Click here to close now.



Welcome!

News Feed Item

SourceClear Launches to Redefine Security for Developers

SourceClear, the company creating a modern software security platform for developers, today announced it has closed $1.5 million in seed funding for the SourceClear platform, which is turning traditional software security inside-out. With general availability in the coming weeks, SourceClear empowers developers with the intelligence to make smarter decisions while they’re building software, ensuring organizations gain complete visibility across their software portfolios. The platform integrates directly into established development tools, is armed with machine-learning capabilities and leverages ‘big data’ analytics.

“Developers are literally the only people who can solve the epidemic in software security,” said SourceClear Founder and CEO Mark Curphey. “Traditional security tools were built for security and IT people, and there has been poor adoption and high degrees of friction from developers. With the cloud, agile, open-source, mobile, devops, big-data, artificial intelligence and social platforms, developers are changing the world faster than ever before and security tools simply haven’t kept up. We are changing that. Developers love us, and our early funding is a strong vote of confidence in our vision.”

Solving Security Problems at Their Source

SourceClear’s first product helps organizations identify which components they are using across their software portfolio, where they come from, what they do and which ones have security issues. They then help developers fix the issues and stay protected against new threats.

Up to 80% of the source code in modern applications originates from reusable and open-source development frameworks and libraries. Hackers have learned to analyze and exploit these components giving them access to far more data than hacking systems one-by-one. Hackers and governments are known to have modified open-source libraries which are then innocently installed by developers creating backdoors and vulnerabilities that can be exploited at will.

“Developers are the ones burdened with security failures,” said Frank Marshall, former VP of Engineering at Cisco Systems Inc. “By operating within developers’ workflows and helping them find and fix issues in real-time, SourceClear is addressing the biggest security vulnerability: The inability of organizations to distribute the right information to the right people at the right time.”

SourceClear Secures A-List of Angel Investors

The SourceClear seed funding round is led by a group of world-class angel investors including Justin Somaini, Chief Trust Officer at Box.com; Frank J. Marshall, former VP of Engineering at Cisco Systems Inc.; Amos Michelson, Chairman of Kardium; and Mary Cirillo, board member at Thomson Reuters (TRI).

Founded by security veterans from Microsoft (MSFT), Charles Schwab (SCHW) and Foundstone / McAfee (MFE), SourceClear’s over-subscribed seed round reflects strong interest in the company’s initial products, traction from early adopters and the upcoming product portfolio. CEO and Founder Mark Curphey also founded OWASP, headed the software security program at Charles Schwab, led the information security tools team at Microsoft and was the Product Unit Manager for the Microsoft Developer Network (MSDN).

Boasting a track record of working with successful security and enterprise companies, angel investors include:

  • Justin Somaini, Chief Trust Officer, Box.com; former CSO at Yahoo! (YHOO), Verisign (SYMC) and Symantec (SYMC);
  • Frank J. Marshall, former Vice President of Engineering at Cisco Systems (CSCO), director on numerous boards, including Juniper Networks (JNPR), Aerohive Networks (HIVE) and InfoBlox (BLOX) and former Chairman Netscreen Technologies (NSCN). Successful security seed investments include MobileIron and SourceFire;
  • Amos Michelson, chairman of Kardium, former CEO of Creo and CEO of Opal Inc.; former Ernst & Young Entrepreneur of the Year;
  • Mary Cirillo, Member of the Board at Thomson Reuters, former Cisco board member;
  • Seattle-based Kinzer Capital;
  • London-based Realise Capital Partners;
  • A private investment syndicate based in Tel-Aviv and Silicon Valley.

SourceClear’s world-class advisory board includes Box.com Chief Trust Officer Justin Somaini, privacy expert and author Siobhan MacDermott, CrowdStrike CEO and former McAfee global CTO George Kurtz, software security expert John Viega and user experience expert Charlie Claxton.

About SourceClear

At SourceClear, we believe that security must be built-in—by developers themselves, in real time, as they create applications. We’re the only company on the planet 100% dedicated to building security tools for software developers. Tools they love to use. Tools they actually use. Find out more at https://sourceclear.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Father business cycles and digital consumers are forcing enterprises to respond faster to customer needs and competitive demands. Successful integration of DevOps and Agile development will be key for business success in today’s digital economy. In his session at DevOps Summit, Pradeep Prabhu, Co-Founder & CEO of Cloudmunch, covered the critical practices that enterprises should consider to seamlessly integrate Agile and DevOps processes, barriers to implementing this in the enterprise, and pr...
Cognitive Computing is becoming the foundation for a new generation of solutions that have the potential to transform business. Unlike traditional approaches to building solutions, a cognitive computing approach allows the data to help determine the way applications are designed. This contrasts with conventional software development that begins with defining logic based on the current way a business operates. In her session at 18th Cloud Expo, Judith S. Hurwitz, President and CEO of Hurwitz & ...
The principles behind DevOps are not new - for decades people have been automating system administration and decreasing the time to deploy apps and perform other management tasks. However, only recently did we see the tools and the will necessary to share the benefits and power of automation with a wider circle of people. In his session at DevOps Summit, Bernard Sanders, Chief Technology Officer at CloudBolt Software, explored the latest tools including Puppet, Chef, Docker, and CMPs needed to...
SYS-CON Events announced today that Commvault, a global leader in enterprise data protection and information management, has been named “Bronze Sponsor” of SYS-CON's 18th International Cloud Expo, which will take place on June 7–9, 2016, at the Javits Center in New York City, NY, and the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Commvault is a leading provider of data protection and information management...
The cloud promises new levels of agility and cost-savings for Big Data, data warehousing and analytics. But it’s challenging to understand all the options – from IaaS and PaaS to newer services like HaaS (Hadoop as a Service) and BDaaS (Big Data as a Service). In her session at @BigDataExpo at @ThingsExpo, Hannah Smalltree, a director at Cazena, will provide an educational overview of emerging “as-a-service” options for Big Data in the cloud. This is critical background for IT and data profes...
SYS-CON Events announced today that VAI, a leading ERP software provider, will exhibit at SYS-CON's 18th International Cloud Expo®, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. VAI (Vormittag Associates, Inc.) is a leading independent mid-market ERP software developer renowned for its flexible solutions and ability to automate critical business functions for the distribution, manufacturing, specialty retail and service sectors. An IBM Premier Business Part...
One of the bewildering things about DevOps is integrating the massive toolchain including the dozens of new tools that seem to crop up every year. Part of DevOps is Continuous Delivery and having a complex toolchain can add additional integration and setup to your developer environment. In his session at @DevOpsSummit at 18th Cloud Expo, Miko Matsumura, Chief Marketing Officer of Gradle Inc., will discuss which tools to use in a developer stack, how to provision the toolchain to minimize onboa...
SYS-CON Events announced today that Alert Logic, Inc., the leading provider of Security-as-a-Service solutions for the cloud, will exhibit at SYS-CON's 18th International Cloud Expo®, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. Alert Logic, Inc., provides Security-as-a-Service for on-premises, cloud, and hybrid infrastructures, delivering deep security insight and continuous protection for customers at a lower cost than traditional security solutions. Ful...
Fortunately, meaningful and tangible business cases for IoT are plentiful in a broad array of industries and vertical markets. These range from simple warranty cost reduction for capital intensive assets, to minimizing downtime for vital business tools, to creating feedback loops improving product design, to improving and enhancing enterprise customer experiences. All of these business cases, which will be briefly explored in this session, hinge on cost effectively extracting relevant data from ...
In most cases, it is convenient to have some human interaction with a web (micro-)service, no matter how small it is. A traditional approach would be to create an HTTP interface, where user requests will be dispatched and HTML/CSS pages must be served. This approach is indeed very traditional for a web site, but not really convenient for a web service, which is not intended to be good looking, 24x7 up and running and UX-optimized. Instead, talking to a web service in a chat-bot mode would be muc...
SYS-CON Events announced today that Catchpoint Systems, Inc., a provider of innovative web and infrastructure monitoring solutions, has been named “Silver Sponsor” of SYS-CON's DevOps Summit at 18th Cloud Expo New York, which will take place June 7-9, 2016, at the Javits Center in New York City, NY. Catchpoint is a leading Digital Performance Analytics company that provides unparalleled insight into customer-critical services to help consistently deliver an amazing customer experience. Designed...
It's easy to assume that your app will run on a fast and reliable network. The reality for your app's users, though, is often a slow, unreliable network with spotty coverage. What happens when the network doesn't work, or when the device is in airplane mode? You get unhappy, frustrated users. An offline-first app is an app that works, without error, when there is no network connection.
With the Apple Watch making its way onto wrists all over the world, it’s only a matter of time before it becomes a staple in the workplace. In fact, Forrester reported that 68 percent of technology and business decision-makers characterize wearables as a top priority for 2015. Recognizing their business value early on, FinancialForce.com was the first to bring ERP to wearables, helping streamline communication across front and back office functions. In his session at @ThingsExpo, Kevin Roberts...
As someone who has been dedicated to automation and Application Release Automation (ARA) technology for almost six years now, one of the most common questions I get asked regards Platform-as-a-Service (PaaS). Specifically, people want to know whether release automation is still needed when a PaaS is in place, and why. Isn't that what a PaaS provides? A solution to the deployment and runtime challenges of an application? Why would anyone using a PaaS then need an automation engine with workflow ...
SYS-CON Events announced today that Interoute, owner-operator of one of Europe's largest networks and a global cloud services platform, has been named “Bronze Sponsor” of SYS-CON's 18th Cloud Expo, which will take place on June 7-9, 2015 at the Javits Center in New York, New York. Interoute is the owner-operator of one of Europe's largest networks and a global cloud services platform which encompasses 12 data centers, 14 virtual data centers and 31 colocation centers, with connections to 195 ad...