Tromzo, a developer-first application security management platform that helps AppSec teams find and fix their most critical vulnerabilities, announced $3.1 million in seed funding. The round was led by Innovation Endeavors and more than 25 leading CISOs including Caleb Sima (Robinhood), Adam Glick (SimpliSafe), Steve Pugh (ICE/NYSE) who participated through Silicon Valley CISO Investments. Tromzo’s mission is to help eliminate the friction between developers and security.
“Modern application security teams are overwhelmed and frustrated,” said Harshil Parikh, co-founder and CEO of Tromzo. “They are spending all their time trying to convince developers and chasing them to fix security issues. This makes scaling their application security program practically impossible and they constantly feel they are being left behind.”
Top iTechnology IoT News: Renesas Announces Development of Next-Generation Wireless MCUs Supporting New Bluetooth 5.3 Low Energy Specification
Developers are overwhelmed and frustrated, too. Driven by the mainstream adoption of DevOps practices and cloud platforms, they are expected to release software more frequently and faster than ever before. As they work to meet these rising expectations, the vulnerabilities security asks them to fix often end up being ignored. This causes friction between developers and security and leaves applications vulnerable to security breaches.
“Tromzo enables my team to partner with the dev team at scale to reduce our overall risk,” said early Tromzo customer and investor Ralph Pyne, Head of Security at NextRoll. “Both teams benefit with my security engineers freed up to focus on higher-value tasks and the dev team given rapid intelligence on prioritized vulnerabilities.”
Inspiration for the platform came from the two founders’ personal experience. While leading security at Medallia, co-founder Harshil Parikh struggled with application security scaling challenges and eventually built an internal solution. Co-founder Harshit Chitalia worked at Juniper Networks, where he led an engineering team and experienced these challenges firsthand from the engineering perspective.
Commenting on the founding team, Harpinder Singh, partner at Innovation Endeavors, said, “Harshil and Harshit represent the perfect founding team to start a company like this given not only their direct personal experience building solutions in this space but also due to having direct empathy for both the engineering persona as well as the security persona. In the future, we believe Tromzo will become the foundation of any modern application security program.”
Tromzo’s Developer-First Application Security Management provides AppSec teams complete end-to-end visibility, reduces noise, eliminates manual work, and drives security ownership.
Top iTechnology IT and DevOps News: Zapata Computing Publishes New Research on Using Orquestra Platform to Implement Fundamental Subroutine for Quantum Algorithms
How Tromzo’s Developer-First Application Security Management Platform Works:Â
Step 1: Connect Data Sources
Gain complete visibility within minutes by connecting one or more AppSec tools, DevOps systems and Cloud Platforms using APIs.
Step 2: Prioritize With Context
Identify what is relevant or leverage out-of-the-box rules to create actionable security alerts across CI / CD workflows.
Step 3: Automate Remediation Campaigns
Developers get automatically alerted about the few actionable alerts in the tools they use so they have full context of why an issue needs to be fixed and how.
Step 4: Measure and Improve AppSec Programs
Measure and communicate security posture with development teams and executives.
Top iTechnology Networking News: ShopVue MES Now Available in the Microsoft Azure Marketplace
[To share your insights with us, please write to sghosh@martechseries.com]
