Ballistic Ventures

Veza is the data security platform that helps users use and share their data safely. It makes it easy to understand, manage, and control who can and should take what action on what data. It organizes authorization metadata across identity providers, data systems, cloud service providers, and applications, all to address the toughest data security challenges of the modern era. The company is funded by top-tier investors including Accel, Bain Capital, Ballistic Ventures, Blackstone, GV, Norwest Venture Partners, and True Ventures.

AuthMind is an identity security firm focused on identifying and mitigating hidden identity risks through advanced access neural network technologies. Its platform provides a comprehensive solution for identity and cybersecurity teams, offering real-time identity security posture management and identity threat detection and response services. By addressing critical vulnerabilities such as blind spots, security gaps in identity infrastructure, and human errors in configurations, AuthMind enables enterprises to effectively combat identity-based attacks and enhance their overall security posture.

GetReal Labs is a company dedicated to protecting organizations from the dangers associated with the malicious use of altered and synthetic information. Currently operating in stealth mode, the firm focuses on developing innovative solutions to address the growing risks posed by misinformation and data manipulation in various sectors. Through its efforts, GetReal Labs aims to enhance the integrity of information and safeguard businesses against potential threats.

SpecterOps is a cybersecurity company focused on helping enterprises defend against advanced attacks through a variety of products, services, and training solutions. The company specializes in program development, offering assessment services and operational support that aim to enhance the security posture of organizations. SpecterOps provides training on advanced adversary tactics, techniques, and procedures, equipping students with the knowledge needed to effectively counter threats. Additionally, the company is involved in initiatives that foster industry improvement, promoting a safer environment for critical assets and data across organizations and communities.

Gomboc.AI solves cloud infrastructure security policy deviations by providing tailored remediations to the IaC while insisting on keeping functionality, architecture, performance, and resilience.

Oligo aims to streamline the usage of open source by making it secure and easy to protect. By focusing developers on the relevant vulnerabilities we make the fixing process significantly shorter.

Noma is an security technology platform that helps to the secure management of data and AI lifecycles.

Concentric AI, founded in 2018 and headquartered in San Jose, California, specializes in a Semantic Intelligence solution that addresses data risk challenges for enterprises. Its platform utilizes deep learning technology to analyze the content and context of sensitive documents stored both in the cloud and on-premises. By scanning various types of documents, including those containing personally identifiable information (PII), confidential data, and financial statements, the platform identifies potential risks and highlights critical concerns that require immediate attention. This approach allows organizations to discover, monitor, and protect their sensitive data without needing prior knowledge of high-value content or placing the burden on end-users, ultimately simplifying deployment and accelerating time to value.

Hello Soju is a wine and spirits company that develops and retails soju seltzer and ultra-premium spirit.

Aembit is a platform focused on Workload Identity and Access Management, catering to the needs of DevSecOps teams by automating secure access for workloads. It serves as a single identity broker across various environments, including clouds, SaaS, and data centers, thereby simplifying the lifecycle of workload access. The platform enables organizations to manage, enforce, and audit access between federated workloads, allowing for secure and seamless connections to essential services like APIs, databases, and cloud resources. By streamlining application development and delivery, Aembit empowers enterprises to define access policies, issue necessary credentials, and log interactions between systems, enhancing overall security and efficiency.

WitnessAI is dedicated to creating a security platform that provides essential governance and security controls for enterprises adopting artificial intelligence. The platform enhances visibility and privacy regarding AI activities, allowing businesses to leverage the benefits of generative AI while maintaining control over their data and ensuring security. By focusing on making AI safe and productive, WitnessAI helps organizations innovate without compromising on privacy or governance.

Nudge Security is a cybersecurity startup securing modern organizations through the power of the modern workforce.

Alethea is a technology company helping the Fortune 500, private companies and nonprofits protect themselves from harms stemming from disinformation. Leveraging its multi-channel machine learning platform, Artemis, Alethea detects disinformation narratives across the internet, enabling customers to proactively defend against this pervasive threat. With Artemis-powered early detection, Alethea customers can protect their reputations, key assets, physical safety and market value. The company was founded in 2019 and is woman owned.

CodeZero provides an innovative platform aimed at enhancing microservices development within complex cloud environments. As cloud infrastructures have expanded, the challenges of managing numerous services have grown significantly, leading to increased misconfiguration errors and higher costs for identifying production issues. CodeZero's Teamspaces offers a solution by allowing developers to interact seamlessly with both cloud services and local environments. This intelligent cloud environment presents the entire cluster as a single machine, enabling real-time traffic management without requiring extensive cloud infrastructure knowledge. By facilitating collaboration and issue diagnosis in live production settings, CodeZero's platform aims to simplify development processes while prioritizing security and efficiency.

Reach Security specializes in developing security software that streamlines security operations for organizations. The company's platform centralizes and automates various security tools, allowing security leaders and operators to effectively measure, manage, and enhance the value of their security investments. Reach Security provides tailored control recommendations and supporting materials based on specific threat profiles, which helps organizations prioritize security controls and gain visibility into potential threats. By automating security tasks and centralizing security data management, Reach Security enables customers to gain valuable insights and improve their overall security posture.

ArmorCode is a cybersecurity company based in Palo Alto, California, founded in 2020. It provides an AppSecOps platform aimed at simplifying application security and reducing application exposure and risk. The platform offers comprehensive features for application security posture, vulnerability and compliance management, and DevSecOps automation. By integrating with the broader security ecosystem, ArmorCode's solution helps organizations de-duplicate, correlate, and orchestrate security findings, ultimately enhancing their protection against third-party attacks. The company aims to deliver significant improvements in application security efficiency, achieving a tenfold increase in AppSec force multiplier impact for various prominent enterprises.

Stellar Cyber Inc. is a cybersecurity company based in Santa Clara, California, founded in 2015. It specializes in developing an open Extended Detection and Response (XDR) platform that enhances application and data protection for organizations. The platform integrates data from various security tools to provide comprehensive threat detection and response capabilities, automatically correlating alerts into incidents across the entire attack surface. Stellar Cyber's solutions are designed to significantly reduce enterprise risk by facilitating the early identification and remediation of cyber threats while optimizing costs and maintaining investments in existing security infrastructure. The platform also allows for seamless deployment of sensors both on-premise and in the cloud, enhancing visibility and operational efficiency for security teams.

SpecterOps is a cybersecurity company focused on helping enterprises defend against advanced attacks through a variety of products, services, and training solutions. The company specializes in program development, offering assessment services and operational support that aim to enhance the security posture of organizations. SpecterOps provides training on advanced adversary tactics, techniques, and procedures, equipping students with the knowledge needed to effectively counter threats. Additionally, the company is involved in initiatives that foster industry improvement, promoting a safer environment for critical assets and data across organizations and communities.

AuthMind is an identity security firm focused on identifying and mitigating hidden identity risks through advanced access neural network technologies. Its platform provides a comprehensive solution for identity and cybersecurity teams, offering real-time identity security posture management and identity threat detection and response services. By addressing critical vulnerabilities such as blind spots, security gaps in identity infrastructure, and human errors in configurations, AuthMind enables enterprises to effectively combat identity-based attacks and enhance their overall security posture.

DevRev is a business software startup that aims to enhance the relationship between developers and customers by integrating development with customer relationship management (CRM). The company focuses on breaking down barriers between developers and end-users, facilitating direct communication and collaboration to foster customer-centric product development. DevRev employs a unique approach that combines collaboration, artificial intelligence, and analytics, allowing software-as-a-service (SaaS) companies to improve product velocity and minimize customer churn. Its platform is designed to streamline product development and customer service, offering a developer-centric CRM that leverages data and machine intelligence. DevRev serves thousands of businesses seeking low-latency analytics and customizable large language models to thrive in the evolving landscape of generative AI.

Coro is a developer of a comprehensive security platform designed to protect against a wide range of cyber threats, including malware, ransomware, phishing, and bots, across various devices and cloud applications. The platform utilizes artificial intelligence to autonomously detect and remediate security threats, minimizing the need for IT personnel to intervene in the investigation or resolution of issues. By securing the entire Software-as-a-Service (SaaS) chain—from users and devices to the network and cloud services—Coro eliminates the necessity for multiple security solutions, thereby reducing total cost of ownership. The cloud-based nature of the platform allows for quick deployment without the need for hardware installation, enabling organizations to enhance their cyber resilience efficiently.

Abnormal Security Corporation specializes in cloud-based email security solutions for Microsoft Office 365 and G Suite, aiming to protect organizations from targeted email attacks. Founded in 2018 and based in San Francisco, the company employs a data science approach to enhance its email protection capabilities. Its platform offers a range of services, including inbound email protection, detection of email account compromises, and responses to various threats. Abnormal Security addresses issues such as credential phishing, internal phishing, impersonation of employees and executives, vendor account compromise, as well as invoice and payment fraud. The company serves diverse sectors, including financial services, healthcare, and utilities, providing comprehensive solutions to safeguard against email-related risks that can lead to significant financial and reputational damage.

Cado Security Ltd is a London-based company that specializes in developing a cloud-native digital forensics platform aimed at enhancing incident response capabilities for enterprises. Founded in 2020, Cado Security's platform, Cado Response, allows security teams to conduct forensic analysis across various environments, including cloud, container, and on-premise systems. The platform is designed to provide detailed insights at high speed, enabling organizations to effectively investigate and respond to cyber incidents while minimizing financial and legal risks associated with security breaches. By automating analysis and securing evidence, Cado Security empowers organizations to adapt to the evolving landscape of cybersecurity challenges.

Aembit is a platform focused on Workload Identity and Access Management, catering to the needs of DevSecOps teams by automating secure access for workloads. It serves as a single identity broker across various environments, including clouds, SaaS, and data centers, thereby simplifying the lifecycle of workload access. The platform enables organizations to manage, enforce, and audit access between federated workloads, allowing for secure and seamless connections to essential services like APIs, databases, and cloud resources. By streamlining application development and delivery, Aembit empowers enterprises to define access policies, issue necessary credentials, and log interactions between systems, enhancing overall security and efficiency.

Pangea is a developer of security APIs that offers a comprehensive portfolio of security services tailored for application builders. The company provides a single platform that simplifies the integration of security into cloud and mobile applications. Pangea's services are designed to be globally accessible while maintaining regional intelligence, making them suitable for diverse markets. Available on major cloud platforms such as AWS and GCP, Pangea enables clients—including app developers, SaaS providers, and security operations teams—to efficiently create secure and compliant user experiences. The company aims to make security accessible to all developers, eliminating the need for extensive security expertise.

ArmorCode is a cybersecurity company based in Palo Alto, California, founded in 2020. It provides an AppSecOps platform aimed at simplifying application security and reducing application exposure and risk. The platform offers comprehensive features for application security posture, vulnerability and compliance management, and DevSecOps automation. By integrating with the broader security ecosystem, ArmorCode's solution helps organizations de-duplicate, correlate, and orchestrate security findings, ultimately enhancing their protection against third-party attacks. The company aims to deliver significant improvements in application security efficiency, achieving a tenfold increase in AppSec force multiplier impact for various prominent enterprises.

Alethea is a technology company helping the Fortune 500, private companies and nonprofits protect themselves from harms stemming from disinformation. Leveraging its multi-channel machine learning platform, Artemis, Alethea detects disinformation narratives across the internet, enabling customers to proactively defend against this pervasive threat. With Artemis-powered early detection, Alethea customers can protect their reputations, key assets, physical safety and market value. The company was founded in 2019 and is woman owned.

Perygee is a developer of an automation platform that focuses on enhancing device functionality and cybersecurity for enterprises. The platform integrates all asset information and engages security stakeholders to protect critical assets while automating operational technology security workflows. Perygee combines device-specific edge monitoring with user-friendly, no-code data modeling and automation tools. This approach enables businesses to achieve a comprehensive cybersecurity solution that balances robust security measures with an intuitive user experience. By automating full enterprise workflows, Perygee aims to save time and improve operational visibility for its clients.

Stairwell, Inc., founded in 2019 and headquartered in Mountain View, California, specializes in cybersecurity solutions through its Software as a Service (SaaS) platform. The company focuses on Automated Threat Detection and Response, providing tools that enable security teams to identify and address potential threats efficiently. By treating all files as suspicious and preserving them as evidence, Stairwell accelerates threat analysis, allowing organizations to quickly assess their security status in response to emerging threats. Its technology incorporates artificial intelligence and machine learning to deliver automated reports that indicate whether an organization has been compromised and, if so, outlines the details of the incident. This innovative approach enhances the capabilities of security personnel, streamlining the processes of threat evaluation and response. Stairwell has garnered recognition for its innovative contributions to the cybersecurity landscape, supported by prominent investors and partners.

Open Raven, Inc. is a data security company that specializes in data protection by developing a platform aimed at assessing and managing data risk for enterprises. Founded in 2019 and based in Los Angeles, California, the company helps organizations identify and secure sensitive data stored across cloud environments and corporate networks. Its platform provides visibility and control to prevent data breaches, locating assets and highlighting exposed data and shadow accounts. Open Raven's solution addresses the limitations of existing tools by effectively managing data security posture, ensuring that security teams can locate and protect sensitive information within vast data environments. The platform also offers pre-built connectors and an open-source model for easier integration and extensibility, thus enabling businesses to maintain compliance and safeguard their data effectively.

Talon Cyber Security specializes in providing cybersecurity solutions tailored for the distributed workforce, addressing emerging threats associated with hybrid work environments. Its innovative technology enhances security controls to accommodate the growing reliance on cloud services and remote operations. Talon Cyber Security offers a unique secure browser that delivers enterprise-grade protection across both managed and unmanaged devices, independent of location, device type, or operating system. This approach not only fortifies cybersecurity but also promotes productivity and flexibility for businesses navigating the complexities of modern work arrangements.

Pangea is a developer of security APIs that offers a comprehensive portfolio of security services tailored for application builders. The company provides a single platform that simplifies the integration of security into cloud and mobile applications. Pangea's services are designed to be globally accessible while maintaining regional intelligence, making them suitable for diverse markets. Available on major cloud platforms such as AWS and GCP, Pangea enables clients—including app developers, SaaS providers, and security operations teams—to efficiently create secure and compliant user experiences. The company aims to make security accessible to all developers, eliminating the need for extensive security expertise.

Concentric AI, founded in 2018 and headquartered in San Jose, California, specializes in a Semantic Intelligence solution that addresses data risk challenges for enterprises. Its platform utilizes deep learning technology to analyze the content and context of sensitive documents stored both in the cloud and on-premises. By scanning various types of documents, including those containing personally identifiable information (PII), confidential data, and financial statements, the platform identifies potential risks and highlights critical concerns that require immediate attention. This approach allows organizations to discover, monitor, and protect their sensitive data without needing prior knowledge of high-value content or placing the burden on end-users, ultimately simplifying deployment and accelerating time to value.

Phylum specializes in cybersecurity solutions aimed at protecting applications within the open-source ecosystem and the software development tools associated with it. The company employs an automated analysis engine that promptly scans third-party code upon its publication, allowing it to vet software packages, identify potential risks, inform users, and prevent attacks. Phylum offers a comprehensive database of open-source software supply chain risks, which can be integrated throughout the development lifecycle and customized to fit an organization’s infrastructure and application security program maturity. The team consists of experienced security researchers and developers with extensive backgrounds in both the U.S. Intelligence Community and commercial sectors. Phylum has received recognition for its innovative approach, winning awards such as the Black Hat 2022 Innovation Spotlight Competition and being named one of Inc. Magazine’s Best Workplaces for 2023.

Nudge Security is a cybersecurity startup securing modern organizations through the power of the modern workforce.

Skiff operates an end-to-end encrypted document collaboration platform designed to create a private and decentralized workspace. The platform enables teams worldwide to share information securely and privately, facilitating real-time collaboration among colleagues while ensuring complete privacy. Skiff also incorporates decentralized storage, which further enhances security and allows organizations to monitor activity to prevent unintended use. In addition to its focus on document collaboration, Skiff addresses the evolving needs of consumers, publishers, and advertisers in the digital reading space, capitalizing on the transition from print media to digital formats. This includes catering to the growing demand for dedicated e-readers and reading-friendly devices, thereby creating new opportunities in the digital consumption landscape.

Aembit is a platform focused on Workload Identity and Access Management, catering to the needs of DevSecOps teams by automating secure access for workloads. It serves as a single identity broker across various environments, including clouds, SaaS, and data centers, thereby simplifying the lifecycle of workload access. The platform enables organizations to manage, enforce, and audit access between federated workloads, allowing for secure and seamless connections to essential services like APIs, databases, and cloud resources. By streamlining application development and delivery, Aembit empowers enterprises to define access policies, issue necessary credentials, and log interactions between systems, enhancing overall security and efficiency.

Whisper develops AI-enabled, updateable hearing aids for people with hearing loss. Whisper’s Hearing System is linked to a phone, allowing updates to features such as its Sound Separation Engine, which use AI algorithms to optimize sound in different environments. The Whisper Hearing System has earpieces like a traditional hearing aid, and it has a pocket-sized power and intelligence of the Whisper Brain, which the company says, works wirelessly with the earpieces to enable a proprietary AI-based sound separation engine.

OpenDoor creates modern, collaborative living spaces targeted at urban creatives and millennials. Their homes are curated social environments that facilitate sharing, connections, and meaningful relationships.

Lucidum, Inc. is an asset discovery company based in San Jose, California, founded in 2019. The company operates an online platform that addresses blind spots in cloud, security, and information technology operations. Utilizing patent-pending machine learning technology, Lucidum's platform enables organizations, including Fortune 500 companies, to discover and identify all assets within their environments, including previously unknown devices and services. By providing comprehensive visibility into IT assets, Lucidum supports clients in securing, managing, and transforming their enterprises effectively. The company is supported by investors such as GGV Capital and Silicon Valley CISO Investors.

Dexterity specializes in robotic solutions tailored for logistics, warehousing, and supply chain operations. The company operates on a 'robots as a service' model, allowing businesses to seamlessly integrate robotics into their workflows. Its flagship product, the DexR, is a sophisticated two-armed robot designed for tasks such as truck loading. This robot is equipped with advanced machine vision and force sensing technologies, enabling it to perform various repetitive tasks, including kitting, picking, packing, counting, sorting, and palletizing. By automating these processes, Dexterity helps clients enhance their operational efficiency and maximize the potential of their workforce.

All Day Kitchens develops delivery-optimized kitchens that support restaurants in adapting to the digital, delivery, and pick-up landscape. By leveraging data, the company identifies and secures prime locations for cloud kitchens, allowing restaurants to expand their reach without significant upfront costs. Their platform facilitates the establishment of technical networks that enhance food delivery operations, enabling restaurants to thrive in a competitive market.

People.ai is an artificial intelligence platform headquartered in San Francisco that enhances enterprise revenue operations. It assists sales, marketing, and customer success teams in identifying revenue opportunities by capturing and analyzing customer contacts, activities, and engagements. The platform provides sales leaders with comprehensive insights into sales activities, facilitating effective team management and revenue growth. It leverages AI to offer performance analytics, personalized coaching, and pipeline reviews. Additionally, People.ai helps marketers visualize interactions with customers and assess the success of campaigns, enabling them to create targeted marketing strategies that improve return on investment. Customer success teams utilize the platform to engage effectively with clients during transitions and align their efforts with high-potential opportunities, ensuring efficient resource allocation and support.

Offchain Labs, Inc. is a company based in Princeton, New Jersey, established in 2018. It focuses on developing solutions that enhance the scalability and privacy of Ethereum smart contracts, catering primarily to the gaming industry, financial applications, and consortium blockchains. The company offers a decentralized platform that allows for the development of smart contracts capable of handling a higher volume of transactions while ensuring user privacy. This platform combines the benefits of off-chain approaches, such as lower costs, with the security and simplicity associated with on-chain methods, thereby providing a comprehensive solution for developers and users alike.

Netskope, Inc. is a cloud application analytics and policy company that offers a comprehensive software-as-a-service platform aimed at securing data and users across various environments. Its primary offering, Netskope Security Cloud, provides visibility and real-time protection against threats when accessing cloud services, websites, and private applications. The platform employs a unique approach that allows for granular control of cloud application usage, enabling organizations to monitor user activities and secure sensitive information without the need for traditional restrictive measures. Additionally, Netskope operates NewEdge, a global security private cloud network that enhances security without compromising performance. The company also provides a Cloud Access Security Broker (CASB) to manage cloud application use, along with a cloud-based web security solution designed to prevent malware and detect advanced threats. Serving a range of industries, including finance, healthcare, and retail, Netskope focuses on promoting good digital citizenship while supporting organizations in their digital transformation efforts. Founded in 2012 and headquartered in Santa Clara, California, Netskope has data centers across multiple countries to meet global security needs.

DataRobot, Inc. develops an automated machine learning platform that empowers enterprises to create predictive models efficiently. Its offerings include DataRobot Cloud, a predictive analytics solution available both in the cloud and on-premises, and DataRobot MLOps, which facilitates the deployment, monitoring, and management of machine learning models across organizations. The company also provides DataRobot Enterprise, featuring flexible deployment options, governance, and training services, along with packages designed to accelerate artificial intelligence projects. DataRobot serves a diverse range of industries, including banking, healthcare, manufacturing, and marketing, catering to business analysts, data scientists, and IT professionals. Founded in 2012 and headquartered in Boston, Massachusetts, DataRobot has expanded its operations globally, with offices in major cities such as London, Paris, and Tokyo, and maintains strategic partnerships to enhance its offerings.

Arkose Labs, based in San Francisco, California, develops a cybersecurity platform aimed at preventing online fraud and abuse for various industries, including online marketplaces, travel, banking, social media, ticketing, and gaming. Established in 2015, the company offers solutions to combat issues such as account takeover, fake account abuse, scraping, spam, and gift card fraud. Arkose Labs employs an AI-powered system that combines risk assessments with dynamic threat responses, effectively mitigating attacks while enhancing legitimate user experiences. The platform is recognized for its effectiveness, having received accolades for customer satisfaction and market presence. Additionally, it provides unique warranties against credential stuffing and SMS toll fraud, further demonstrating its commitment to protecting businesses from cybercrime. With a significant portion of its clientele being Fortune 500 companies, Arkose Labs operates offices in major locations, including Brisbane, Australia, and has established a strong reputation in the cybersecurity landscape.

Carta, Inc. is a SEC-registered transfer agent based in Palo Alto, California, that provides an online platform for private companies to manage their equity electronically. This platform facilitates cap table management, corporate governance, 409A valuations, and compliance, allowing corporations to issue stock to investors digitally. It serves a diverse clientele, including venture-backed small businesses, enterprises, and pre-IPO companies in the United States and internationally. Carta also digitizes paper stock certificates, stock options, warrants, and derivatives, creating a real-time overview of ownership for startups. The platform enhances collaboration among shareholders, employees, auditors, and legal counsel, enabling them to track vesting, access documents, and exercise options efficiently. Additionally, Carta has offices in Brazil and Canada, broadening its reach in the equity management space.

ThoughtSpot, Inc. specializes in search-driven analytics for enterprises, providing a platform that enables users to analyze complex data through an intuitive natural language search interface. Founded in 2012 and headquartered in Sunnyvale, California, the company offers tools for generating instant charts, building reports, and sharing insights across various sectors, including retail, healthcare, and financial services. Its AI-native platform empowers users to uncover actionable insights quickly, facilitating data-driven decision-making. The technology connects seamlessly with diverse data sources, whether on-premise or cloud-based, allowing businesses to manage and analyze large-scale enterprise data efficiently. ThoughtSpot has established strategic partnerships and serves notable clients that leverage its capabilities to enhance operational outcomes. Additionally, the company provides a low-code solution for developers to integrate analytics directly into their products. With locations in multiple countries, ThoughtSpot is expanding its reach in North America, Europe, and Asia-Pacific.

Veza is the data security platform that helps users use and share their data safely. It makes it easy to understand, manage, and control who can and should take what action on what data. It organizes authorization metadata across identity providers, data systems, cloud service providers, and applications, all to address the toughest data security challenges of the modern era. The company is funded by top-tier investors including Accel, Bain Capital, Ballistic Ventures, Blackstone, GV, Norwest Venture Partners, and True Ventures.

Zipline Inc. is a California-based company that specializes in designing, manufacturing, and operating drones for the delivery of essential medical supplies, including vaccines, medicines, and blood. Founded in 2011 and headquartered in Half Moon Bay, the company aims to provide instant access to vital medical products for every individual globally. Since its inception, Zipline has developed a rapid delivery drone and an autonomous logistics network, allowing for efficient distribution to hospitals and health centers, particularly in remote areas. By leveraging its proprietary fixed-wing drone technology, Zipline facilitates timely deliveries that support the medical community and enhance patient care.