Opus Security, a cloud security orchestration and remediation platform, emerged from stealth today with $10 million in seed funding led by YL Ventures, with participation from Tiger Global and of angel investors. CEO Meny Har told TechCrunch that the proceeds will be earmarked for launching Opus’ platform into general availability, expanding the startup’s US footprint, and product R&D.
According to Har, cloud security teams rely heavily on manual processes to resolve security incidents, which are not scalable. He’s not an unbiased source, exactly. But as far as he’s concerned, a survey commissioned by Orca Security found that 59% of security teams receive more than 500 public cloud security alerts every day. In a separate survey from ISACA and HCL Technologies released last May, 61% of IT security professionals said their teams were understaffed.
“Today, in order to address the growing number of security findings, it has become necessary to include a wide range of teams and stakeholders within the organization in the critical security processes for remediation,” Har told TechCrunch in an email interview. “This complex collaboration – without a streamlined orchestration process – creates friction and waste of time as teams fail to communicate clearly. This friction leads to a general lack of visibility into how secure the organization is, how which remediation processes are undertaken and what needs to be improved.
Har co-founded Opus with Or Gabay, with whom he worked at security orchestration startup Siemplify. Har was a member of the founding team of Siemplify, which was acquired by Google earlier this year.
“We have seen first-hand the challenges security operations teams face when trying to analyze, prioritize and remediate security risks using cumbersome, distributed processes and various detection tools. – without oversight or management,” Har said. “Opus’ vision is to enable security operations teams to see beyond alerts and threats and gain the knowledge, capabilities and control to dramatically reduce the time it takes to resolve them.”
To this end, Opus leverages operational and technical data from existing cloud security tools to create a “connective tissue” between security operations teams and other departments in the business. Attempts to orchestrate the response and remediation process with guidelines and playbooks, leveraging automation to resolve issues that typically don’t require human intervention – and providing key metrics along the way .
“Organizations today can choose to use a common ticketing platform such as ServiceNow or Jira and optionally add ‘backend’ security automation platforms, used to build manually processes to support security operations and DevOps functions. Generic ticketing platforms can help with management, but don’t do much in terms of efficiency through automation,” Har said. “With instant visibility and remediation mapping… Opus removes blind spots and provides security and business leaders with immediate and tangible insight into the status of their risks.”
That’s a lot to promise, especially against competition like cloud security startups Wiz, Paladin Cloud, and Laminar. But in a (potentially) encouraging sign, Har says Opus has been adopted quickly by a “handful” of design partners, who are working to build the platform ahead of a wide launch in Q1 2023. Overall, Opus plans to increase its workforce from the current 10 employees to 20 to 25 by the end of the year, according to Har.
“As organizations recover from the aftermath of the COVID-19 pandemic, and with the impending budget and workforce reductions plaguing the industry, Opus is a bespoke solution designed specifically with these external effects in mind. in mind,” Har said. “Implementing Opus’ solution is simple, and because Opus drives automation across all remediation processes, it’s the ideal solution for organizations striving to do more with less.”
Like many other startups, Opus is benefiting from venture capital dollars which, despite the macroeconomic downturn, have not stopped pouring into the cybersecurity sector. According to Momentum Cyber’s latest cybersecurity market review, investors invested $11.5 billion in total venture capital funding into cybersecurity startups in the first half of 2021, up from $4.7 billion in the first half of 2021. the same period a year earlier.
John Brennan, Senior Partner at YL Ventures, added in an emailed statement: “The proliferation of cloud-focused security solutions has made organizations significantly aware of the extent of their risk surface. While visibility in the cloud has improved dramatically, customers are now expressing the need for a dedicated solution to address the drastic increase in alerts… Meny and Or leveraged their unique experience at Siemplify to create the industry’s first cloud-native.
remediation orchestration and automation platform.