Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Application Security

Application Security Firm ShiftLeft Raises $20 Million

Application security firm ShiftLeft on Tuesday announced that it raised $20 million in a Series B funding round, which brings the total raised by the company to nearly $30 million.

The funding round was led by Thomvest Ventures, with participation from new investor SineWave Ventures and existing investors Bain Capital Ventures and Mayfield.

Application security firm ShiftLeft on Tuesday announced that it raised $20 million in a Series B funding round, which brings the total raised by the company to nearly $30 million.

The funding round was led by Thomvest Ventures, with participation from new investor SineWave Ventures and existing investors Bain Capital Ventures and Mayfield.

ShiftLeft says it plans on using the newly obtained funds to drive broader adoption of its solutions by expanding its product portfolio, application coverage, and sales and marketing initiatives.

ShiftLeftShiftLeft, which emerged from stealth mode in October 2017 with $9 million in funding, provides solutions designed to help developers identify vulnerabilities in their code and protect their applications.

The company’s products are powered by its Code Property Graph (CPG), a technology designed for quickly analyzing high volumes of source code in search of vulnerabilities. Its Inspect service provides static application security testing capabilities, while its flagship product, ShiftLeft Protect, combines source code analysis during development with protection against threats at runtime.

For code auditors, ShiftLeft has developed Ocular, which uses the CPG for custom queries that can help identify vulnerabilities while minimizing the possibility of false positives.

ShiftLeft also announced that it has created an advisory board of several prominent experts on security and development. The company has also appointed Jim Sortino, who previously held executive roles at Trend Micro and Dome9, as vice president of worldwide sales.

“I’ve seen organizations struggle through a reactive, threat-focused security posture, resulting in overworked security teams and frequent breaches,” said Enrique Salem, partner at Bain Capital Ventures and former CEO of Symantec. “Yet ShiftLeft gets at the root problem – vulnerable software – by automating the process of accurately and rapidly analyzing and plugging vulnerabilities in the applications themselves. It’s exciting to be an investor in a company that is meaningfully helping security teams by reducing the overall attack surface and providing direct root-cause insight for developers.”

Related: Code Analysis Firm Semmle Launches With $21 Million in Funding

Related: Protego Labs Raises $2 Million in Seed Funding

Related: Rate of Cybersecurity Venture Funding Not Sustainable, Investors Say

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.

Application Security

Drupal released updates that resolve four vulnerabilities in Drupal core and three plugins.

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.

Application Security

Many developers and security people admit to having experienced a breach effected through compromised API credentials.