logoAiPathly

Astrix Security

A

Overview

Astrix Security is a pioneering company in the field of non-human identity (NHI) security, focusing on securing and managing the identities of automated systems, services, and applications within organizations. Founded in 2021 by veterans of the Israel Defense Force 8200 military intelligence unit, Astrix has quickly established itself as a leader in addressing the significant security blind spot posed by NHIs. Key Features and Capabilities:

  1. Discovery and Inventory: Continuous discovery and inventory of all NHIs across various environments, including IaaS, PaaS, SaaS, and on-premises.
  2. Risk Prioritization and Posture Management: Provides context about services and resources each NHI can access, enabling effective rotation or removal without disrupting operations.
  3. Threat Detection and Mitigation: Features threat detection engines that expose anomalous behavior, policy deviations, and supply chain compromises.
  4. NHI Lifecycle Management: Manages the entire lifecycle of NHIs, from creation to expiration, including policy-based attestation and offboarding.
  5. Integration and Automation: Seamlessly integrates with existing tech stacks and automates manual processes to reduce overhead and response times.
  6. Behavioral Analysis and Secret Scanning: Conducts real-time behavioral analysis and performs secret scanning across cloud environments. Benefits and Impact:
  • Reduced Risk: Helps prevent data exfiltration, unauthorized access, and compliance violations.
  • Improved Efficiency: Significantly reduces response times to NHI risks and automates manual processes.
  • Comprehensive Visibility: Provides a holistic view of NHIs, their usage, connections, and associated products. Industry Recognition: Astrix has been named a SINET16 Innovator 2024, a Gartner Cool Vendor in Identity-First Security, and an RSA Innovation Sandbox finalist in 2023. The company supports a growing list of Fortune 500 customers, including Figma, Netapp, Priceline, and Workday, Inc. With $85M in funding, including a recent $45M Series B round led by Menlo Ventures, Astrix Security is well-positioned to continue innovating in the NHI security space.

Leadership Team

Astrix Security's leadership team comprises experienced professionals with strong backgrounds in cybersecurity and technology:

  1. Alon Jackson - Co-Founder and CEO
    • Background: Over 12 years in strategic roles in the cyber security division of the Israeli military intelligence unit 8200
    • Previous Experience: Head of R&D at Argus, an automotive cybersecurity company
  2. Idan Gour - Co-Founder and CTO
    • Background: Veteran of the Israel Defense Force 8200 military intelligence unit
  3. Patrick Murphy - Vice President of Global Sales Additional Leadership Team Members:
  • Dana Katz
  • Ofek Amir
  • Marina Epel
  • Yuki Arbel
  • Shibby Sadot
  • Jony Blatt
  • Achiad Alter The diverse expertise of Astrix Security's leadership team contributes to the company's strategic direction and operational management, focusing on securing non-human identities and managing their lifecycle across enterprise environments. Their combined experience in cybersecurity, military intelligence, and technology drives the company's innovative approach to addressing the challenges of NHI security in modern IT landscapes.

History

Astrix Security's journey in the cybersecurity industry began in 2021, with a focus on addressing the critical yet often overlooked area of non-human identity (NHI) security. Here's a chronological overview of the company's key milestones: 2021: Founding

  • Astrix Security was founded in Tel Aviv by Alon Jackson (CEO) and Idan Gour (CTO), both veterans of the Israel Defense Force's 8200 military intelligence unit. 2022: Emergence from Stealth
  • The company emerged from stealth with an initial funding of $15 million.
  • Led by Bessemer Venture Partners and F2 Capital, with participation from Venrock and over 20 cybersecurity angel investors.
  • Funding was used to expand the team and bolster go-to-market efforts. June 2023: Series A Funding
  • Raised an additional $25 million, bringing total funding to nearly $40 million.
  • Round led by CRV, with investments from Bessemer Venture Partners, F2 Venture Capital, Venrock, and Kmehin Ventures. Late 2023/Early 2024: Series B Funding
  • Secured $45 million in Series B funding.
  • Led by Menlo Ventures and new investor Workday Ventures, along with additional investments from previous backers.
  • Total funding reached $85 million. Throughout its history, Astrix Security has focused on developing cutting-edge technology to secure NHIs, such as APIs, bots, IoT devices, and AI algorithms. The company's platform provides comprehensive visibility into non-human connections and identities, automatically detecting and remediating over-privileged, unnecessary, and malicious access to prevent supply chain attacks, data leaks, and compliance violations. Astrix Security has quickly gained recognition for its innovative approach, establishing itself as a trusted partner for organizations across various sectors, including technology, health tech, and automotive. The company continues to expand its team and enhance its capabilities to address the evolving cybersecurity landscape, with a particular focus on the growing importance of NHI security in modern IT environments.

Products & Solutions

Astrix Security specializes in non-human identity (NHI) security, offering a comprehensive platform to secure, manage, and govern NHIs across various environments. Key product capabilities and solutions include:

Discovery

  • Continuous inventory of provisioned or in-use service accounts, secrets, OAuth apps, IAM roles, API keys, and other NHIs
  • Identification of owners, third-party vendors, and usage patterns

Posture Management

  • Prioritization of remediation efforts based on rich context
  • Insights on services, resources, permissions, and connections of NHIs
  • Support for rotating or removing NHIs without operational disruption

Non-Human ITDR (Incident Detection and Response)

  • Real-time response to third-party breaches, policy deviations, and anomalous NHI activity
  • Provision of investigation guides, activity logs, and automated workflows

Auto Remediation

  • Out-of-the-box policies for posture and incident remediation
  • Integration with existing tech stacks (e.g., Slack notifications, Jira ticket creation)
  • API automations and SIEM/SOAR system integration

NHI Lifecycle Management

  • Comprehensive management from creation through permission changes, rotation, revocation, and expiration
  • Policy-based attestation, alerts, and offboarding of NHIs

Threat-Driven Security

  • Unique threat detection engines exposing anomalous behavior, policy deviations, and supply chain compromises

Secret Scanning

  • Protection of secrets across cloud environments with context-rich risk prioritization

Multi-Environment Support

  • Coverage of corporate and production environments across IaaS, PaaS, SaaS, and On-Prem
  • Support for various NHI types (API keys, secrets, OAuth tokens, SSH keys, service accounts, webhooks, IAM roles, certificates)

Integration and Enterprise Readiness

  • Seamless integration with existing technology stacks and workflows
  • Support for granular Role-Based Access Control (RBAC)

Behavioral Analysis and Real-Time Alerts

  • Real-time alerts for suspicious connections and anomalies in NHI behavior
  • Immediate response capabilities for incidents such as stolen or abused tokens By addressing these aspects, Astrix Security helps organizations reduce risks of unauthorized access, data exfiltration, and compliance violations while streamlining NHI management and security.

Core Technology

Astrix Security's core technology focuses on securing and managing non-human identities (NHIs) within enterprise environments. Key aspects include:

Agentless and API-Based Solution

  • Non-intrusive, agentless, API-based approach
  • Easy deployment with minimal permissions required
  • Quick connection to core systems in minutes

Holistic Visibility and Inventory

  • Centralized, real-time inventory of all NHIs
  • Comprehensive coverage: API keys, OAuth tokens, service accounts, secrets
  • Detailed business context: access permissions, usage levels, associated risks

Risk Detection and Prioritization

  • Automatic detection and prioritization of risky connections
  • Identification of over-privileged apps, inactive apps, untrustworthy publishers
  • Detection of shadow integrations and potential security risks

Behavioral Analysis and Real-Time Threat Detection

  • Ongoing behavioral analysis of apps and connections
  • Real-time detection and mitigation of integration threats
  • Immediate alerts and response capabilities for suspicious activities

Automated Remediation and Governance

  • Automated remediation workflows and security guardrails
  • Efficient risk addressing without operational disruption
  • Comprehensive NHI lifecycle management
  • Policy-based attestation, alerts, offboarding, and permission management

Compliance and Integration

  • Maintenance of compliance through secure access to critical systems
  • Monitoring for compliance violations
  • Integration with various SaaS, IaaS, and PaaS environments
  • Coverage of major platforms: Salesforce, Office 365, GitHub, Snowflake, etc. Astrix Security's technology provides comprehensive visibility, automated risk management, and robust security governance for non-human identities. This approach protects enterprises from supply chain attacks, data leaks, and compliance risks, offering a holistic solution to the growing challenges of NHI security in modern IT environments.

Industry Peers

Astrix Security operates in the cybersecurity industry, focusing on non-human identity security and application-integration access management. Key industry peers and competitors include:

Valence Security

  • Specializes in SaaS security and security posture management
  • Manages security risks associated with SaaS applications
  • Focuses on misconfiguration, identity, data protection, and integration governance

Atmosec

  • Offers a SaaS security platform for continuous security in SaaS ecosystems
  • Provides automated security for SaaS applications and integrations

Canonic Security

  • Develops a SaaS-based application security platform
  • Controls third-party applications and integrations
  • Manages and mitigates integration threats

AppOmni

  • Provides enterprise-level SaaS security management software
  • Identifies data exposure and detects threats
  • Maps compliance requirements to prevent breaches in SaaS environments

Adaptive Shield

  • Specializes in SaaS Security Posture Management (SSPM)
  • Enables security teams to manage and control SaaS and third-party connected applications
  • Focuses on associated risk management

Savvy

  • Offers just-in-time security guardrails
  • Automates security workflows
  • Reduces risks associated with SaaS application use

Other Notable Competitors

  • Cyberark: Comprehensive identity security and access management solutions
  • Silverfort: Extends multi-factor authentication (MFA) to previously unprotected resources
  • Cyscale: Focuses on cloud security posture management (CSPM) and optimizing cloud costs and compliance These companies play significant roles in the SaaS security and cybersecurity sectors, often overlapping with Astrix Security's focus areas. Each offers unique approaches to addressing the evolving challenges of securing cloud-based applications and non-human identities in modern enterprise environments.

More Companies

L

Loft Orbital

Loft Orbital is a space infrastructure company revolutionizing access to space for organizations through innovative services and technologies. Key aspects of the company include: Mission and Services: Loft Orbital aims to simplify space access by providing infrastructure as a service. Customers can deploy payloads to low Earth orbit without designing, building, or operating satellites. The company manages the entire process from conception to in-orbit operations. Technology Approach: Utilizing a modular 'Lego block' approach, Loft Orbital integrates various satellite components flexibly. They leverage software to streamline processes, reduce manual interventions, and accelerate mission execution. Virtual Missions: Through their YAM-6 satellite, Loft Orbital offers 'virtual missions,' allowing software developers to deploy applications on satellite resources without managing hardware. This is facilitated through a partnership with Microsoft Azure. Infrastructure: Loft Orbital operates the YAM constellation of microsatellites, carrying diverse customer payloads. The company has launched several satellites and plans for more, backed by $156.2 million in funding. Data Management: Advanced tools like Telegraf, InfluxDB, and Google Cloud are used to collect, store, and analyze telemetry data, enhancing performance monitoring and mission automation. Market and Customers: Loft Orbital serves a diverse clientele, including Microsoft, Agenium Space, and Space Compass. Their services cater to both dedicated missions and rideshares, with the virtual mission framework expanding market opportunities. Team and Culture: Founded in 2016, Loft Orbital has a global team across the USA and France. The company fosters a dynamic environment encouraging creativity, diversity, and collaboration.

L

Lumin Digital

Lumin Digital, founded in 2016 and headquartered in San Ramon, California, is a fintech company specializing in cloud-native digital banking solutions. The company primarily serves credit unions and other financial institutions, offering a platform that enables personalized experiences for their members. Key features of Lumin Digital's platform include: - Card controls for credit and debit cards - Personalized dashboard designs - Integrated bill pay and deposit capture - Security Center for managing settings and devices - Flexible microservices architecture - Advanced analytics and predictive tools The platform's cloud-native architecture ensures scalability, flexibility, and reliability, with a 99.999% uptime and 24/7 accessibility. In December 2024, Lumin Digital secured over $160 million in growth equity financing, led by Light Street Capital, NewView Capital, and Partners Group. This funding aims to accelerate the company's growth initiatives and innovation. Lumin Digital has experienced significant growth, increasing its client base by nearly 25% and users under contract by nearly 33% in the past year. Clients have seen substantial benefits, including: - Asset growth 2X the U.S. and competitor average - Market share growth 8X the U.S. average - Reduced operational costs - 77% market-leading adoption rate - High user satisfaction (4.85/5 app rating) The company is known for its strong culture and high employee engagement, boasting a 99% employee engagement rate, Great Place To Work Certification®, and less than 4% voluntary turnover. Velera, the nation's premier payments credit union service organization (CUSO), remains Lumin Digital's primary investor, with additional investments from Light Street Capital, NewView Capital, and Partners Group. Overall, Lumin Digital is redefining the digital banking industry with its innovative platform, strong client relationships, and commitment to delivering exceptional value to financial institutions and their members.

F

Fazeshift

Fazeshift is a cutting-edge startup founded in 2023, focused on revolutionizing the Accounts Receivable (AR) process through artificial intelligence (AI). Here's a comprehensive overview of the company and its offerings: ### Founding and Leadership Fazeshift was co-founded by Caitlin Leksana and Timmy Galvin, who met while pursuing their MBAs at Harvard Business School. Leksana, the CEO, brings experience from leading a crypto marketing automation startup and consulting for tech companies at Boston Consulting Group (BCG). Galvin contributes expertise in fintech and AI. ### Mission and Technology Fazeshift aims to transform the traditionally manual and error-prone AR process by leveraging large language models (LLMs) to automate tasks such as invoice generation, payment matching, and collections management. Unlike traditional robotic process automation (RPA), Fazeshift's LLM-powered approach can handle complex workflows with high accuracy and flexibility. ### Key Features - End-to-End Automation: Streamlines the entire AR process - Integration: Seamlessly works with existing tools like Salesforce, HubSpot, and QuickBooks - Manual Task Elimination: Frees employees to focus on strategic tasks - Enhanced Visibility: Provides better insights into AR status - Improved Collections: Automates reminders and follow-ups - Scalability: Designed to grow with business needs ### Security and Compliance Fazeshift prioritizes data security, employing advanced encryption and security protocols while complying with industry standards and regulations. ### Funding and Growth In January 2025, Fazeshift secured a $4 million seed round led by Gradient, Google's early-stage AI fund, with participation from Y Combinator and other investors. The company is already working with several large enterprise customers, positioning itself as a leading solution for AR process optimization. Fazeshift's innovative approach to AR automation promises to reduce costs, increase efficiency, and improve cash flow for businesses across various industries.

C

Careem

Careem, founded in 2012 by Mudassir Sheikha, Magnus Olsson, and Abdullah Elyas, is a pioneering technology company based in Dubai, United Arab Emirates. Initially established to redefine transportation in the Middle East, Careem has evolved into a multifaceted 'super app' offering a wide range of services. ### Core Services 1. **Ride-Hailing**: Careem's primary service connects passengers with drivers through a user-friendly mobile application, offering various options from budget rides to luxury cars and corporate transportation solutions. 2. **Food and Grocery Delivery**: The company expanded into food delivery with Careem NOW and offers grocery delivery services. 3. **Package Delivery**: Careem provides efficient parcel delivery services. 4. **Mobile Payments**: Through Careem Pay, the company facilitates digital payment solutions within the app. ### Business Strategy - **Localization**: Careem's success is largely attributed to its localized approach, adapting services to the cultural, economic, and regulatory conditions of each market. - **Diversification**: The company has expanded beyond ride-hailing to create a comprehensive platform catering to various customer needs. - **Revenue Streams**: Careem generates income through ride fares, driver commissions, surge pricing, subscription services, and its food and package delivery operations. ### Technology and Innovation Careem invests heavily in cutting-edge technology to enhance user experience, including real-time tracking, safety features, and AI-driven personalized recommendations. ### Market Presence Operating in over 100 cities across 14 countries, Careem has established itself as a leader in the Middle East's ride-hailing and related services market. ### Key Milestones - Acquired by Uber in 2019 for $3.1 billion - In April 2023, Etisalat by e& acquired a majority stake in Careem for $400 million Careem's success stems from its strategic localization, service diversification, and technological innovation, positioning it as a pioneering 'super app' in the Middle East.