Cloud Security Investors Betting Big on Upwind for CNAPP Tech
An Israeli startup called Upwind has recently secured a significant amount of funding to accelerate its work on cloud-native infrastructure security technology. Upwind, which refers to itself as a runtime-powered Cloud-Native Application Protection Platform (CNAPP), has raised a total of $80 million in just 10 months as investors continue to channel capital into cloud and data security startups.
The successful funding round saw participation from investors such as Greylock, CyberStarts and Leaders Fund, Craft Ventures, VC Sheva, and Pennyjar. Upwind’s team, which previously built Spot.io (which was acquired by NetApp for $450 million), plans to develop and market a software platform that addresses threat detection, vulnerability management, and multi-cloud security posture management across serverless functions, virtual machines, and containers.
Innovating Cloud Security
Amiram Shachar, the founder of Upwind, states that the company aims to solve significant security challenges by focusing on runtime security. He believes that a runtime-centered security strategy is essential for enterprises and mid-market organizations, as it bridges the gap between development and operations (DevOps) and provides security teams with a more accurate view of their cloud environment. Shachar highlights the importance of breaking down silos between security and DevOps teams to achieve a more cohesive approach to cloud security.
Addressing Security Challenges at Runtime
Traditionally, cloud security has been focused on pre-deployment and post-deployment measures, often leaving a gap during runtime. Upwind’s technology aims to provide real-time threat detection and vulnerability management at runtime, ensuring that security measures are continuously applied and adapted as needed.
By addressing security challenges at the runtime level, Upwind aims to shift the paradigm of cloud security and redefine the CNAPP concept. This new approach brings the level of understanding and visibility that DevOps teams have to security leaders, enabling them to make more informed decisions and prioritize security in a cloud-native environment.
The Growing Importance of Cloud Security
The increasing investments in cloud and data security startups, such as Upwind, reflect the growing recognition of the importance of robust security measures in cloud-native environments. With the rise of remote work and the expansion of digital infrastructure, organizations are increasingly relying on cloud services. However, this also exposes them to greater security risks and potential vulnerabilities.
Cloud security is a pressing concern for organizations of all sizes. Breaches can lead to significant financial and reputational damage, as well as potential legal consequences. As cloud technology continues to evolve, so do the methods and sophistication of cyberattacks. This necessitates constant innovation and investment in security solutions.
Editorial: The Need for Runtime Security in Cloud Environments
The rise of cloud computing and the shift to cloud-native architectures have brought numerous benefits to organizations, enabling greater scalability, flexibility, and cost-effectiveness. However, these advancements have also introduced new challenges in terms of securing cloud environments.
Traditional security approaches, such as pre-deployment and post-deployment measures, often fall short when it comes to securing cloud-native applications running in runtime. This gap in security coverage leaves organizations vulnerable to evolving threats and cyberattacks.
Runtime security, as championed by Upwind, offers a solution to this problem. By providing real-time threat detection and vulnerability management, runtime security ensures that organizations can proactively respond to potential threats and mitigate risks as soon as they arise.
Moreover, Upwind’s focus on bridging the gap between DevOps and security teams is a much-needed shift in perspective. By involving security considerations from the initial stages of application development, organizations can ensure that security is not an afterthought. This fosters a culture of continuous security improvement and increases collaboration between different stakeholders.
Advice for Organizations:
As organizations increasingly embrace cloud-native architectures, it is crucial to prioritize security in these environments. To effectively implement runtime security measures:
- Adopt a runtime-centered security strategy: Consider incorporating real-time threat detection and vulnerability management into your cloud security framework. This approach allows organizations to identify and address potential risks at the earliest possible stage.
- Foster collaboration between DevOps and security teams: Encourage communication and collaboration between your development, operations, and security teams. Breaking down silos and involving security from the onset ensures that security considerations are integrated throughout the application lifecycle.
- Invest in cloud-native security solutions: Explore innovative security startups like Upwind that specialize in cloud-native security technologies. These solutions are designed to address the unique challenges of securing cloud-native environments and can provide enhanced protection against evolving threats.
- Stay informed about emerging security trends: As cyber threats continue to evolve, it is essential to stay up to date with the latest developments in cloud security. Regularly assess your security measures and invest in continuous education and training for your security professionals.
By proactively addressing security challenges in cloud-native environments, organizations can ensure the long-term integrity and resilience of their cloud infrastructure.
<< photo by Jason Blackeye >>
The image is for illustrative purposes only and does not depict the actual situation.
