safeguard against sophisticated attacks. They assist businesses in closing attack vectors, evaluating and enhancing security operations programs, providing advanced adversary Tactics, Techniques, and Procedures (TTPs) training, and supporting industry initiatives.

Gomboc is a developer of an artificial intelligence-based cybersecurity platform focused on enhancing the security of cloud infrastructure. The company addresses security policy deviations by providing tailored remediations for Infrastructure as Code (IaC), ensuring that functionality, architecture, performance, and resilience are preserved. This approach enables clients to effectively integrate cybersecurity measures into their cloud architecture, thereby improving overall security without compromising system efficiency or design.

Oligo aims to streamline open source usage by making it secure and easy to protect. Focusing developers on the relevant vulnerabilities makes the fixing process significantly shorter. Oligo aims to simplify the use of open-source software by providing precise security solutions that help developers focus on relevant vulnerabilities without compromising performance.

Noma is an security technology platform that helps to the secure management of data and AI lifecycles.

Concentric AI provides a data sensitivity and risk discovery platform that analyzes an organization’s documents in cloud and on premises to identify sensitive or business-critical information, assess the risk each item poses, and highlight urgent security concerns. Using deep learning, the system examines document content and context to enable discovery, monitoring, and protection of unstructured data such as confidential files and financial statements. The platform aims to help enterprises secure valuable information, simplify deployment, and reduce time to value by delivering clear, actionable insights across the full inventory of documents. The company was founded in 2018 and is headquartered in San Jose, California.

Hello Soju is a wine and spirits company that develops and retails soju seltzer and ultra-premium spirit.

Aembit is a provider of a Workload Identity and Access Management platform tailored for DevSecOps teams, enabling the automation of secure workload access. The platform acts as a centralized identity broker for various environments, including public clouds, SaaS applications, and data centers, streamlining the management of workload access throughout its lifecycle. Aembit's technology facilitates secure and seamless connections between client workloads and essential services such as APIs, databases, and cloud resources. It empowers enterprises to enforce access based on predetermined policies, issue necessary credentials, and monitor interactions between systems, thereby simplifying application development and delivery while ensuring robust security measures are in place.

WitnessAI develops a security platform that empowers enterprises to safely adopt and utilize generative AI. Its solution ensures visibility, privacy, and governance controls, enabling businesses to innovate while maintaining control over their AI activities.

Nudge Security is a cybersecurity company that safeguards modern organizations by empowering their workforce. It offers SaaS security and governance software, providing IT and security teams with comprehensive visibility of all SaaS and cloud assets, allowing employees to make secure decisions without hindering productivity.

Alethea is a technology company helping the Fortune 500, private companies and nonprofits protect themselves from harms stemming from disinformation. Leveraging its multi-channel machine learning platform, Artemis, Alethea detects disinformation narratives across the internet, enabling customers to proactively defend against this pervasive threat. With Artemis-powered early detection, Alethea customers can protect their reputations, key assets, physical safety and market value. The company was founded in 2019 and is woman owned.

CodeZero provides Teamspaces, a platform that unifies local development with cloud infrastructure to simplify and secure software development in multi-cloud environments. The system presents the entire cluster as a single machine and enables real-time control of traffic flows without requiring cloud infrastructure expertise. Developers can run real-time, ephemeral replicas of pre-production environments on their local machines, ensuring development mirrors production conditions and reducing configuration drift and deployment issues. By bridging local development with cloud services, Teamspaces aims to improve security, productivity, and simplicity in building software.

Reach Security empowers security leaders and operators to optimize their security investments. Its platform centralizes and automates security tools, offering control recommendations tailored to threat profiles, automated security tasks, and improved threat visibility.

ArmorCode provides an AI-powered AppSecOps platform that identifies, articulates, and remediates security risks across code, cloud, applications, and infrastructure. The platform supports application security posture management, vulnerability and compliance management, and DevSecOps automation, and integrates with a broad set of security tools to enable automated risk prioritization and remediation workflows. This helps security teams reduce risk, streamline security operations, and scale security impact across software development environments, effectively amplifying enterprise AppSec capabilities. Founded in 2020 and based in Palo Alto, California.

Stellar Cyber develops a comprehensive security platform that provides application and data protection services for organizations. Its platform offers data-driven cybersecurity, pervasive data collection, big data processing, event detection, artificial intelligence, high-fidelity alerting, next-gen SIEM, network security, intelligent Next-Gen SOC, asset management, log management, automated SOC, and security across clouds and containers.

SpecterOps is a cybersecurity firm offering products, services, and training to help enterprises safeguard against sophisticated attacks. They assist businesses in closing attack vectors, evaluating and enhancing security operations programs, providing advanced adversary Tactics, Techniques, and Procedures (TTPs) training, and supporting industry initiatives.

AuthMind is a firm specializing in identity security. It employs access neural network technologies to identify and prevent hidden identity risks continuously.

DevRev is a business software startup that focuses on bridging the gap between developers and customers by integrating development processes with customer relationship management (CRM). The company offers an artificial intelligence-native platform designed to enhance product development and customer service, enabling developers to build, support, and expand their offerings more efficiently. By adopting a product-led growth model, DevRev fosters direct collaboration and communication between developers and end-users, promoting customer-centric product development. Its unique approach allows for customizable analytics and low-latency insights, empowering companies to increase product velocity and minimize customer churn. DevRev's solutions are utilized by numerous organizations seeking to thrive in the rapidly evolving landscape of generative AI.

Coro is a developer of a comprehensive security platform designed to protect against a wide range of cyber threats, including malware, ransomware, phishing, and bots, across various devices and cloud applications. The platform utilizes artificial intelligence to autonomously detect and remediate security threats, minimizing the need for IT personnel to intervene in the investigation or resolution of issues. By securing the entire Software-as-a-Service (SaaS) chain—from users and devices to the network and cloud services—Coro eliminates the necessity for multiple security solutions, thereby reducing total cost of ownership. The cloud-based nature of the platform allows for quick deployment without the need for hardware installation, enabling organizations to enhance their cyber resilience efficiently.

Abnormal Security Corporation is a San Francisco-based company that specializes in cloud-based email security solutions for Microsoft Office 365 and G Suite. Founded in 2018, the company provides a comprehensive platform designed to protect enterprises from targeted email attacks. Utilizing a data science approach, Abnormal Security offers features such as inbound email protection, detection of email account compromises, and response capabilities. Its technology includes Abnormal Behavior Technology, which models identities of both employees and external senders, profiles relationships, and analyzes email content to prevent threats like credential phishing, internal phishing, employee impersonation, and invoice fraud. The company primarily serves industries including financial services, healthcare, and oil, gas, and utilities, aiming to mitigate risks related to account takeovers and financial losses.

Cado Security Ltd is a London-based company that specializes in developing a cloud-native digital forensics platform tailored for enterprises. Founded in 2020, Cado Security focuses on enabling organizations to investigate and respond to cyber incidents with speed and precision in cloud, container, and on-premise environments. Its flagship product, Cado Response, delivers forensic-level detail that helps security teams manage incidents effectively, minimizing both financial and legal risks associated with security breaches. The platform incorporates advanced analytics to facilitate comprehensive forensic acquisition and analysis, empowering organizations to address security threats promptly and efficiently.

Aembit is a provider of a Workload Identity and Access Management platform tailored for DevSecOps teams, enabling the automation of secure workload access. The platform acts as a centralized identity broker for various environments, including public clouds, SaaS applications, and data centers, streamlining the management of workload access throughout its lifecycle. Aembit's technology facilitates secure and seamless connections between client workloads and essential services such as APIs, databases, and cloud resources. It empowers enterprises to enforce access based on predetermined policies, issue necessary credentials, and monitor interactions between systems, thereby simplifying application development and delivery while ensuring robust security measures are in place.

Pangea is a developer of security APIs that offers a comprehensive portfolio of security services tailored for application builders. The company provides a single platform that simplifies the integration of security into cloud and mobile applications. Pangea's services are designed to be globally accessible while maintaining regional intelligence, making them suitable for diverse markets. Available on major cloud platforms such as AWS and GCP, Pangea enables clients—including app developers, SaaS providers, and security operations teams—to efficiently create secure and compliant user experiences. The company aims to make security accessible to all developers, eliminating the need for extensive security expertise.

ArmorCode provides an AI-powered AppSecOps platform that identifies, articulates, and remediates security risks across code, cloud, applications, and infrastructure. The platform supports application security posture management, vulnerability and compliance management, and DevSecOps automation, and integrates with a broad set of security tools to enable automated risk prioritization and remediation workflows. This helps security teams reduce risk, streamline security operations, and scale security impact across software development environments, effectively amplifying enterprise AppSec capabilities. Founded in 2020 and based in Palo Alto, California.

Alethea is a technology company helping the Fortune 500, private companies and nonprofits protect themselves from harms stemming from disinformation. Leveraging its multi-channel machine learning platform, Artemis, Alethea detects disinformation narratives across the internet, enabling customers to proactively defend against this pervasive threat. With Artemis-powered early detection, Alethea customers can protect their reputations, key assets, physical safety and market value. The company was founded in 2019 and is woman owned.

Perygee offers an integrated automation suite designed to streamline enterprise workflows. Its platform combines asset information management, security stakeholder collaboration, and no-code data modeling tools, aiming to enhance operational efficiency and cybersecurity.

Stairwell, Inc. is a cybersecurity company that specializes in developing software-as-a-service (SaaS) solutions designed to enhance threat detection and response capabilities for organizations. Founded in 2019 and headquartered in Palo Alto, California, Stairwell offers an innovative platform that automates threat analysis by treating all files as suspicious and preserving them as evidence. This approach allows security teams to conduct comprehensive compromise assessments rapidly, delivering timely reports on potential threats and their impact on the organization. The company's technology leverages artificial intelligence and machine learning to provide actionable insights, enabling security professionals to effectively track threats and their variants across their environments. Recognized as one of the most innovative companies of 2023 by Fast Company, Stairwell aims to empower security teams with advanced tools that enhance their ability to respond to cybersecurity incidents efficiently.

Open Raven, Inc. is a data security company that specializes in data protection through its innovative platform designed to assess and manage data risk for enterprises. Founded in 2019 and based in Los Angeles, California, Open Raven offers solutions that map data stores across cloud environments and corporate networks, enabling organizations to identify sensitive and exposed data. Its platform provides visibility and control to prevent data breaches, alerting security teams to potential risks and unauthorized access. With features such as pre-built connectors and an open-source model, Open Raven aims to empower businesses to safeguard their data effectively and manage compliance incidents in modern cloud infrastructures.

Talon Cyber Security is a provider of innovative cybersecurity solutions tailored for the distributed workforce. The company offers a next-generation secure browser that delivers enterprise-grade security to both managed and unmanaged devices, regardless of their location, type, or operating system. By addressing the unique threats associated with remote work and increased cloud usage, Talon empowers businesses to enhance productivity and flexibility while maintaining robust cybersecurity measures. Its technology is designed to effectively mitigate risks posed by the evolving landscape of cybersecurity threats, making it a valuable partner for organizations navigating the complexities of a hybrid work environment.

Pangea is a developer of security APIs that offers a comprehensive portfolio of security services tailored for application builders. The company provides a single platform that simplifies the integration of security into cloud and mobile applications. Pangea's services are designed to be globally accessible while maintaining regional intelligence, making them suitable for diverse markets. Available on major cloud platforms such as AWS and GCP, Pangea enables clients—including app developers, SaaS providers, and security operations teams—to efficiently create secure and compliant user experiences. The company aims to make security accessible to all developers, eliminating the need for extensive security expertise.

Concentric AI provides a data sensitivity and risk discovery platform that analyzes an organization’s documents in cloud and on premises to identify sensitive or business-critical information, assess the risk each item poses, and highlight urgent security concerns. Using deep learning, the system examines document content and context to enable discovery, monitoring, and protection of unstructured data such as confidential files and financial statements. The platform aims to help enterprises secure valuable information, simplify deployment, and reduce time to value by delivering clear, actionable insights across the full inventory of documents. The company was founded in 2018 and is headquartered in San Jose, California.

Phylum is a cybersecurity company that defends applications at the perimeter of the open-source ecosystem and the tools used to build software. Its automated analysis engine scans third-party code as soon as it is published to vet software packages, identify risks, inform users, and block attacks. It maintains a comprehensive and scalable database of open-source software supply chain risks that can be deployed across the development lifecycle to fit an organization’s infrastructure and appsec program maturity. The company is led by security researchers and developers with decades of experience in government and commercial sectors. Phylum has earned industry recognition, including the Black Hat 2022 Innovation Spotlight Award and other accolades for workplace quality and information security innovation.

Nudge Security is a cybersecurity company that safeguards modern organizations by empowering their workforce. It offers SaaS security and governance software, providing IT and security teams with comprehensive visibility of all SaaS and cloud assets, allowing employees to make secure decisions without hindering productivity.

Skiff is a company that operates an end-to-end encrypted document collaboration platform aimed at creating a private and decentralized workspace. Its platform provides decentralized storage and ensures complete privacy, enabling teams around the world to share information securely. Skiff allows organizations to write, edit, and collaborate in real-time with colleagues while monitoring activity to prevent unintended use. This focus on privacy and security addresses the growing need for confidential communication and collaboration in modern workplaces.

Aembit is a provider of a Workload Identity and Access Management platform tailored for DevSecOps teams, enabling the automation of secure workload access. The platform acts as a centralized identity broker for various environments, including public clouds, SaaS applications, and data centers, streamlining the management of workload access throughout its lifecycle. Aembit's technology facilitates secure and seamless connections between client workloads and essential services such as APIs, databases, and cloud resources. It empowers enterprises to enforce access based on predetermined policies, issue necessary credentials, and monitor interactions between systems, thereby simplifying application development and delivery while ensuring robust security measures are in place.

OpenDoor creates modern, collaborative living spaces targeted at urban creatives and millennials. Their homes are curated social environments that facilitate sharing, connections, and meaningful relationships.

Whisper.ai, Inc. is a company that specializes in the development and manufacturing of AI-enabled hearing aids aimed at individuals with hearing loss. Founded in 2017 and located in San Francisco, California, Whisper offers a modern hearing system that includes the Whisper Brain, which utilizes advanced AI algorithms to process and enhance sound in real time. This system is complemented by earpieces that deliver the optimized sound directly to the user. Additionally, the Whisper app provides regular software updates, allowing for continuous improvements and novel features. The technology is designed to adapt to various environments, enhancing the hearing experience for users.

Founded in 2019, Lucidum operates an online platform that eliminates blind spots across cloud, security, and IT operations. It uses patent-pending machine learning to discover and identify all assets, even previously unknown ones, providing essential visibility for secure management and transformation of enterprises.

Dexterity Inc develops robot dexterity solutions for logistics, warehousing, and supply chain applications. The company offers a robotics as a service model that enables businesses to integrate robotics into their operations. Its flagship DexR is a two-armed robot designed for tasks such as truck loading and material handling, equipped with machine vision and force sensing. The company combines artificial intelligence, software, and hardware in a platform to deliver high productivity, precision, and safety in industrial environments, allowing clients to delegate repetitive tasks to robots and augment human potential.

People.ai operates a predictive AI platform that automates sales training, coaching, and CRM sync. It helps sales, marketing, and customer success teams uncover revenue opportunities by capturing customer contacts and activities, driving actionable insights.

All Day Kitchens specializes in constructing delivery-focused kitchens, leveraging technology to maximize coverage with minimal initial investment.

Founded in 2018, Offchain Labs specializes in developing solutions for scaling Ethereum smart contracts. Its platform enables the creation of private smart contracts on the Ethereum ecosystem, facilitating custom chain launches, layer-two migrations, node running, and virtual machine contract deployments.

Netskope is a cloud security company that provides a SaaS-based platform offering real-time data and threat protection for enterprises worldwide. Its key products include Netskope Security Cloud, Cloud XDTM, NewEdge security network, CASB, SWG, and professional services. Serving various industries such as financial services, government, healthcare, high-tech, manufacturing, and retail, Netskope enables secure access to cloud services, websites, and private applications from any device.

DataRobot develops an automated machine learning platform that enables users across various industries to build predictive models. Its cloud-based solution, DataRobot Cloud, offers a project-based curriculum for gaining insights from data scientists. The company also provides DataRobot MLOps for deploying and managing machine learning models, along with enterprise features like flexible deployment and governance in its DataRobot Enterprise solution.

Arkose Labs develops an online fraud and abuse prevention platform that protects businesses in sectors such as online marketplaces, travel, banking, social media, ticketing, and online gaming. The platform defends consumer actions against account takeover, fake account abuse, scraping, spam, and gift‑card fraud. Founded in 2015, the company is headquartered in San Mateo, California, with offices in London, Costa Rica, and Brisbane. It is recognized as a leader in bot detection and mitigation, offering a $1 million warranty for credential‑stuffing and SMS toll fraud. Arkose Labs’ AI‑powered system combines global telemetry, dynamic threat response, and a bilateral feedback loop to validate suspicious traffic and train enforcement, reducing friction for legitimate users while authenticating identities across all customer touchpoints.

Carta is a software company that operates a SEC-registered transfer agent and equity management platform for private companies. The platform helps private firms manage cap tables, corporate governance, 409A valuations, and compliance, issue stock electronically, and share equity information among shareholders, employees, auditors, and counsel. It digitizes stock certificates, stock options, warrants, and derivatives to provide a real-time view of ownership and enables employees to track vesting and exercise rights. Carta serves venture-backed startups, pre-IPO companies, and other private enterprises in the United States and internationally. Founded in 2012 and headquartered in Palo Alto, California, the company maintains additional offices in the United States, Brazil, and Canada.

ThoughtSpot provides an AI-native intelligence platform that empowers enterprises to explore any data, ask questions, and uncover actionable insights. It offers intuitive natural language search, enabling users to generate answers from business data at every point of decision-making. ThoughtSpot serves various industries, with clients including NVIDIA, Hilton Worldwide, Capital One, and Huel.

Founded in 2012, Blend Labs designs and develops digital lending platforms that streamline mortgage, consumer loan, and deposit account applications. Serving over 300 financial institutions, including Wells Fargo and U.S. Bank, the company processes billions in loans daily, helping millions of consumers access credit.

Veza is the data security platform that helps users use and share their data safely. It makes it easy to understand, manage, and control who can and should take what action on what data. It organizes authorization metadata across identity providers, data systems, cloud service providers, and applications, all to address the toughest data security challenges of the modern era. The company is funded by top-tier investors including Accel, Bain Capital, Ballistic Ventures, Blackstone, GV, Norwest Venture Partners, and True Ventures.

Zipline designs, manufactures, and operates drones for delivering vital medical products such as vaccines, medicines, and blood. Based in Half Moon Bay, California, Zipline aims to provide instant access to these supplies worldwide.

BreachRx is a software company that offers an intelligent, cloud-based incident response management platform designed to improve operational resilience across the enterprise. The platform automatically generates tailored incident response plans, dynamic playbooks, and guidance to stakeholders before, during, and after privacy and security events. It helps organizations prepare for regulatory changes and contractual requirements, respond to privacy incidents with coordinated tasks and tailored actions, and recover from data breaches through KPI tracking, stakeholder awareness, and process improvement. The solution integrates a library of regulatory best practices to streamline incident handling, reduce costs, and minimize reputational risk. Founded in 2017 and based in San Francisco, BreachRx focuses on proactive privacy and cybersecurity readiness, faster response, and measurable recovery outcomes.