WestWave Capital is an early-stage Venture Capital firm that invests in Seed and Series A Enterprise companies building deep technology solutions. They focus on SaaS, security, cloud infrastructure, blockchain, analytics, and IoT companies.

WestWave Capital

Acrobator Ventures invests in big-impact tech founders from pre-seed to seed stage. We operate from Amsterdam and Kyiv/Tbilisi and are interested in Eastern founders building bridges to Western markets like the US. Acrobator Ventures focuses on founders' network-, data-, and market(ing) access. Our strongest conviction is on infrastructure, market-enabling fintech, compliance, and AI/ML.

Acrobator Ventures | Acrobator.vc

StoneMill Ventures invests in disruptive cyber security companies, primarily at the seed stage. StoneMill are active investors and look for founding teams that can benefit from our experience building pioneering security companies.

StoneMill Ventures

Souther CA based venture capital fund investing in early-stage emerging tech startups.

Emerging Ventures

Two Bear Capital invests in early-stage companies with disruptive innovations at the intersections of biotech, bioinformatics, machine learning / AI, and cybersecurity that deliver dramatically better solutions to the most critical problems affecting human health, security and wellness.

Two Bear Capital

Canaan is an early stage venture capital firm that invests in entrepreneurs with visionary ideas. With $5B under management, a diversified fund and over 190 exits to date, Canaan has invested in some of the world's leading technology and healthcare companies over the past 30 years. Canaan’s focus areas include fintech, enterprise/cloud, marketplaces, frontier tech, biopharma, digital health, and medtech.

Canaan Partners

Blu Venture Investors is a venture capital investment company that supports early-stage entrepreneurs. Their investors are experienced, successful operating executives with experience in a broad range of industries and business models. Each of their investors has successfully launched new companies, products or services. The company provides initial growth-stage funding and active mentorship to early-stage companies while delivering strong returns for its members and the entrepreneurs they support. Blue Ventures Investors was founded in 2010 and is based in Vienna, Virginia, United States.

Blu Venture Investors

Cisco Investments is an active investor with more than 40 investment professionals with deep market and technology expertise located in major geographies, including US, Canada, China, India, Israel, and Europe. Over the last 20 years, Cisco Investments has invested in hundreds of companies across different segments and helped them build to successful IPOs or acquisitions. They currently have an active portfolio of $2B with over 80 direct investments around the world, and they also hold Limited Partner positions in over 35 funds globally.

Cisco Investments

Liquid2 Ventures provides technology startups with seed-stage investments and is based in San Francisco, California. The firm was founded in 2015 by Joe Montana, Mike Miller, and Michael Ma.

Liquid 2 Ventures

BINARLY

Binarly is a global firmware and software supply chain security company founded in 2021.  The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.

Binarly is a cybersecurity company founded in 2021 that specializes in firmware security and supply chain protection. The company has developed an AI-powered firmware security platform designed to identify vulnerabilities, malicious firmware modifications, and provide firmware SBOM (Software Bill of Materials) visibility without access to source code. Binarly's technology focuses on detecting and mitigating security risks below the operating system level, particularly in the complex layers of code that expose attack surfaces in firmware.

Firmware Security Startup Binarly Raises $3.6 Million in Seed Funding

Supply Chain Risk Management

Binarly Attracts $10.5M to Tackle Software Supply Chain Security

16 Vulnerabilities Found in Firmware of HP Enterprise Devices

About Us - BINARLY's Mission & Vision

Startup Spotlight: Binarly Hardens Firmware Security

Binarly Unveils Next-Gen Firmware Protection Transparency Platform, Revolutionizing Device Supply Chain Security

Gen Firmware Protection Transparency Platform, Revolutionizing Device Supply Chain Security

Binarly Executives to Present on Firmware Security at Black Hat Briefings 2022

Firmware Supply Chain Company Binarly Raises $3.6 Million from WestWave Capital, Acrobator Ventures

Threat Prevention Toolchain

Binarly to Unveil New Findings on Critical PKfail Issue at LABScon 2024

Binarly is a cybersecurity company founded in 2021 that specializes in firmware security and supply chain protection. The company has developed an AI-powered firmware security platform designed to identify vulnerabilities, malicious firmware modifications, and provide firmware SBOM (Software Bill of Materials) visibility without access to source code. Binarly's technology focuses on detecting and mitigating security risks below the operating system level, particularly in the complex layers of code that expose attack surfaces in firmware.
The company's flagship product, the Binarly Transparency Platform, was released in April 2023. This platform enables device manufacturers and endpoint protection products to comprehensively analyze both firmware and hardware to identify vulnerabilities, misconfigurations, and malicious code implantation. The platform integrates into the software development lifecycle (SDLC) or CI-CD pipeline, offering capabilities such as Firmware Similarity Analysis, Deep Vulnerability Analysis, and SBOM and Dependency Analysis.
Binarly's approach combines machine learning and deep code inspection at the binary level, allowing security teams to gain visibility into hardware and firmware failures and respond to sophisticated attacks below the operating system. The company's technology uses semantic properties of binary code to improve detection accuracy while limiting false positives. In 2022 alone, Binarly coordinated the disclosure of 228 high-impact vulnerabilities affecting the enterprise device ecosystem, working with major vendors to mitigate security issues across the computing landscape.

Axonius is a cybersecurity asset management company founded in 2017 by Dean Sysman, Ofri Shur, and Avidor Bartov. The company offers a platform designed to help organizations identify and secure devices on their networks by leveraging existing security and management tools. Axonius' solution integrates with over 300 security and management solutions to provide customers with a comprehensive asset inventory, uncover security gaps, and automatically validate and enforce security policies. The platform covers hardware, software, SaaS applications, cloud services, and user identities.
Axonius' approach focuses on correlating asset data from a customer's existing infrastructure and controls rather than deploying new agents or sensors. This allows for quick deployment, often within minutes, and provides immediate value by creating an up-to-date inventory of assets. The platform helps organizations mitigate threats, navigate risks, decrease incident response time, and eliminate manual, repetitive tasks.
In 2023, Axonius crossed the USD 100 million mark in annual recurring revenue. The company's growth has been rapid, with Amit Karp of Bessemer Venture Partners noting that Axonius took less than 15 months to grow from USD 1 million ARR to USD 10 million ARR, making it one of the fastest-growing companies in BVP's history. As of March 2024, Axonius has raised nearly USD 600 million in funding and is valued at USD 2.6 billion.
Key customers and partnerships
Axonius has built a significant customer base that includes more than a dozen Fortune 500 and global organizations. Notable customers include Schneider Electric, News Corp, Anheuser-Busch InBev, The New York Times, and Cimpress. The company also supports four of the five major US Department of Defense service agencies.
In February 2020, Axonius appointed Mark Daggett as Vice President of Channels and Alliances to expand its partner program and meet increasing customer demand. The company has partnerships with various channel programs and professional services partners, including 443 Technologies, Alta Technologia, Artha Mitra Interdata, Ascent Global, ePlus, CloverIT, Ignition Technology, and Netpoleon. Axonius has also formed strategic alliances with major technology providers such as CISCO, Okta, AWS, and ServiceNow.
In March 2024, Axonius announced a partnership with Claroty to bring enterprise attack surface management to cyber-physical systems (CPS) environments. This collaboration aims to provide organizations with a unified view of assets across various environments, extending from cloud to on-premises infrastructure.

Axonius

JupiterOne is a cloud-native cyber asset attack surface management (CAASM) platform that helps organizations map, analyze, and secure complex cloud environments. Founded by Erkang Zheng, JupiterOne uses a graph-based approach to provide visibility and context across an organization's entire cyber asset universe. The platform connects to over 180 systems and data sources to collect, integrate, and model cyber asset data, including cloud resources, devices, identities, access rights, code repositories, and more. JupiterOne's technology allows teams to discover, monitor, understand, and act on changes in their digital environments.
The platform's core features include a custom query language (J1QL), pre-built queries, and natural language search capabilities that enable users to ask complex questions about their environment and get answers within seconds. JupiterOne offers over 500 out-of-the-box English-language questions and the ability to create custom queries. The company's graph-based data model exposes intricate relationships between cyber assets, providing contextual insights for security investigations and incident response.
JupiterOne addresses multiple use cases, including cloud security posture management, security operations and engineering, and governance and compliance. The platform helps organizations assess and monitor compliance with regulations like GDPR and identify vulnerabilities.
As of June 2022, JupiterOne had raised a total of USD 119 million in funding and achieved a valuation of over USD 1 billion.
Key customers and partnerships
JupiterOne's client base includes cloud-native enterprises such as Cisco, Databricks, Indeed, and Robinhood. The company has formed strategic partnerships with several major technology firms. In November 2021, JupiterOne and Cisco announced the launch of Secure Cloud Insights, an expanded cloud security and security operations partnership. This solution integrates JupiterOne's cyber asset context into Cisco technologies to provide enhanced cybersecurity capabilities for Cisco customers.
JupiterOne has also established partnerships with other cybersecurity companies. In April 2023, the company announced an integration with Splunk to provide better data visibility for Splunk users. Additionally, JupiterOne is part of the AWS Partner Network (APN) and was recognized as an AWS Rising Star Independent Software Vendor (ISV) Partner of Year 2022.

JupiterOne

Noetic Cyber is a cyber asset attack surface management (CAASM) company founded in 2019 by Paul Ayers, Allen Hadden, and Allen Rogers. The company provides a cloud-based continuous cyber asset management and controls platform that aims to give organizations better visibility into their digital infrastructure and help them identify and address security gaps. Noetic's platform uses API aggregation and correlation to gather data from various security and IT management tools, leveraging graph database technology to create a dynamic map of cyber connections between entities in both cloud and on-premises environments. This approach enables the discovery of cyber risks and non-compliant systems.
The Noetic platform employs automation and orchestration to deliver remediation capabilities and help cybersecurity teams anticipate and react to changing IT and security requirements. In September 2023, Noetic introduced significant enhancements to its platform, including Data Insights, Unified Model Explorer, and Machine Learning Classifiers. These features are designed to streamline the process of managing large volumes of security data from disparate systems and help users quickly uncover critical insights and coverage gaps.
Noetic Cyber's technology addresses common security asset management challenges, such as establishing relationships between different assets and business applications, managing assets across various tools and business units, and handling the volume and pace of change in IT environments. The company's goal is to improve security tool and control efficacy by breaking down existing data silos and enhancing the entire security ecosystem.

Noetic Cyber

Nagomi Security, founded in January 2023, is a company that specializes in proactive security and threat exposure management. The company offers a Proactive Defense Platform designed to help cybersecurity teams optimize the effectiveness of their existing security tools against real-world threats. Nagomi's platform provides end-to-end visibility of defense capabilities mapped against the MITRE ATT&CK framework, enabling organizations to prioritize risks based on their unique threat profiles and receive actionable remediation plans. The platform integrates with solutions from vendors such as CrowdStrike, Microsoft, SentinelOne, Okta, Qualys, Rapid7, and Google through read-only API connections. Nagomi's technology aims to address the issue that over 80% of breaches occur in organizations that already had tools in place to prevent them. The platform can identify misconfigurations, highlight critical gaps, and prescribe clear steps for improvement. As of September 2024, Nagomi reported that its customers had identified over 13 million misconfigurations out of more than 40 million total configurations, with over 3.6 million exposures fixed.
Key customers and partnerships
Nagomi Security has established partnerships with several prominent organizations in the cybersecurity industry. In September 2024, the company announced a partnership with CrowdStrike to integrate CrowdStrike's threat intelligence feeds with Nagomi's Proactive Defense Platform. This collaboration aims to enable organizations to convert threat insights into concrete, prescriptive actions. Nagomi's customer base includes notable organizations such as Applied Systems, HFW, and WELL Health Technologies. The company has also reported working with a Fortune 500 manufacturing company, which saw a 9% improvement in CrowdStrike utilization after implementing Nagomi's solution. Additionally, Nagomi has assisted various companies across industries, including healthcare, technology, law, insurance, and energy, in improving their security postures and addressing specific cybersecurity challenges.

Nagomi Security

DoControl is a SaaS Security Posture Management solution that provides automated data access controls for SaaS applications. Founded in 2020 and headquartered in New York, DoControl offers comprehensive visibility, threat detection, and remediation for SaaS data exposure and insider threats. The company's platform is designed to secure sensitive data and files within business-critical SaaS applications such as Google Drive, Slack, Microsoft SharePoint, Salesforce, and Box.
DoControl's solution combines CASB (Cloud Access Security Broker) and DLP (Data Loss Prevention) capabilities to ensure protection across major SaaS ecosystems. It harnesses user interactions and API access across SaaS applications and feeds them into powerful no-code workflows that automatically identify, respond to, and remediate threats stemming from SaaS data policy violations. The platform incorporates business and security context to ensure quick response to emerging threats and effective insider risk management.
The company's technology uses an event-based approach for near-real-time threat detection, replacing industry standards of days and weeks. Leveraging automated security workflows and end-user interactions, DoControl significantly reduces SaaS data exposure over time, ensuring robust security with minimal effort and no impact on productivity.
In March 2024, DoControl released a report which found that companies were generating approximately 286,000 new SaaS assets each week. The report also highlighted that one out of six employees shared company data with their personal email, emphasizing the need for comprehensive security strategies to mitigate insider threats and control data exposure.
Key customers and partnerships
DoControl has gained recognition for its innovative approach to SaaS security. In 2024, the company won two gold awards at the 20th Annual Globee Cybersecurity Awards in the categories of Insider Threat Management and Most Innovative Security Software of the Year. Additionally, DoControl received a silver award for its achievements in Data Loss Prevention.
Vox Media, a modern mass media company, is a notable customer of DoControl. The company uses DoControl to proactively detect and mitigate accidental data oversharing within their cloud collaboration environments. DoControl's advanced monitoring and alerting capabilities ensure sensitive information is not exposed to unauthorized individuals. When oversharing incidents are detected, DoControl automatically takes appropriate actions to restrict access or notify administrators for further review.
DoControl has also integrated its solution with Zoom to provide comprehensive SaaS data protection for the video conferencing platform. This integration allows users to gain visibility into specific details on account users and cloud recordings, enforce strong password protection for high-risk users, provide secure access to sensitive video recordings and text-based files, and establish robust data access control policies to protect sensitive data and files within Zoom.

DoControl

Platforms that help proactively reduce an organization's exposure to cyber attacks by locating and managing infrastructure, including SaaS, apps, and devices.

Solutions that leverage GenAI to present cybersecurity information in simple language or to generate remediation code.

Platforms that use AI and other methods to automate cybersecurity workflows, such as threat detection and remediation.

Platforms that manage or automate compliance with cybersecurity industry standards.

Solutions that help organizations test their security measures through simulated cyber attacks.

Platforms that help organizations ensure the security of open-source or third-party components used in software development.

Organizations that track and collate cyber threats, making them easier to detect and repel.

Most cybersecurity firms offer their services to enterprises on subscription bases.

AI and machine learning are heavily used in cybersecurity for automation and workflow streamlining.

Cybersecurity copilots or AI assistants leverage GenAI to display information in simple language or to generate remediation code.

BINARLY

Sources

About EDGE

Contact Us

Resources

Area of Focus

Technology Research Made Effortless