ShiftLeft Exits Stealth Mode
October 11, 2017

ShiftLef emerged from stealth mode to enable organizations to secure their cloud applications and microservices as part of their continuous integration pipeline, rather than merely reacting to threats discovered in production.

The company is launching with a $9.3 million Series A round of funding from top-tier venture capital firms Bain Capital Ventures and Mayfield, and from individual investors. In addition, Enrique Salem, Bain Capital Ventures managing director, FireEye board chairman, and former Symantec CEO; and Ursheet Parikh, Mayfield partner and StorSimple founder and former CEO, have joined the company’s Board of Directors.

ShiftLeft also announced the general availability of fully-automated Security-as-a-Service (SECaaS) for cloud software that understands the security needs of each version of each application, and creates custom security and threat detection for it. It is offered as a try-and-buy solution. With ShiftLeft, organizations can now secure their cloud applications as part of their continuous integration pipeline, rather than merely reacting to threats discovered in production. ShiftLeft also identifies vulnerabilities, including contextual vulnerabilities with usage of Open Source Software (OSS) and data leakage risks, allowing organizations to either fix them or protect against them in production using ShiftLeft’s Microagent.

ShiftLeft founders are experts with an extensive background in security and cloud infrastructure. CEO Manish Gupta (formerly of FireEye, Cisco, and McAfee) has been at the helm of several security innovations such as malware sandbox and Next Generation Firewall. CTO Chetan Conikee (formerly of Cloud Physics, Business Signatures, and CashEdge), and Chief Architect Vlad A Ionescu (formerly of Google, LShift, and Founder of Lever OS) have enabled innovations that underpin the electronic transactions in the financial industry and several open source initiatives.

ShiftLeft is directed by a strong Advisory Board, including Florian Leibert, Mesosphere CEO; Mitch Wainer, DigitalOcean co-founder and head of brand marketing; and Gabe Monroy, lead program manager for containers at Microsoft Azure.

“With its DevOps and SecOps friendly solution that blends security knowledge of code from build-time with runtime data from production, ShiftLeft solves a real problem for customers without slowing them down,” said Leibert.

ShiftLeft was founded with the mission to develop a better approach to protecting the next engine of innovation – software. The team sought to solve the problem of matching signatures to fast changing threats that results in an overwhelming amount of false alerts, making security capital and operationally inefficient. They realized scarce security talent coupled with the rapid increase in software causes traditional security approaches to fail. The team set out to invent a solution that with each new build extracts all security relevant aspects from the codebase, called Security DNA, and uses it to create a custom Microagent to provide runtime protection. Now for the first time, software is able to inform teams how it should be protected around its unique security specific needs.

“There is a large and important opportunity in the industry today to insert highly accurate security in the continuous integration and delivery (CI/CD) lifecycle, without impacting an organization’s pace of innovation,” said Gupta. “By assembling a world-class team that truly understands security, modern software development practices that enable Cloud adoption, and modern program analysis techniques, ShiftLeft is in an unparalleled position to deliver on this opportunity.”

Share this

Industry News

October 10, 2019

CloudBees launched a new partner program that expands ISV partners’ ability to align with CloudBees offerings and the global Jenkins community.

October 08, 2019

Nureva announced a key update to the Jira Software integration with Span Workspace, Nureva’s cloud-based digital canvas for visual planning and collaboration.

October 08, 2019

Fugue announced support for Open Policy Agent (OPA), an open source general-purpose policy engine and language for cloud infrastructure.

October 03, 2019

Redgate announced the launch of SQL Compare v14, the latest version of its industry standard tool for quickly and accurately comparing and deploying SQL Server databases.

October 03, 2019

Harness announced the release of Continuous Insights, a new capability of its CD platform that enables organizations to see clearly into software delivery performance across their engineering and development teams without needing to manually collect, correlate, and report metrics that might take days or weeks.

October 03, 2019

OutSystems and Workato announced a partnership aimed at allowing organizations to rapidly realize innovation, time to value, productivity, and mission-critical objectives through readily available application connectors.

October 02, 2019

Kong announced an acquisition and several new products.

October 02, 2019

Contrast Security announced the availability of .NET Core support on Contrast Community Edition (CE).

October 02, 2019

Checkmarx earned Amazon Web Services (AWS) Security Competency status for its Software Security Platform.

October 01, 2019

Parasoft announced the release of its newest product, Parasoft Selenic, a UI testing solution that makes Selenium smarter, to help organizations find real bugs faster.

October 01, 2019

Micro Focus announced the general availability of Deployment Automation 6.3, offering new deployment improvements for its Release Orchestration solution set.

October 01, 2019

Compuware announced enhancements to Topaz for Total Test and a partnership with OpenLegacy to help large enterprises speed mainframe software development and delivery while improving quality.

September 30, 2019

Deque Systems announced Axe Pro, a key addition to Axe, the web accessibility testing browser extension.

September 30, 2019

NIIT Technologies and mabl, Inc announced a partnership to deliver AI-driven automated solution for faster, economical and better application testing services.

September 30, 2019

Rockset announced the capability to analyze raw events from Apache Kafka in real time.