Silicon Valley CISO Investments

Knostic specializes in providing access controls and governance solutions for enterprises utilizing large language models (LLMs). The company's platform addresses the challenges associated with LLM chatbots by enabling organizations to manage risk and ensure compliance. Knostic's knowledge-centric capabilities facilitate the swift deployment of LLMs, promoting AI-driven innovation while prioritizing value, security, and safety. Through its software, Knostic aims to empower enterprises to harness the potential of LLMs effectively and responsibly.

Token Security is focused on enhancing identity security through a machine-first approach, responding to the challenges posed by the increasing number of machines, applications, and services accessing cloud resources. The company recognizes the limitations of traditional human-centric identity tools and aims to improve the security of critical assets by understanding and managing identity exposure from a machine perspective. In addition, Token Security supports the growth of security token offerings (STOs) by connecting select projects with key players and investors, promoting the mass adoption of tokenization. This approach is believed to create a new trillion-dollar market, unlocking investment opportunities in diverse asset classes for a wide range of investors, from small businesses to startups in technology hubs.

Tines Security Services Ltd. is a company that specializes in developing a cyber security automation platform designed for security teams. Founded in 2018 and headquartered in Dublin, Ireland, Tines offers a no-code workflow automation solution that allows users to build, run, and monitor workflows with ease. The platform includes a Story Library featuring pre-built templates and customizable workflows, enabling users to connect their existing technology stack without needing additional integrations or custom code. Tines provides both cloud-based and on-premise options, along with tools for API auto-completion, crowd-sourced responses, and streamlined remediation services. Additionally, the company offers a free Community Edition, allowing users to explore its features and capabilities.

Gem Security develops a cloud-based platform designed to enhance security operations for businesses by addressing cloud-native threats. The platform offers a centralized solution for incident readiness, real-time threat detection, investigation, and response, enabling organizations to manage security efficiently in the cloud environment. By providing automation for security teams and incorporating behavioral analytics with an attacker perspective, Gem Security aims to strengthen existing security workflows and improve overall cloud security. Their mission is to prevent cloud threats from escalating into incidents, thereby supporting businesses in navigating the complexities of modern security challenges.

Gem Security develops a cloud-based platform designed to enhance security operations for businesses by addressing cloud-native threats. The platform offers a centralized solution for incident readiness, real-time threat detection, investigation, and response, enabling organizations to manage security efficiently in the cloud environment. By providing automation for security teams and incorporating behavioral analytics with an attacker perspective, Gem Security aims to strengthen existing security workflows and improve overall cloud security. Their mission is to prevent cloud threats from escalating into incidents, thereby supporting businesses in navigating the complexities of modern security challenges.

Descope is a company that develops an authentication platform designed to enhance application security. The platform allows developers to create secure and seamless authentication processes for various applications, focusing on preserving device integrity while minimizing user friction. By enabling passwordless authentication and efficient user management with just a single line of code, Descope aims to empower businesses to leverage customer identity as a key business enabler. The company's solutions cater to the growing demand for secure user access in an increasingly digital landscape.

Drata is a Trust Management Platform based in San Diego, California, founded in 2020 by Adam Markowitz, Daniel Marashlian, and Troy Markowitz. The company specializes in security compliance automation, assisting organizations in achieving and maintaining compliance with various standards such as SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, CCPA, CMMC, and NIST CSF. Drata's platform offers continuous, automated monitoring and evidence collection, significantly reducing the time and costs associated with annual audits. By providing actionable insights, reports, alerts, and seamless SaaS integrations, Drata enables enterprises to build trust with their users and partners while facilitating secure business growth.

Endor Labs specializes in enhancing application security by managing open-source software dependencies. The company provides a Dependency Lifecycle Management Platform designed to tackle vulnerabilities within the software supply chain, particularly the unmanaged proliferation of open-source software in enterprises. By streamlining the selection, security, and maintenance of software dependencies, Endor Labs aids developers in adopting safe open-source solutions, thereby accelerating development processes and reducing the time spent on security issues. The platform supports clients in maximizing code reuse and implementing microservices architectures, ultimately simplifying the complexities associated with software engineering.

Wing Security is a leader in SaaS security, dedicated to providing comprehensive and accessible solutions that ensure strong, consistent protection without the need for multiple vendors. Founded by a former CISO and Head of Cyber Defense for the Israeli Defense Forces, the company develops a security management platform designed to safeguard the software application environment. This platform continuously discovers, classifies, and controls all SaaS applications, automatically shutting down risky app-to-app connections. By enabling organizations to effectively restrict and govern file sharing and data collaborations with external entities, Wing Security streamlines SaaS application security through automated, self-service tools tailored for modern business needs.

Incode Technologies Inc. is a digital identity company that specializes in biometric identity solutions aimed at enhancing customer experiences in banking, payments, hospitality, and retail. Founded in 2015 and headquartered in San Francisco, Incode develops a comprehensive omnichannel identity platform that provides services such as account opening, identity authentication, and payment processing. Key offerings include Incode Omni, which utilizes artificial intelligence for secure biometric verification, and various applications like Incode Hello for chat and video conferencing, Incode Welcome for new account applications, and Incode Facepay for transaction verification. Recognized for its enterprise-grade facial recognition capabilities, Incode's products are utilized by major banks, financial institutions, and retailers, setting a new benchmark for convenience and security in user interactions. The company also maintains additional offices in Europe and Latin America to support its global operations.

Lucidum, Inc. is an asset discovery company based in San Jose, California, founded in 2019. The company operates an online platform that addresses blind spots in cloud, security, and information technology operations. Utilizing patent-pending machine learning technology, Lucidum's platform enables organizations, including Fortune 500 companies, to discover and identify all assets within their environments, including previously unknown devices and services. By providing comprehensive visibility into IT assets, Lucidum supports clients in securing, managing, and transforming their enterprises effectively. The company is supported by investors such as GGV Capital and Silicon Valley CISO Investors.

Tromzo is a developer-focused application security management platform aimed at modern security teams. The platform centralizes application security processes, reducing friction between developers and security personnel. By enabling automation and scalability of application security activities throughout the software development lifecycle (SDLC), Tromzo simplifies security for developers, allowing organizations to effectively manage and enhance their application security programs.

Drata is a Trust Management Platform based in San Diego, California, founded in 2020 by Adam Markowitz, Daniel Marashlian, and Troy Markowitz. The company specializes in security compliance automation, assisting organizations in achieving and maintaining compliance with various standards such as SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, CCPA, CMMC, and NIST CSF. Drata's platform offers continuous, automated monitoring and evidence collection, significantly reducing the time and costs associated with annual audits. By providing actionable insights, reports, alerts, and seamless SaaS integrations, Drata enables enterprises to build trust with their users and partners while facilitating secure business growth.

Cyral, Inc. is a provider of cloud security solutions focused on data layer security. Based in Redwood City, California, and founded in 2018, the company offers a cloud-native service that enables monitoring, policy enforcement, and access control across data endpoints utilized by various applications and users. Cyral's platform delivers granular visibility into data access, protecting against threats such as data exfiltration, password spraying, and SQL injection attacks. It facilitates unified data access management through Identity Federation and Zero Trust principles, allowing organizations to identify users behind shared service credentials and enforce the least privilege principle. Additionally, Cyral's solution supports data segmentation and activity monitoring, providing real-time visibility into data accesses while ensuring compliance and simplifying audits. By implementing its lightweight service, businesses can secure their data without altering workflows or sacrificing performance, thereby enhancing the agility and scalability of their operations.

Tines Security Services Ltd. is a company that specializes in developing a cyber security automation platform designed for security teams. Founded in 2018 and headquartered in Dublin, Ireland, Tines offers a no-code workflow automation solution that allows users to build, run, and monitor workflows with ease. The platform includes a Story Library featuring pre-built templates and customizable workflows, enabling users to connect their existing technology stack without needing additional integrations or custom code. Tines provides both cloud-based and on-premise options, along with tools for API auto-completion, crowd-sourced responses, and streamlined remediation services. Additionally, the company offers a free Community Edition, allowing users to explore its features and capabilities.

Orca Security Ltd. is a provider of a cloud-native security platform designed to secure both modern and legacy applications transitioned to the cloud. Founded in 2019 and headquartered in Tel Aviv, Israel, the company offers a solution that integrates directly into the cloud infrastructure, allowing it to assess the security state of every asset without the need for agents. This platform provides visibility into compromised resources, vulnerable software, and misconfigurations across various cloud environments, including AWS, Azure, and Google Cloud Platform. By utilizing read-only access, Orca ensures that its security assessments do not impact performance or availability. The platform aims to simplify cloud security by delivering comprehensive visibility and compliance, enabling organizations to identify critical vulnerabilities and mitigate risks effectively without relying on multiple disparate tools.

Wing Security is a leader in SaaS security, dedicated to providing comprehensive and accessible solutions that ensure strong, consistent protection without the need for multiple vendors. Founded by a former CISO and Head of Cyber Defense for the Israeli Defense Forces, the company develops a security management platform designed to safeguard the software application environment. This platform continuously discovers, classifies, and controls all SaaS applications, automatically shutting down risky app-to-app connections. By enabling organizations to effectively restrict and govern file sharing and data collaborations with external entities, Wing Security streamlines SaaS application security through automated, self-service tools tailored for modern business needs.

Tonic empowers developers while protecting customer privacy by enabling companies to create safe, synthetic versions of their data for use in software development and testing. Founded in 2018 with offices in San Francisco and Atlanta, the company is pioneering enterprise tools for database subsetting, de-identification, and synthesis. Thousands of developers use data generated with Tonic on a daily basis to build their products faster in industries as wide ranging as healthcare, financial services, logistics, edtech, and e-commerce. Working with customers like eBay, Flexport, and PwC, Tonic innovates to advance their goal of advocating for the privacy of individuals while enabling companies to do their best work. For more information, visit Tonic.ai.

Orca Security Ltd. is a provider of a cloud-native security platform designed to secure both modern and legacy applications transitioned to the cloud. Founded in 2019 and headquartered in Tel Aviv, Israel, the company offers a solution that integrates directly into the cloud infrastructure, allowing it to assess the security state of every asset without the need for agents. This platform provides visibility into compromised resources, vulnerable software, and misconfigurations across various cloud environments, including AWS, Azure, and Google Cloud Platform. By utilizing read-only access, Orca ensures that its security assessments do not impact performance or availability. The platform aims to simplify cloud security by delivering comprehensive visibility and compliance, enabling organizations to identify critical vulnerabilities and mitigate risks effectively without relying on multiple disparate tools.

Lucidum, Inc. is an asset discovery company based in San Jose, California, founded in 2019. The company operates an online platform that addresses blind spots in cloud, security, and information technology operations. Utilizing patent-pending machine learning technology, Lucidum's platform enables organizations, including Fortune 500 companies, to discover and identify all assets within their environments, including previously unknown devices and services. By providing comprehensive visibility into IT assets, Lucidum supports clients in securing, managing, and transforming their enterprises effectively. The company is supported by investors such as GGV Capital and Silicon Valley CISO Investors.

Orca Security Ltd. is a provider of a cloud-native security platform designed to secure both modern and legacy applications transitioned to the cloud. Founded in 2019 and headquartered in Tel Aviv, Israel, the company offers a solution that integrates directly into the cloud infrastructure, allowing it to assess the security state of every asset without the need for agents. This platform provides visibility into compromised resources, vulnerable software, and misconfigurations across various cloud environments, including AWS, Azure, and Google Cloud Platform. By utilizing read-only access, Orca ensures that its security assessments do not impact performance or availability. The platform aims to simplify cloud security by delivering comprehensive visibility and compliance, enabling organizations to identify critical vulnerabilities and mitigate risks effectively without relying on multiple disparate tools.

Cyral, Inc. is a provider of cloud security solutions focused on data layer security. Based in Redwood City, California, and founded in 2018, the company offers a cloud-native service that enables monitoring, policy enforcement, and access control across data endpoints utilized by various applications and users. Cyral's platform delivers granular visibility into data access, protecting against threats such as data exfiltration, password spraying, and SQL injection attacks. It facilitates unified data access management through Identity Federation and Zero Trust principles, allowing organizations to identify users behind shared service credentials and enforce the least privilege principle. Additionally, Cyral's solution supports data segmentation and activity monitoring, providing real-time visibility into data accesses while ensuring compliance and simplifying audits. By implementing its lightweight service, businesses can secure their data without altering workflows or sacrificing performance, thereby enhancing the agility and scalability of their operations.