[ad_1]
Tel Aviv-based Intro, a startup building a security platform that helps enterprises manage and protect their secrets such as account credentials, certificates and API keys, today announced a $6 million seed round led by StageOne Ventures and Hyperwise Ventures. A number of angel investors, Trustee and Conveyance Security founders Rakesh Lonkar and Mickey Budai, as well as Imperva founder Amichai Shulman participated in this round.
Today’s enterprises often have to manage thousands of secrets across an ever-increasing number of services — and often, their employees don’t even know how many they’ve created. These secrets are often scattered and secret scanners and similar tools to prevent this information from leaking, these tools do not know anything about the context in which these secrets are used. If there’s an exposed secret in a piece of source code that’s already had privileges removed, that’s not really a priority to debug, for example.
The company was co-founded by Itzik Alvas (CEO) and Adam Cheriki (CTO), who first met when they were in the Israeli security forces. Alvas previously worked at a healthcare organization and then as a senior SRE manager at Microsoft, while Cheriki has worked in several security positions at large technology companies such as IBM, Javelin Networks, Symantec and Broadcom.
“Secrets have always been a big deal to me and me. [Adam] Also,” Alvas told me. “We have been dealing with it for a long time and were responsible for the security of secrets in our previous position. We saw how secrets were created and handled without any security controls – and we decided to do something about it.”
Image Credits: Entro security
He also noted that the team built Intron specifically with CISOs and security teams in mind. The service provides these stakeholders with insights into how their secrets are stored, through vaults, collaboration tools, cloud environments and SaaS platforms. It then analyzes the secrets it finds, correlates them with workloads, and provides a straightforward dashboard to help users understand any potential issues.
“We spoke to over a hundred CISOs and heard the same complaints over and over again,” Alvas said. “Companies don’t know how many secrets they hold
The cloud, where they are, who is using them, and most importantly, how to protect them.
Typically, companies use multiple tools to manage and protect their secrets, including scanners like Gitleaks, scanners like AWS, Azure or HashiCorp, and CI/CD secret scanners like Cycode or Aqua’s Argon.
Image Credits: in
One of Intro’s key differentiators, Alvas noted, is its end-to-end monitoring solution. As a result, the service can understand how secrets are used and help developers and security teams prioritize which issues to focus on. The company’s service integrates credentials from the company’s existing vaults, CI/CD systems, developer tools like Confluence, and more. In a matter of minutes, Intro can provide businesses with a pane of glass to identify and remediate potential vulnerabilities.
“In recent years, we’ve seen companies hit hard by privacy-based cyber-attacks. Today, R&D teams are forced to manage an increasing number of secrets in their development and distribute them across multiple repositories, repositories, and services. Security teams are incredibly challenged to combat this problem. This is where Intro Security comes to the rescue.” It is,” said Nofar Schneider, CEO of StageOne Ventures.
[ad_2]
Source link
