Click here to close now.

Welcome!

News Feed Item

SourceClear Launches to Redefine Security for Developers

SourceClear, the company creating a modern software security platform for developers, today announced it has closed $1.5 million in seed funding for the SourceClear platform, which is turning traditional software security inside-out. With general availability in the coming weeks, SourceClear empowers developers with the intelligence to make smarter decisions while they’re building software, ensuring organizations gain complete visibility across their software portfolios. The platform integrates directly into established development tools, is armed with machine-learning capabilities and leverages ‘big data’ analytics.

“Developers are literally the only people who can solve the epidemic in software security,” said SourceClear Founder and CEO Mark Curphey. “Traditional security tools were built for security and IT people, and there has been poor adoption and high degrees of friction from developers. With the cloud, agile, open-source, mobile, devops, big-data, artificial intelligence and social platforms, developers are changing the world faster than ever before and security tools simply haven’t kept up. We are changing that. Developers love us, and our early funding is a strong vote of confidence in our vision.”

Solving Security Problems at Their Source

SourceClear’s first product helps organizations identify which components they are using across their software portfolio, where they come from, what they do and which ones have security issues. They then help developers fix the issues and stay protected against new threats.

Up to 80% of the source code in modern applications originates from reusable and open-source development frameworks and libraries. Hackers have learned to analyze and exploit these components giving them access to far more data than hacking systems one-by-one. Hackers and governments are known to have modified open-source libraries which are then innocently installed by developers creating backdoors and vulnerabilities that can be exploited at will.

“Developers are the ones burdened with security failures,” said Frank Marshall, former VP of Engineering at Cisco Systems Inc. “By operating within developers’ workflows and helping them find and fix issues in real-time, SourceClear is addressing the biggest security vulnerability: The inability of organizations to distribute the right information to the right people at the right time.”

SourceClear Secures A-List of Angel Investors

The SourceClear seed funding round is led by a group of world-class angel investors including Justin Somaini, Chief Trust Officer at Box.com; Frank J. Marshall, former VP of Engineering at Cisco Systems Inc.; Amos Michelson, Chairman of Kardium; and Mary Cirillo, board member at Thomson Reuters (TRI).

Founded by security veterans from Microsoft (MSFT), Charles Schwab (SCHW) and Foundstone / McAfee (MFE), SourceClear’s over-subscribed seed round reflects strong interest in the company’s initial products, traction from early adopters and the upcoming product portfolio. CEO and Founder Mark Curphey also founded OWASP, headed the software security program at Charles Schwab, led the information security tools team at Microsoft and was the Product Unit Manager for the Microsoft Developer Network (MSDN).

Boasting a track record of working with successful security and enterprise companies, angel investors include:

  • Justin Somaini, Chief Trust Officer, Box.com; former CSO at Yahoo! (YHOO), Verisign (SYMC) and Symantec (SYMC);
  • Frank J. Marshall, former Vice President of Engineering at Cisco Systems (CSCO), director on numerous boards, including Juniper Networks (JNPR), Aerohive Networks (HIVE) and InfoBlox (BLOX) and former Chairman Netscreen Technologies (NSCN). Successful security seed investments include MobileIron and SourceFire;
  • Amos Michelson, chairman of Kardium, former CEO of Creo and CEO of Opal Inc.; former Ernst & Young Entrepreneur of the Year;
  • Mary Cirillo, Member of the Board at Thomson Reuters, former Cisco board member;
  • Seattle-based Kinzer Capital;
  • London-based Realise Capital Partners;
  • A private investment syndicate based in Tel-Aviv and Silicon Valley.

SourceClear’s world-class advisory board includes Box.com Chief Trust Officer Justin Somaini, privacy expert and author Siobhan MacDermott, CrowdStrike CEO and former McAfee global CTO George Kurtz, software security expert John Viega and user experience expert Charlie Claxton.

About SourceClear

At SourceClear, we believe that security must be built-in—by developers themselves, in real time, as they create applications. We’re the only company on the planet 100% dedicated to building security tools for software developers. Tools they love to use. Tools they actually use. Find out more at https://sourceclear.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Overgrown applications have given way to modular applications, driven by the need to break larger problems into smaller problems. Similarly large monolithic development processes have been forced to be broken into smaller agile development cycles. Looking at trends in software development, microservices architectures meet the same demands. Additional benefits of microservices architectures are compartmentalization and a limited impact of service failure versus a complete software malfunction. ...
"We help to transform an organization and their operations and make them more efficient, more agile, and more nimble to move into the cloud or to move between cloud providers and create an agnostic tool set," noted Jeremy Steinert, DevOps Services Practice Lead at WSM International, in this SYS-CON.tv interview at @DevOpsSummit, held June 9-11, 2015, at the Javits Center in New York City.
The basic integration architecture, as defined by ESBs, hasn’t changed for more than a decade. Most cloud integration providers still rely on an ESB architecture and their proprietary connectors. As a result, enterprise integration projects suffer from constraints of availability and reliability of these connectors that are not re-usable across other integration vendors. However, the rapid adoption of APIs and almost ubiquitous availability of APIs amongst most SaaS and Cloud applications are ra...
Agile, which started in the development organization, has gradually expanded into other areas downstream - namely IT and Operations. Teams – then teams of teams – have streamlined processes, improved feedback loops and driven a much faster pace into IT departments which have had profound effects on the entire organization. In his session at DevOps Summit, Anders Wallgren, Chief Technology Officer of Electric Cloud, will discuss how DevOps and Continuous Delivery have emerged to help connect dev...
"What Dyn is able to do with our Internet performance and our Internet intelligence is give companies visibility into what is actually going on in that cloud," noted Corey Hamilton, Product Marketing Manager at Dyn, in this SYS-CON.tv interview at 16th Cloud Expo, held June 9-11, 2015, at the Javits Center in New York City.
The Internet of Things is not only adding billions of sensors and billions of terabytes to the Internet. It is also forcing a fundamental change in the way we envision Information Technology. For the first time, more data is being created by devices at the edge of the Internet rather than from centralized systems. What does this mean for today's IT professional? In this Power Panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists addressed this very serious issue of pro...
Internet of Things is moving from being a hype to a reality. Experts estimate that internet connected cars will grow to 152 million, while over 100 million internet connected wireless light bulbs and lamps will be operational by 2020. These and many other intriguing statistics highlight the importance of Internet powered devices and how market penetration is going to multiply many times over in the next few years.
Manufacturing has widely adopted standardized and automated processes to create designs, build them, and maintain them through their life cycle. However, many modern manufacturing systems go beyond mechanized workflows to introduce empowered workers, flexible collaboration, and rapid iteration. Such behaviors also characterize open source software development and are at the heart of DevOps culture, processes, and tooling.
Today air travel is a minefield of delays, hassles and customer disappointment. Airlines struggle to revitalize the experience. GE and M2Mi will demonstrate practical examples of how IoT solutions are helping airlines bring back personalization, reduce trip time and improve reliability. In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect with GE, and Dr. Sarah Cooper, M2Mi’s VP Business Development and Engineering, will explore the IoT cloud-based platform technologies drivi...
Containers have changed the mind of IT in DevOps. They enable developers to work with dev, test, stage and production environments identically. Containers provide the right abstraction for microservices and many cloud platforms have integrated them into deployment pipelines. DevOps and Containers together help companies to achieve their business goals faster and more effectively. In his session at DevOps Summit, Ruslan Synytsky, CEO and Co-founder of Jelastic, reviewed the current landscape of...
Live Webinar with 451 Research Analyst Peter Christy. Join us on Wednesday July 22, 2015, at 10 am PT / 1 pm ET In a world where users are on the Internet and the applications are in the cloud, how do you maintain your historic SLA with your users? Peter Christy, Research Director, Networks at 451 Research, will discuss this new network paradigm, one in which there is no LAN and no WAN, and discuss what users and network administrators gain and give up when migrating to the agile world of clo...
SYS-CON Events announced today that JFrog, maker of Artifactory, the popular Binary Repository Manager, will exhibit at SYS-CON's @DevOpsSummit Silicon Valley, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Based in California, Israel and France, founded by longtime field-experts, JFrog, creator of Artifactory and Bintray, has provided the market with the first Binary Repository solution and a software distribution social platform.
"We got started as search consultants. On the services side of the business we have help organizations save time and save money when they hit issues that everyone more or less hits when their data grows," noted Otis Gospodnetić, Founder of Sematext, in this SYS-CON.tv interview at @DevOpsSummit, held June 9-11, 2015, at the Javits Center in New York City.
Internet of Things (IoT) will be a hybrid ecosystem of diverse devices and sensors collaborating with operational and enterprise systems to create the next big application. In their session at @ThingsExpo, Bramh Gupta, founder and CEO of robomq.io, and Fred Yatzeck, principal architect leading product development at robomq.io, discussed how choosing the right middleware and integration strategy from the get-go will enable IoT solution developers to adapt and grow with the industry, while at th...
Containers are revolutionizing the way we deploy and maintain our infrastructures, but monitoring and troubleshooting in a containerized environment can still be painful and impractical. Understanding even basic resource usage is difficult – let alone tracking network connections or malicious activity. In his session at DevOps Summit, Gianluca Borello, Sr. Software Engineer at Sysdig, will cover the current state of the art for container monitoring and visibility, including pros / cons and liv...