Thursday, June 13 2024

Obsidian Security, the leader in SaaS Security and Posture Management (SSPM), today announced $90 million in Series C financing led by Menlo Ventures, Norwest Venture Partners and IVP, with participation from existing investors Greylock, Wing and GV. Obsidian, which has now raised $119.5 million in total financing, will add Menlo Ventures Partner Venky Ganesan to its board of directors.

A leader in the SaaS Security Posture Management (SSPM) category coined by Gartner, Obsidian was founded in 2017 to help security and IT operations teams bridge the security and compliance gaps created when lines of business adopt SaaS applications to run business-critical functions like finance, payroll, HR, sales and operations. The adoption of tools like Salesforce, Workday, Github, Google Workspace, Microsoft 365, ServiceNow and Zoom only accelerated during the COVID-19 pandemic with organizations of more than 1,000 employees using more than 150 SaaS applications on average. This need to secure the most critical applications from external attacks, insider threats and misconfiguration, drove explosive revenue growth in 2021 for Obsidian. With 5x growth in deals of $100,000 or more last year, Obsidian has only just begun addressing the SaaS security gap.

“There’s a myopic focus on securing cloud infrastructure and company endpoints leaving a significant gap in the middle where users, data and business assets live – SaaS applications,” said Menlo Ventures Partner, Venky Ganesan. “In our conversations with CISOs and CIOs we have seen a profound shift that legacy security and configuration tools are not enough to protect an organization’s most critical assets.  We believe that Obsidian’s holistic approach to SaaS security will help define this category.”

Obsidian fills the gap left by traditional security solutions by analyzing state and activity data within and across applications to help reduce over-privilege, optimize configurations, prevent sensitive data from being exposed, and detect compromised accounts and insider threats. This protection is critical as according to Microsoft, 80 percent of employees use applications that may not be compliant with an organization’s security and compliance policies. The security challenge is further complicated by the thousands of integrations and plugins available for some of the world’s most popular applications. 

“There hasn’t been a comprehensive and contextual platform for securing third-party SaaS applications until Obsidian,” said Hasan Iman, CEO of Obsidian Security. “We’re not only enabling security teams to detect more threats and proactively improve their security posture, we’re bringing together the three major stakeholders in SaaS adoption – application vendors, lines of business and IT operations – to create a shared-responsibility model for SaaS security. The need for this is exemplified by the recent breach at Okta.  We’re honored to have investment partners like Menlo, Norwest and IVP join us in our mission.”

Who We Are | Obsidian Security
Glenn Chisholm, co-founder and chief executive officer of Obsidian Security
Previous

KKR to Acquire Barracuda Networks

Next

Fortress Information Security REceives $125M investment from Goldman Sachs

Check Also

Widget

Don’t Miss

One Cloud

Trend Micro Cloud One: A Comprehensive Review

Ellie Buscemi

What is Cloud One by Trend Micro? The Cloud One platform by Trend Micro is a cloud posture security management (CPSM) product that focuses on providing security in the cloud to businesses. Trend One is designed for businesses whose infrastructure relies on a mix of cloud applications and older device-based programs. Examining the security capabilities […]

Best Security Information and Event Management (SIEM) Solutions

Lara Oporto

A Security Information and Event Management system (SIEM) is typically most needed in larger organizations or those with complex IT infrastructures where there’s a high volume of security events and logs generated from various sources. Companies often invest in SIEM when they require comprehensive visibility into their network activities and want to centralize security monitoring […]

Best Browser Security Products

Ellie Buscemi

What is Browser Security and how does it work? Browser Security is a subcategory of cybersecurity that focuses on minimizing a user’s vulnerability to cyber threats while they use the worldwide web. These cyber threats include phishing web pages, session hijacking and malware, which can be injected onto a device by means of tamped-with web […]

Headshot of BastionZero CEO Sharon Goldberg

Cloudflare Acquires BastionZero to Enhance SASE Offering

Nico Davidoff

Acquisition Aims to Boost Cloudflare One’s Capabilities Amidst Growing SASE Market Competition Cloudflare has acquired BastionZero, a zero trust infrastructure platform, in a move aimed at enhancing its Cloudflare One secure access service edge (SASE) offering. The acquisition underscores Cloudflare’s commitment to expanding its presence in the growing SASE market. Cloudflare reported first-quarter revenue of […]

Best Secure Access Service Edge Platforms

Lara Oporto

What is SASE and how does it work? Secure Access Service Edge (SASE) is an architectural model that combines network connectivity with security functions, all delivered through a unified cloud platform or centralized policy control. In contrast to the traditional approach, where network security relies on a multitude of distinct functionalities like firewalls, Virtual Private […]

Best Data Security Posture Management (DSPM) Products

Ellie Buscemi

What is Data Security Posture Management and how does it work? Data Security Posture Management (DSPM) tools focus on protecting data by continuously tracking where it is located and who has access to it. DSPM refers to a set of methods that cybersecurity professionals use to better understand their sensitive data like what it is, […]