Owner security

ArmorCode adds $8 million for comprehensive application security platform

Missed a Future of Work Summit session? Head over to our Future of Work Summit on-demand library to stream.


ArmorCode today announced that it has added $8 million in its round of seed funding to further develop its “AppSecOps” platform, which brings together an array of different application security solutions and integrations into a unified offering.

The new funding, which completes ArmorCode’s $11 million seed round, will also be used to expand the startup’s go-to-market efforts, in addition to supporting product development. So far, ArmorCode customers include Guardant Health, ChargePoint, Shutterfly, and Nirmata. The Palo Alto, Calif.-based startup does not disclose the total number of customers it has.

Centralize application security

ArmorCode says its platform’s core capability is application security posture management (a term adopted by the company and several other vendors).

Application security posture management centralizes application security findings from static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis tools (SCA), according to the company. The solution also prioritizes findings, reduces triage time, and serves as a system of record for application safety findings and corrective actions, ArmorCode explains.

The platform offers integrations with more than 80 out-of-the-box security, development, and operational products, ArmorCode co-founder and CEO Nikhil Gupta said in an email. Integrations include DAST/SAST/SCA tools (such as Contrast Security, Snyk, and Veracode); cloud-native application protection platforms (such as Aqua Security, Qualys, and Palo Alto Networks Prisma); issue tracking (such as Jira); and a number of other tools.

ArmorCode’s platform then combines its application security posture management solution with other features, including vulnerability management, continuous compliance, and workflow automation for DevSecOps (development, security, and operations).

Ultimately, by using the ArmorCode platform, “Teams are able to control their AppSec chaos, reduce risk, and achieve AppSec operational efficiency,” Gupta said in an email.

Avoid blind spots

Sitaraman Lakshminarayanan, director of security architecture at Guardant Health, said in a press release that the ArmorCode platform “gives us insight into our security posture across all applications, APIs and microservices in our environment, we avoiding blind spots and improving safety.”

Obtaining this information, combined with automating workflows, “significantly reduces our costs associated with remediating vulnerabilities and enables us to provide a safe and secure service to our customers,” Lakshminarayanan said in the release.

ArmorCode was founded in July 2020 by Gupta and CTO Anant Misra, former CTO of FabHotels. Gupta, a former executive at companies such as ForeScout, VMware and Cisco, had most recently co-founded and served as CEO of Avid Secure, acquired by Sophos in 2019.

ArmorCode came out of stealth and launched its platform into general availability in May 2021.

Major competitors in the space include Enso, Threadfix (acquired by Coalfire) and CodeDx (acquired by Synopsys), Gupta said.

However, ArmorCode is “the only platform that enables organizations to scale application security posture, compliance and vulnerability management, and DevSecOps workflow automation from a single platform. shape,” he said.

Growth financing

The additional seed funding was led by Matterhorn Ventures and included investments from Sierra Ventures – which led the startup’s initial funding announced last May – and Tau Ventures.

With this funding, ArmorCode expects to grow its team from 50 employees to 75 within the next six months, Gupta said.

In terms of product development, ArmorCode plans to expand the platform’s insight delivery and automation capabilities to better streamline DevSecOps orchestration, while improving operational efficiency for application security. as a whole, he said.

VentureBeat

VentureBeat’s mission is to be a digital marketplace for technical decision makers to learn about transformative technology and transact business. Our site provides essential information on data technologies and strategies to guide you in the direction of your organizations. We invite you to become a member of our community, to access:

  • up-to-date information on topics that interest you
  • our newsletters
  • gated thought leader content and discounted access to our popular events, such as Transform 2021: Learn more
  • networking features, and more

Become a member