DeepFactor, the leader in developer-native continuous AppSec observability tools, announced it has raised a $15 million Series A funding round led by New York-based global private equity and venture capital firm Insight Partners. Insight is joined by all existing investors, including Emergent Ventures and Security Leadership Capital, as well as participation from the leading test automation company, Tricentis. With this round, DeepFactor has raised a total of $18.4 million to date.
‘Start-Left’ with a Next-Gen AppSec Platform Designed to Secure Applications at the Source
Since its launch in September 2020, DeepFactor empowers engineering teams by providing unprecedented runtime visibility and control over an application’s supply chain, security and compliance. The company will use the new funds to continue the development of its groundbreaking continuous AppSec observability platform, which automatically observes billions of live telemetry events in every thread/process/container to detect anomalies without making any code changes to the application. The company will further enhance its product functionality in key areas such as privacy, compliance, and CI/CD integration. In addition, DeepFactor plans to introduce a SaaS offering to complement the self-hosted version which is 100% architected for Kubernetes and can be deployed on EKS, AKS, GKE, EC2 or VMware.
Recommended ITech News: Hitachi Solutions Named A Leader in Everest Group’s First PEAK Matrix Assessment for Microsoft Dynamics 365 Services
“Enterprises are increasingly building cloud-native applications and need a state-of-the-art AppSec platform that delivers a new level of visibility into supply chain, security and compliance risks. We enable developers to ‘start left’ with a tool designed specifically for engineering so they can secure at the source,” said CEO and co-founder Kiran Kamity. “Given the vast resources and experience available from Insight Partners, we are absolutely thrilled to be working with them as we continue to redefine AppSec for an evolving industry.”
Josh Zelman, Vice President at Insight Partners noted, “DeepFactor is in the exciting new space converging between the software development lifecycle and application security. There is an immediate necessity for a developer-native observability solution for the application layer and the need to identify supply chain, security, privacy, and compliance risks at the beginning of and during development are more important now than ever. DeepFactor addresses that market need. DeepFactor presents an opportunity to invest in the future of software development, especially considering the platform benefits Engineering teams and the AppSec teams. Their management team has a history of success, and their technology is a game-changer in this important area.” Zelman will also join DeepFactor’s board.
Recommended ITech News: Interstate Connecting Components (ICC) Introduces BHA PTFE-Plated M28876 Connectors from Amphenol Fiber Systems
With the push for digital transformation and the adoption of DevOps, CI/CD pipelines, Kubernetes, containers and the proliferation of cloud-native architectures, companies are releasing next-gen software applications faster with greater complexity and more areas to attack. This results in a significant increase in supply chain, security and compliance risks. AppSec teams are struggling to keep pace and need help from the engineering teams to make security part of the definition of ‘done’ before shipping to production. DeepFactor provides a single, purpose-built platform for today’s modern applications that delivers 360 degrees of visibility into the running application—something existing AppSec tools are unable to do—which makes DeepFactor the industry’s first continuous observability platform designed for engineering that enables AppSec at the speed of digital transformation. With DeepFactor, find and fix supply chain, security and compliance risks—in both in-house software applications and third-party components—throughout the DevOps pipeline.
“DeepFactor was created for developers by developers, so we understand the application security pain points, frustrations, and pressures Engineering teams feel every single day,” explained Mike Larkin, CTO and co-founder. “Our technology can be an SMB’s all-in-one application security solution, or it can bring deeper insights to an Enterprise’s existing SAST, SCA, and DAST toolset. Continuous observability is a critically needed capability to identify risks while the application is running. We give our customers the confidence to say they not only know what risks could exist, but they know what risks actually exist during runtime.”
Recommended ITech News: Crunchy Data Delivers Trusted PostgreSQL Containers In Collaboration With The U.S. Department Of Defense
DeepFactor’s modern AppSec platform delivers:
- Supply chain visibility with a software bill of materials (SBOM)
- Runtime security visibility by identifying system call risks, data risks and behavior risks
- Application-Aware SCA and CIS by observing the running application to group dependencies and container images
- Simplified DAST scans with high-fidelity alerts and actionable evidence
- Integrations with popular developer tools such as Jira, Jenkins, Slack, GitHub, GitLab, CircleCI, CloudBees, and more
Industry Perspectives on Series A Funding Round
“As the leading test automation platform, we at Tricentis, see the market for functional and performance testing tooling having strong synergies with the market for application security testing,” said Grigori Melnik, Chief Product Officer at Tricentis. “As we look at the developer population doubling over the next decade to 45 million and the number of cloud-native applications growing exponentially, we see a strong market need for a next-gen AppSec platform designed for such applications. DeepFactor’s unique observability-led approach to creating that modern AppSec platform is powerful and refreshing.”
Caleb Sima, Chief Security Officer at Robinhood also remarked, “Next-gen apps, especially Kubernetes apps, are the new normal, and these apps need a reimagined, contemporary AppSec tool. It’s incredible to see how easy it is to drop DeepFactor into a Kubernetes cluster for instant visibility into the application running on every pod.”
Recommended ITech News: Rocket Software Names Barbara Goose Chief Marketing Officer