Top 13 Cloud Security Software
Last updated: March 13, 2022
Cloud Security Software address protecting sensitive data and meeting compliance requirements in cloud apps and platforms. CASB (cloud access security broker) is cloud based software that sits between cloud service users and cloud applications, and monitors all activity and enforces security policies.
Zscaler is working to make the internet safe for business. Go beyond basic internet security with our 100% cloud solution. Zero hardware and zero backhauling.
Skyhigh enables the entire Cloud Adoption Lifecycle, providing unparalleled visibility, usage analytics, and policy enforcement. Gain complete visibility into all cloud services in use and an objective risk assessment across data, business, and legal risk. Identify security breaches and insider threats, analyze usage patterns to understand demand for cloud services, and consolidate subscriptions. Seamlessly enforce security policies including encryption, data loss prevention, and coarse and granular access control
Netskope is the leader in cloud based security services. Our cloud security brokers empower your business by providing complete visibility & protection. Netskope automatically discovers and gives you analytics and policy enforcement in real-time and across any app, whether you manage it or not. That’s how cloud security solutions should work.
Bitglass is a cloud access security broker and the leader in total data protection. We enable enterprises to migrate to SaaS applications. With cloud apps, your corporate data leaves the network. Keep cloud data secure and compliant anywhere it goes. BYOD demands a balance between security and employee productivity. Learn how MDM falls short and how Bitglass can help.
Palo Alto Networks Prisma is securing the cloud from the inside out by providing the most comprehensive cloud security in the industry. With Prisma, organizations can protect their users, applications and data, regardless of where they’re located.
Complete security for all cloud applications. Use leading machine learning and UEBA capabilities to establish behavioral fingerprints for advanced risk calculation.
High-performance, integrated security solutions for global organizations and providers of all sizes.
Cisco Umbrella offers flexible cloud-delivered security when and how you need it. It combines multiple security functions into one solution, so you can enrich your incident response data and easily extend protection to devices and locations anywhere.
Cloud-delivered network security service enforces comprehensive internet security and data compliance policies, regardless of location or device.
Microsoft Cloud App Security is a multimode Cloud Access Security Broker (CASB). It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your cloud services.
on Live Enterprise
CipherCloud enables cloud adoption while ensuring security, compliance and control. Delivers comprehensive and precise visibility into all cloud applications in use and assesses their risk based on business, data & compliance criteria. Ensures all data protection policies are enforced, prevents unauthorized access, with data loss prevention, encryption, tokenization, and key management.
BetterCloud secures user interactions across your digital workplace. SaaS Management and Security that is customized to your business.
McAfee MVISION provides visibility and control over data and security policy management across SaaS, PaaS, and IaaS environments.
Latest news about Cloud Security Software
2022. Google is acquiring security intelligence firm Mandiant for $5.4B
Google is to acquire security intelligence company Mandiant, giving it access to security data gathering capabilities, as well as a team of hundreds of security consultants. The company will become part of Google Cloud upon closing. Mandiant is on a mission to make every organization secure from cyber threats and confident in their readiness. Mandiant's uniquely dynamic view of the attack lifecycle combines machine, adversary and operational cyber threat intelligence to understand and proactively protect against the relevant threats facing your organization.
2021. Public cloud security startup Laminar emerges from stealth with $37M
Laminar, a platform that provides full data observability across entire public cloud is coming out of stealth with $37 million. There are a number of tech companies that have identified the shortcomings of cloud services when it comes to cybersecurity, making for a variety of approaches to solving that problem. In the realm of public cloud services, others providing solutions include the likes of Netskope (which earlier this year was valued at $7.5 billion, speaking to the business opportunity here); Microsoft (which most recently beefed up its cloud-based cybersecurity profile with the acquisition of CloudKnox earlier this year); vArmour (which is approaching an IPO); and many, many more. Laminar’s belief is that it has built technology that is faster and easier to use, and is more geared to the realities of how cloud services are designed: apps and services are built and run across multiple public clouds (in Laminar’s case its main activity today is centered around Azure, Google Cloud and AWS, Avraham told me).
2021. Monad emerges from stealth with $17M to solve the cybersecurity big data problem
Cloud security startup Monad, which offers a platform for extracting and connecting data from various security tools, has launched from stealth with $17 million in Series A. Monad was founded on the belief that enterprise cybersecurity is a growing data management challenge, as organizations try to understand and interpret the masses of information that’s siloed within disconnected logs and databases. Once an organization has extracted data from their security tools, Monad’s Security Data Platform enables them to centralize that data within a data warehouse of choice, and normalize and enrich the data so that security teams have the insights they need to secure their systems and data effectively.
2021. Cloud security platform Netskope raises $300M
Netskope, focused on Secure Access Service Edge architecture, announced a $300 million investment round. Netskope takes a data-centric approach to cloud security, protecting data and users everywhere. The Netskope Security Cloud provides unrivaled visibility and real-time data and threat protection when accessing cloud services, websites, and private apps from anywhere, on any device. Only Netskope understands the cloud and delivers data-centric security from one of the world’s largest and fastest security networks. The company just completed a “three-year journey building the largest cloud network that is 15 milliseconds from anyone in the world”.
2021. Mitiga raises $25M to help organizations respond to cyberattacks
Israeli cloud security startup Mitiga has raised $25 million in a Series A round. Mitiga, unlike other companies in the cybersecurity space, isn’t looking to prevent cyberattacks, which the startup claims are inevitable no matter how much protection is in place. Rather, it’s looking to help organizations manage their incident response, particularly as they transition to hybrid and multicloud environments.
2021. Uptycs secures $50M to expand its security platform
Uptycs, a startup that uses data to help understand and prevent security attacks, announced a $50 million Series C. Part of the reason for the company’s success over the last year was that the pandemic generated more customer interest as people moved to work from home, the SolarWinds hack happened and companies were moving to the cloud faster. But the company has not been sitting still in terms of the platform. It has begun expanding on that vision to include all four main areas of security, including being proactive, reactive, predictive and protective.
2021. AppOmni raises $40M for tools to secure enterprise SaaS apps
AppOmni, a startup which has built a platform to help monitor SaaS apps and their activity, provide guidance to warn or block when things might go wrong and fix problems when they do occur - has raised $40 million in a Series B. The company today integrates with more than 100 connectors, platforms used by developers and IT teams at companies to manage the apps that their businesses use, such as tools like Splunk and Sumo Logic. Through this, AppOmni is able to aggregate and normalize event data around those apps, in addition to deeper monitoring in cases where it can integrate with apps themselves (those integrations to date include some of the most popular apps that enterprises use today, including Salesforce and Slack, Zoom, Microsoft 365, Box and GitHub).
2021. Grip Security raises $6M to improve SaaS security
Grip Security, that provides enterprises with full visibility into their SaaS portfolios through enforceable endpoint-centric access controls and new data governance capabilities that work across devices and locations, has raised a $6 million seed round. Most of the popular cloud access security brokers (CASBs) today were founded around 10 years ago and then later acquired by other major players like Microsoft, Cisco and Proofpoint. But Grip Security argues that the problems with protecting SaaS today is fundamentally different from those 10 years ago. The promise of Grip Security is that after a quick installation, enterprises get full visibility into which applications their employees actually use. Yaari wasn’t quite ready to give away the secret sauce of how Grip does this, though. But he noted that this is a non-intrusive solution.
2021. Xage introduces Zero Trust remote access cloud solution for hard-to-secure environments
Xage, a security startup that has been building a solution to help protect these hard-to-secure operations, announced a Zero Trust remote access cloud solution. This involves controlling access device by device and person by person by determining who can do what based on them authenticating themselves and proving who they are. It doesn’t rely on knowledge of a device password or a VPN zone password. The solution goes further with a secure traversal tunnel, which relies on a tamper-proof certificate to prevent hackers from getting from the operations side of the house — whether that’s a utility grid, water supply or oil and gas pipeline — to the IT side where they could then begin to muck about with the operational technology.
2021. Google’s BeyondCorp Enterprise security platform is now generally available
Google announced that BeyondCorp Enterprise, the zero trust security platform modeled after how Google itself keeps its network safe without relying on a VPN, is now generally available. BeyondCorp Enterprise builds out Google’s existing BeyondCorp Remote Access offering with additional enterprise features. Google describes it as “a zero trust solution that enables secure access with integrated threat and data protection.” As part of BeyondCorp Enterprise, businesses get an end-to-end zero trust solution that includes everything from DDoS protection and phishing-resistant authentication, to the new security features in the Chrome browser and the core continuous authorization features that protect every interaction between users and resources protected by BeyondCorp.
2021. Cloud security startup Lacework has raised $525M
Lacework, the cloud security startup providing solution built on top of Snowflake platform, has raised $525 million Series D bringing its overall funding to over $1 billion. The company reported that revenue grew 300% year over year for the second straight year. One of the reasons for such widespread interest from investors and customers is the breadth of the company’s security solution. It enables companies to build securely in the cloud, and we span across multiple different categories of markets, which enable the customers to do that. That encompasses a range of services, including configuration and compliance, security for infrastructure as code, build time and runtime vulnerability scanning and runtime security for cloud native environments like Kubernetes and containers.
2020. Orca Security raises $55M for its cloud-native security platform
Israeli cloud security firm Orca Security has raised a $55 million Series B funding. What makes Orca stand out is not just its focus on cloud-native technologies but what it calls its SideScanning technology. This enables it to map a company’s cloud environment and reconstruct its file system by looking at how workloads interact with the block storage services they use. Based on this, in combination with the cloud metadata it collects, it can map and scan a company’s entire data estate and its cloud assets — and find potential security issues. Because of this system, Orca also immediately discovers new hosts in the cloud without anybody having to maintain this part of the system.
2020. FireEye acquires AI security expert Respond Software for $186M
Cybersecurity company FireEye has acquired Respond Software, a company that helps customers investigate and understand security incidents, while reducing the need for highly trained (and scarce) security analysts. FireEye had its eye on Respond’s Analyst product, which it plans to fold into its Mandiant Solutions platform. Like many companies today, FireEye is focused on using machine learning to help bolster its solutions and bring a level of automation to sorting through the data, finding real issues and weeding out false positives. The acquisition gives them a quick influx of machine learning-fueled software.
2020. Palo Alto Networks to acquire AI cybersecurity firm Expanse for $800M
Palo Alto Networks has acquired Expanse for $800 million. Expanse provides a service to help companies understand and protect their attack surface, where they could be most vulnerable to attack. It works by giving the security team a view of how the company’s security profile could look to an attacker trying to gain access. The plan is to fold Expanse into Palo Alto’s Cortex Suite, an AI-driven set of tools designed to detect and prevent attacks in an automated way. Expanse should provide Palo Alto with a highly valuable set of data to help feed the AI models.
2020. Axis Security raises $32M to help companies stay secure while working from home
Axis Security, that provides secure Access as a Service platform announced a $32 million Series B investment. Axis Security launched last year with the idea of helping customers enable contractors and third parties to remotely access a company’s systems in a safe way, but when the pandemic hit, they saw another use case, one which had been on their road map: helping keep systems secure when employees were working from home. The company’s product uses the notion of Zero Trust, which, as the name suggests, assumes you can’t trust anyone on your system, and work from there. Using a rules-based engine, customers can create a secure environment based on your role.
2020. Palo Alto Networks to buy digital forensics consulting firm for $265M
Security software provider Palo Alto Networks has acquired The Crypsis Group, an incident response, risk management and digital forensics consulting firm, for a crisp $265 million. While the kinds of tools that Palo Alto provides are designed to prevent attacks, the fact is no set of tools is foolproof, and it’s always going to be a cat and mouse game between companies like Palo Alto and the attackers trying to breach their defenses. Crypsis can help figure out how a breach happened and ways to close up the cracks in the foundation to prevent access through that particular weak point in the future.
2020. Adaptive Shield raises $4M for its SaaS security platform
Adaptive Shield, a Tel Aviv-based security startup, has raised $4 million seed round. The company’s platform helps businesses protect their SaaS applications by regularly scanning their various setting for security issues. As companies adopt a large variety of SaaS applications, all with their own security settings and user privileges, security teams are often either overwhelmed or simply not focused on these SaaS tools because they aren’t the system owners and may not even have access to them. Adaptive Shield allows to log into SaaS services through its firewall. Currently, the company supports most of the standard SaaS enterprise applications you would expect, including GitHub, Office 365, Salesforce, Slack, SuccessFactors and Zoom. he company already has paying customers, including some Fortune 500 companies across a number of verticals.
2020. Open Raven raises $15M for its security tech to secure hybrid clouds
Cloud security startup Open Raven has closed on $15 million in new financing. Open Raven’s potential stems from the simple fact that a majority of all databases will be accessed from a cloud platform within the next two years. These databases may exist on several different service providers’ cloud computing platforms making it that much more difficult to secure and track the data as it’s accessed by different users. Put simply, data security tools weren’t built to handle this kind of data fluidity across multiple services. These instances of what Open Raven calls “data sprawl” can lead to misconfigurations that have become one of the biggest security threats
2020. BetterCloud scores $75M to lead the SaaSOps movement
In the middle of a crisis that has forced most companies to move workers home, being able to manage SaaS usage in this way is growing increasingly significant. BetterCloud, that gives IT visibility into its SaaS tools providing the means to discover, manage and secure those tools, announced a $75 million Series F. BetterCloud calls its solution SaaSOps that provides best practices of how SaaS applications are discovered, managed, and secured through centralized and automated operations (Ops), resulting in reduced friction, improved collaboration, and better employee experience. BetterCloud connects to more than 50+ SaaS applications and allows to consolidate administration into one centralized platform so you can save time on common tasks and focus on what’s most important.
2020. VMware to acquire Kubernetes security startup Octarine and fold it into Carbon Black
VMware announced today that it intends to buy early-stage Kubernetes security startup Octarine and fold it into Carbon Black, a security company it bought last year for $2.1 billion. Acquiring Octarine enables us to advance intrinsic security for containers (and Kubernetes environments), by embedding the Octarine technology into the VMware Carbon Black Cloud, and via deep hooks and integrations with the VMware Tanzu platform. VMware Carbon Black Cloud is a cloud native endpoint protection platform (EPP) that combines the intelligent system hardening and behavioral prevention needed to keep emerging threats at bay, using a single lightweight agent and an easy-to-use console.
2020. Bridgecrew raises $14M to automate cloud security
Bridgecrew, an early-stage startup that makes automated cloud security tooling aimed at engineers, announced a $14 million Series A. Bridgecrew was launched because its creators saw the huge bottleneck in security engineering, in DevSecOps. They found that a lot issues involved misconfigurations, and while there were security solutions out there to help, they were expensive, and they weren’t geared towards the engineers who were typically being charged with fixing the security issues. The company decided to solve that problem by coming up with a solution geared specifically for the way engineers think and operate. They do that by codifying the problem. When they encounter a new problem, they build a playbook and then that becomes part of the product.
2020. Palo Alto Networks to acquire CloudGenix for $420M
Palo Alto Networks has acquired CloudGenix for $420 million. CloudGenix delivers a software-defined wide area network (SD-WAN) that helps customers stay secure by setting policies to enforce compliance with company security protocols across distributed locations. This is especially useful for companies with a lot of branch offices or a generally distributed workforce, something just about everyone is dealing with at the moment as we find millions suddenly working from home.
2020. Cloud security provider Netskope hauls in another $340M
Netskope, that focuses on cloud security, has raised another $340M. From the start, Netskope has taken aim at cloud and mobile security, eschewing the traditional perimeter security that was still popular when the company launched in 2012. Legacy products based on traditional notions of perimeter security have gone obsolete and inhibit the needs of digital businesses. Today’s urgent requirement is security that is fast, delivered from the cloud, and provides real-time protection against network and data threats when cloud services, websites, and private apps are being accessed from anywhere, anytime, on any device
2020. HPE acquires cloud native security startup Scytale
Hewlett Packard Enterprise has acquired Scytale, a cloud native security startup that is built on the open-source Secure Production Identity Framework for Everyone (SPIFFE) protocol. Specifically, Scytale looks at application-to-application identity and access management, something that is increasingly important as more transactions take place between applications without any human intervention. It’s imperative that the application knows it’s OK to share information with the other application. Thus HPE, that progresses into hybrid, multi-cloud environment management, wants to ensure 100% secure, zero trust systems, that can dynamically identify and authenticate data and applications in real-time.
2020. Cyral announces $11M Series A to help protect data in cloud
Cyral, an early-stage startup that helps protect data stored in cloud repositories, announced an $11 million Series A today. The company’s product acts as a security layer on top of cloud data repositories — whether databases, data lakes, data warehouse or other data repository — helping identify issues like faulty configurations or anomalous activity. Unlike most security data products of this ilk, Cyral doesn’t use an agent or watch points to try to detect signals that indicate something is happening to the data. Instead, Cyral is a security layer attached directly to the data. As an example, Cyral could detect that someone has suddenly started scanning rows of credit card data, or that someone was trying to connect to a database on an unencrypted connection.
2017. McAfee acquires cloud security startup Skyhigh Networks
McAfee has acquired Skyhigh Networks, a specialist in cloud security. The deal is a sign of the ongoing trend for consolidation in the security industry, where smaller players are coming together under larger businesses to provide more security services under one roof. This makes sense because the issue of cybersecurity has become one of the most persistent in the market today, with malicious hacking a nightmare not just for businesses but individuals as more and more of our personal and not-so-personal information becoming digitised and moving to the cloud, putting it in the reach of both criminals and destructive pranksters. In the case of Skyhigh, McAfee — whose legacy business is in endpoint security — is specifically acquiring the company for that cloud expertise.
2016. Cisco acquired cybersecurity-as-a-Service provider CloudLock
Cisco announced it plans to acquire (for $293 million) CloudLock, a cloud-based security provider that uses APIs to let enterprises apply and monitor security on documents and other content that they share and store in cloud-based applications. CloudLock works with Office365, Google Drive, and Salesforce applications, among thousands of other apps and software. Its focus is on offering security and enforcing policies to protect documents, regardless of device used to access it, and allowing for specific controls based on location.
2015. Cisco acquired security analytics software Lancope
Cisco announced that it would acquire (for $452.5 million) Lancope, which focuses on behavior analytics, threat visibility and security intelligence to detect malicious activity on corporate networks. Lancope team will become part of the Cisco Security Business Group. The problem that Lancope solves is this: As the world becomes ever more connected and businesses are using an increasing number of devices and apps to access corporate networks — some of which are coming in by “back-door” routes unapproved by a company’s IT department — the risks for data breaches grow. The company uses systems it calls “NetFlow” and “StealthWatch” to essentially track all activity in networks in real time to look for any erratic activity. It claims to cover some 45 million hosts among its customers, which include both Cisco and HP.
2015. Microsoft acquired cloud security provider Adallom
Microsoft announced that it purchased cloud security firm Adallom. Adallom's platform provides identity-based, security-as-a-service
2015. Cloud security service Zscaler raised $100 million
Security platform Zscaler, which offers a wide range of web, mobile and cloud security services for enterprises, has raised a $100 million Series B funding. That brings its valuation over $1 billion. The company says it now has more than 5,000 customers — double the number from a year ago. Its customers include the likes of Humana, NBC, ExxonMobil and the UK’s National Health Services. The company says it now protects more than 13 million employees. Zscaler’s technology sits between corporate networks (and the user’s mobile devices) and the cloud — no matter whether that’s a cloud computing service like AWS, Azure or a privately hosted OpenStack cloud, or cloud-based applications like Dropbox and Office 365. Because it inspects all traffic to these services from company-owned devices and networks, it can offer both security and compliance solutions.