Welcome!

News Feed Item

SourceClear Launches to Redefine Security for Developers

SourceClear, the company creating a modern software security platform for developers, today announced it has closed $1.5 million in seed funding for the SourceClear platform, which is turning traditional software security inside-out. With general availability in the coming weeks, SourceClear empowers developers with the intelligence to make smarter decisions while they’re building software, ensuring organizations gain complete visibility across their software portfolios. The platform integrates directly into established development tools, is armed with machine-learning capabilities and leverages ‘big data’ analytics.

“Developers are literally the only people who can solve the epidemic in software security,” said SourceClear Founder and CEO Mark Curphey. “Traditional security tools were built for security and IT people, and there has been poor adoption and high degrees of friction from developers. With the cloud, agile, open-source, mobile, devops, big-data, artificial intelligence and social platforms, developers are changing the world faster than ever before and security tools simply haven’t kept up. We are changing that. Developers love us, and our early funding is a strong vote of confidence in our vision.”

Solving Security Problems at Their Source

SourceClear’s first product helps organizations identify which components they are using across their software portfolio, where they come from, what they do and which ones have security issues. They then help developers fix the issues and stay protected against new threats.

Up to 80% of the source code in modern applications originates from reusable and open-source development frameworks and libraries. Hackers have learned to analyze and exploit these components giving them access to far more data than hacking systems one-by-one. Hackers and governments are known to have modified open-source libraries which are then innocently installed by developers creating backdoors and vulnerabilities that can be exploited at will.

“Developers are the ones burdened with security failures,” said Frank Marshall, former VP of Engineering at Cisco Systems Inc. “By operating within developers’ workflows and helping them find and fix issues in real-time, SourceClear is addressing the biggest security vulnerability: The inability of organizations to distribute the right information to the right people at the right time.”

SourceClear Secures A-List of Angel Investors

The SourceClear seed funding round is led by a group of world-class angel investors including Justin Somaini, Chief Trust Officer at Box.com; Frank J. Marshall, former VP of Engineering at Cisco Systems Inc.; Amos Michelson, Chairman of Kardium; and Mary Cirillo, board member at Thomson Reuters (TRI).

Founded by security veterans from Microsoft (MSFT), Charles Schwab (SCHW) and Foundstone / McAfee (MFE), SourceClear’s over-subscribed seed round reflects strong interest in the company’s initial products, traction from early adopters and the upcoming product portfolio. CEO and Founder Mark Curphey also founded OWASP, headed the software security program at Charles Schwab, led the information security tools team at Microsoft and was the Product Unit Manager for the Microsoft Developer Network (MSDN).

Boasting a track record of working with successful security and enterprise companies, angel investors include:

  • Justin Somaini, Chief Trust Officer, Box.com; former CSO at Yahoo! (YHOO), Verisign (SYMC) and Symantec (SYMC);
  • Frank J. Marshall, former Vice President of Engineering at Cisco Systems (CSCO), director on numerous boards, including Juniper Networks (JNPR), Aerohive Networks (HIVE) and InfoBlox (BLOX) and former Chairman Netscreen Technologies (NSCN). Successful security seed investments include MobileIron and SourceFire;
  • Amos Michelson, chairman of Kardium, former CEO of Creo and CEO of Opal Inc.; former Ernst & Young Entrepreneur of the Year;
  • Mary Cirillo, Member of the Board at Thomson Reuters, former Cisco board member;
  • Seattle-based Kinzer Capital;
  • London-based Realise Capital Partners;
  • A private investment syndicate based in Tel-Aviv and Silicon Valley.

SourceClear’s world-class advisory board includes Box.com Chief Trust Officer Justin Somaini, privacy expert and author Siobhan MacDermott, CrowdStrike CEO and former McAfee global CTO George Kurtz, software security expert John Viega and user experience expert Charlie Claxton.

About SourceClear

At SourceClear, we believe that security must be built-in—by developers themselves, in real time, as they create applications. We’re the only company on the planet 100% dedicated to building security tools for software developers. Tools they love to use. Tools they actually use. Find out more at https://sourceclear.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
"Storpool does only block-level storage so we do one thing extremely well. The growth in data is what drives the move to software-defined technologies in general and software-defined storage," explained Boyan Ivanov, CEO and co-founder at StorPool, in this SYS-CON.tv interview at 16th Cloud Expo, held June 9-11, 2015, at the Javits Center in New York City.
Sometimes I write a blog just to formulate and organize a point of view, and I think it’s time that I pull together the bounty of excellent information about Machine Learning. This is a topic with which business leaders must become comfortable, especially tomorrow’s business leaders (tip for my next semester University of San Francisco business students!). Machine learning is a key capability that will help organizations drive optimization and monetization opportunities, and there have been some...
A strange thing is happening along the way to the Internet of Things, namely far too many devices to work with and manage. It has become clear that we'll need much higher efficiency user experiences that can allow us to more easily and scalably work with the thousands of devices that will soon be in each of our lives. Enter the conversational interface revolution, combining bots we can literally talk with, gesture to, and even direct with our thoughts, with embedded artificial intelligence, whic...
The question before companies today is not whether to become intelligent, it’s a question of how and how fast. The key is to adopt and deploy an intelligent application strategy while simultaneously preparing to scale that intelligence. In her session at 21st Cloud Expo, Sangeeta Chakraborty, Chief Customer Officer at Ayasdi, provided a tactical framework to become a truly intelligent enterprise, including how to identify the right applications for AI, how to build a Center of Excellence to oper...
While some developers care passionately about how data centers and clouds are architected, for most, it is only the end result that matters. To the majority of companies, technology exists to solve a business problem, and only delivers value when it is solving that problem. 2017 brings the mainstream adoption of containers for production workloads. In his session at 21st Cloud Expo, Ben McCormack, VP of Operations at Evernote, discussed how data centers of the future will be managed, how the p...
ChatOps is an emerging topic that has led to the wide availability of integrations between group chat and various other tools/platforms. Currently, HipChat is an extremely powerful collaboration platform due to the various ChatOps integrations that are available. However, DevOps automation can involve orchestration and complex workflows. In his session at @DevOpsSummit at 20th Cloud Expo, Himanshu Chhetri, CTO at Addteq, will cover practical examples and use cases such as self-provisioning infra...
As DevOps methodologies expand their reach across the enterprise, organizations face the daunting challenge of adapting related cloud strategies to ensure optimal alignment, from managing complexity to ensuring proper governance. How can culture, automation, legacy apps and even budget be reexamined to enable this ongoing shift within the modern software factory? In her Day 2 Keynote at @DevOpsSummit at 21st Cloud Expo, Aruna Ravichandran, VP, DevOps Solutions Marketing, CA Technologies, was jo...
As Marc Andreessen says software is eating the world. Everything is rapidly moving toward being software-defined – from our phones and cars through our washing machines to the datacenter. However, there are larger challenges when implementing software defined on a larger scale - when building software defined infrastructure. In his session at 16th Cloud Expo, Boyan Ivanov, CEO of StorPool, provided some practical insights on what, how and why when implementing "software-defined" in the datacent...
Blockchain. A day doesn’t seem to go by without seeing articles and discussions about the technology. According to PwC executive Seamus Cushley, approximately $1.4B has been invested in blockchain just last year. In Gartner’s recent hype cycle for emerging technologies, blockchain is approaching the peak. It is considered by Gartner as one of the ‘Key platform-enabling technologies to track.’ While there is a lot of ‘hype vs reality’ discussions going on, there is no arguing that blockchain is b...
Blockchain is a shared, secure record of exchange that establishes trust, accountability and transparency across business networks. Supported by the Linux Foundation's open source, open-standards based Hyperledger Project, Blockchain has the potential to improve regulatory compliance, reduce cost as well as advance trade. Are you curious about how Blockchain is built for business? In her session at 21st Cloud Expo, René Bostic, Technical VP of the IBM Cloud Unit in North America, discussed the b...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know that not all workloads are suitable for cloud. You know that you want the kind of ease of use and scalability that you get with public cloud, but your applications are architected in a way that makes the public cloud a non-starter. You’re looking at private cloud solutions based on hyperconverged infrastructure, but you’re concerned with the limits inherent in those technologies.
Is advanced scheduling in Kubernetes achievable?Yes, however, how do you properly accommodate every real-life scenario that a Kubernetes user might encounter? How do you leverage advanced scheduling techniques to shape and describe each scenario in easy-to-use rules and configurations? In his session at @DevOpsSummit at 21st Cloud Expo, Oleg Chunikhin, CTO at Kublr, answered these questions and demonstrated techniques for implementing advanced scheduling. For example, using spot instances and co...
The cloud era has reached the stage where it is no longer a question of whether a company should migrate, but when. Enterprises have embraced the outsourcing of where their various applications are stored and who manages them, saving significant investment along the way. Plus, the cloud has become a defining competitive edge. Companies that fail to successfully adapt risk failure. The media, of course, continues to extol the virtues of the cloud, including how easy it is to get there. Migrating...
The use of containers by developers -- and now increasingly IT operators -- has grown from infatuation to deep and abiding love. But as with any long-term affair, the honeymoon soon leads to needing to live well together ... and maybe even getting some relationship help along the way. And so it goes with container orchestration and automation solutions, which are rapidly emerging as the means to maintain the bliss between rapid container adoption and broad container use among multiple cloud host...
Imagine if you will, a retail floor so densely packed with sensors that they can pick up the movements of insects scurrying across a store aisle. Or a component of a piece of factory equipment so well-instrumented that its digital twin provides resolution down to the micrometer.