Cloud security company Accurics on Tuesday emerged from stealth mode with $5 million in funding and a free tool that allows organizations to quickly assess their risk posture.
The Accurics platform, which is available immediately, is designed to protect cloud-native infrastructure throughout the DevOps lifecycle. It helps enterprises ensure security, governance and compliance across hybrid and multi-cloud environments.
The platform analyzes vulnerability feeds, IAM privileges and other data to detect and address exposure paths in infrastructure code, which reduces the attack surface in production. It also monitors production for modifications that can introduce risks.
The solution is also designed to help organizations continuously identify and address violations of regulations, standards, and best practices, including GDPR, SOC 2, PCI, ISO, HIPAA, CIS benchmarks, and AWS Best Practices.
Organizations can also rely on the Accurics platform to identify design issues early in the DevOps lifecycle by generating a real-time topology. A baseline is created, enabling organizations to easily revert changes that are found to introduce risks.
“Our goal in developing the Accurics platform was to protect the full cloud native stack throughout the DevOps lifecycle, from the moment it’s defined in code and throughout the lifecycle of infrastructure being employed in production,” said Piyush Sharrma, co-founder and CTO of Accurics, who previously served as head of engineering at Symantec.
“Perhaps most importantly, we prevent the risk posture in production drifting away from the baseline defined through code. That’s the only way to ensure consistently strong protection that enables organizations to innovate with confidence,” Sharrma added.
Accurics’s other co-founder and the company’s CEO, Sachin Aggarwal, previously launched and led Layered Insight (acquired by Qualys), Jvion (acquired by JMI Equity) and Aqreva (acquired by Invision Capital).
Accurics told SecurityWeek that the commercial version of its product is priced at $2,000 per month for up to 100 resources running in the cloud. The free tool released by the company — a SaaS offering that is easy to deploy and use — can be used to analyze code for compliance issues and security risks. Users of the free tool are not required to commit to anything.
Accurics says its platform is currently being used by 10 organizations, including global enterprises and digital companies.
The company has raised $5 million from ClearSky, WestWave Capital, Firebolt Ventures and Secure Octane.
Related: Cloud Visibility Firm Orca Security Emerges From Stealth Mode
Related: Cloud Security Firm Valtix Emerges From Stealth With $14 Million in Funding