- 1 Business Security Weekly #81
- 2 Interview: Shawn Tuma on The Legal Case for Cyber Risk Management
- 3 Audience Requested Segment: Attorney-Client Privilege & Security
- 4 Tracking Security Innovation
- 4.1 Carbon Black files for IPO (worth $100M?)
- 4.2 VMware acquired E8 for undisclosed
- 4.3 Bomgar acquired by Francisco Partners for undisclosed
- 4.4 SourceClear acquired by CA for udisclosed
- 4.5 SecDo acquired by Palo Alto Networks for undisclosed
- 4.6 Karamba Security raised $10M in debt round
- 4.7 SpyCloud raised $5M Series A
- 4.8 Verkada raised $15M Series A
- 4.9 Armis raised $30M Series B
- 4.10 Expel raised $20M in Series B
- 4.11 ObserveIT raised $16M in a Series B
- 4.12 OPAQ Networks rises $22.5M in Series B
- 4.13 Empow raised $10M in Series B
- 4.14 Kenna raised $25M Series C
- 4.15 Checkr raised $100M Series C
- 4.16 Onapsis raised $31M in Series C
Business Security Weekly #81
Recorded April 16, 2018 at G-Unit Studios in Rhode Island!
- The webcast with Distil Networks on "The Year Bad Bots Went Mainstream", is being held on Wednesday, April 25th. Register now at securityweekly.com/distilnetworks.
- Check out SOURCE Boston 2018 from May 9th - 10th! Go to sourceconference.com and register using the code SW75WMKW to get a $75 discount!
- Ticket Sales are open for Social Engineering RI Conference. Saturday, June 6th at Salve Regina University in Newport RI. Go to - http://se-ri.org/ to register! Patrick Laverty will be joining us for an interview next week. Stay tuned to hear more about this conference!
Interview: Shawn Tuma on The Legal Case for Cyber Risk Management
Shawn Tuma is an experienced cybersecurity and data privacy attorney and partner at Scheef & Stone. He is widely recognized as in international thought-leader and subject matter expert in cybersecurity and data privacy law. Having practiced in this area of law since 1999, he is one of the most experienced and well-respected cybersecurity and data privacy law attorneys in the United States.
- Why is cybersecurity no longer just an IT issue/responsibility?
- How does legal protect companies from their data?
- Is this where reasonable security comes in?
- Does it make sense to have an attorney lead the cyber risk management program?
- How do we strike the balance between box-checking and boiling the ocean?
Audience Requested Segment: Attorney-Client Privilege & Security
Shawn Tuma sticks around to sort the good advice from the misinformation surrounding attorney-client privilege in security.
- What is attorney-client privilege and why is it interesting to security leaders?
- Where it make work?
- What doesn't work?
Tracking Security Innovation
Carbon Black files for IPO (worth $100M?)
- $191.5M over 9 rounds of funding…
VMware acquired E8 for undisclosed
- ‘E8 Security provides cybersecurity analytics that helps enterprises to analyze and detect advanced attacks and malicious insider activities.’
- $23.4M over 3+ rounds, including a $12M series B in Oct 2016
- UEBA is a feature, not a platform
Bomgar acquired by Francisco Partners for undisclosed
- ‘Bomgar provides remote support and access management solutions for education, government, healthcare and retail sectors.’
- Toma Bravo divestment to Francisco Partners
- Bomgar acquired Lieberman Software Feb 2018 (details undisclosed)
SourceClear acquired by CA for udisclosed
- ‘SourceClear is a software composition analysis tool that helps developers in identifying the security of the libraries used in open-sourced applications.’
- $11.5M over 2 rounds (seed and equity)
- (BlackDuck was recently acquired by Synopsys,
SecDo acquired by Palo Alto Networks for undisclosed
- ‘Secdo is an automated endpoint security platform that detects, investigates and responds to cyber attacks.’
- $10M Series A in Dec 2016
Karamba Security raised $10M in debt round
- ‘Karamba Security is a provider of in-car cybersecurity solutions for autonomous cars through automatically sealing electronic control units.’
- $27M in funding over 3 rounds
- “Venture loan”
SpyCloud raised $5M Series A
- ‘SpyCloud specializes in providing cybersecurity solutions that focuses on protecting businesses from data breaches and account takeover attacks.’
- $7.5M over 2 rounds
Verkada raised $15M Series A
- ‘Verkada is a cloud-based video surveillance platform that offers activity indexing, access control and tamper detection solutions for businesses.’
- $18.1M over 3 rounds
- IoT/Cloud/Video Surveillance (now called video security)
Armis raised $30M Series B
- ‘Armis develops an Internet of Things security platform that allows enterprises to control and restrict unmanaged devices accessing their systems.’
- $48.1M over 3 rounds
Expel raised $20M in Series B
- ‘Expel is a cybersecurity firm that helps enterprises to analyze, detect, investigate and respond to threats.’
- $27.5M over 2 rounds
- Looks like emphasis on response, replace the spend for MSSP
ObserveIT raised $16M in a Series B
- ‘ObserveIT is an insider threat management software firm that offers employee monitoring, behavioral analytics and policy enforcement services.’
- $36M over 2 rounds
- Check out the interview with Kevin Donavan on ESW #87: https://wiki.securityweekly.com/ES_Episode87
OPAQ Networks rises $22.5M in Series B
- ‘PAQ is a cloud security company that enables businesses and organizations to centralize, secure and optimize their networks.’
- $57M over three rounds since August 2016
Empow raised $10M in Series B
- ‘Empow is a cyber security firm that that uses AI and machine learning analytics to classify threats and alerts.’
- $19M raised in 2 rounds since Feb 2017
- Part of the anti-SIEM backlash; drive toward automation and orchestration
Kenna raised $25M Series C
- ‘Kenna Security develops a cloud-based vulnerability management platform that helps organizations to measure risk and prioritize remediation.’
- $45M over 3 rounds since Nov 2012
- Plans to hire more, expand sales, “innovate”
Checkr raised $100M Series C
- ‘Checkr is an online platform that offers background screening, information security and compliance management solutions for enterprises and startups.’
- $149M over 3 rounds
- Helps everyone make better, more nuanced connections
Onapsis raised $31M in Series C
- ‘Onapsis provides cybersecurity and compliance solutions for cloud and on-premise business-critical applications.’
- $54.4M over 3 rounds (seems incomplete)
- IPO in 3-4 years?