Connect with us

Hi, what are you looking for?


Application Security

Push Security Banks $4 Million Seed Funding

Push Security, a British startup building technology to help defenders manage cloud software sprawl and shadow IT, has banked $4 million in early-stage venture capital funding.

Push Security, a British startup building technology to help defenders manage cloud software sprawl and shadow IT, has banked $4 million in early-stage venture capital funding.

The London-based firm said the $4 million seed round was led by Decibel, a Silicon Valley VC firm betting on cybersecurity and open source startups. Several prominent security executives, including Duo co-founder Jon Oberheide and Thinkst chief executive Haroon Meer, also invested in Push Security.

The company is building technology promising user-centric security for Saas (software-as-a-service) applications sprinkled throughout organizations. 

“Most organizations have hundreds of SaaS apps in use in their environment and the majority of those apps are owned by employees rather than IT or security,” Push Security said in a note announcing the financing.  These SaaS apps, the company argues, introduces risk to the business unless they are properly managed and secured. 

The existing approach is to implement highly restrictive policies for non-approved SaaS apps but this inevitably leads to employees circumventing policies and introducing attack surface.

“The world of work is shifting in a big way,” said Adam Bateman, Push co-founder and CEO. “You can’t secure SaaS that’s owned by employees without working with employees.” 

He said Push Security is working on a lightweight, scalable way to let employees use SaaS responsibly, guiding them to actually fix security issues, while offloading work from security teams.  

Advertisement. Scroll to continue reading.

The Push Security tool can be used to discover third-party integrations, tools, bots and other apps and discover which SaaS apps are in use and which employees are using them. It can also be used to discover malicious mail rule detection, manage automated MFA deployment, and discover when an employee account has been compromised.

Related: Huntress Acquires User Education Startup Curricula for $22M

Related: Astrix Security Nabs $15M to Tackle Attack Surface Sprawl 

Related: Investors Bet on Cyberpion in Attack Surface Management Space 

Written By

Ryan Naraine is Editor-at-Large at SecurityWeek and host of the popular Security Conversations podcast series. He is a security community engagement expert who has built programs at major global brands, including Intel Corp., Bishop Fox and GReAT. Ryan is a founding-director of the Security Tinkerers non-profit, an advisor to early-stage entrepreneurs, and a regular speaker at security conferences around the world.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


Less than a week after announcing that it would suspended service indefinitely due to a conflict with an (at the time) unnamed security researcher...

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...

Data Protection

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybersecurity Funding

SecurityWeek investigates how political/economic conditions will affect venture capital funding for cybersecurity firms during 2023.

Artificial Intelligence

The CRYSTALS-Kyber public-key encryption and key encapsulation mechanism recommended by NIST for post-quantum cryptography has been broken using AI combined with side channel attacks.

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...