Did you miss a session on the Information Summit? Watch On-Demand Right here.
At present, vulnerability administration and course of automation platform, Nucleus Security, introduced that it has raised $20 million as a part of a sequence B funding spherical, attaining a valuation of greater than $100 million.
Nucleus Safety’s platform allows customers to automate vulnerability administration processes and workflows, leveraging the most recent menace intelligence from sources together with Mandiant, EPSS and the CISA Bod KEV.
It additionally integrates knowledge from different third-party instruments like asset inventories, vulnerability scanners and penetration testing instruments to offer visibility over your complete tech stack.
For enterprises and technical decision-makers, Nucleus Safety presents an answer for monitoring their group’s safety posture, to allow them to establish and reply to vulnerabilities all through the surroundings and cut back the possibility of undesirable intrusions.
Unifying vulnerability administration
Because the variety of applied sciences organizations use has elevated, the variety of vulnerabilities that attackers can exploit has additionally multiplied to the extent that researchers found 18,378 vulnerabilities in 2021, together with 3,646 high-risk vulnerabilities.
At present, even essentially the most skilled safety staff can not mitigate such a excessive variety of vulnerabilities manually.
The one strategy to persistently mitigate these vulnerabilities is by automating the vulnerability administration course of. That’s not simply automating vulnerability scanning, but in addition having the ability to combine the info generated by vulnerability scanners, penetration testing instruments and asset inventories right into a single location.
“Many individuals affiliate vulnerability administration with scanning, however that’s just one essential a part of the method. Having the ability to handle all the info being generated by scanners of various varieties after which making it actionable in order that the enterprise can react appropriately is a creating house the place Nucleus sits,” mentioned Scott Kuffer, cofounder of Nucleus Safety.
“This sort of vulnerability administration ‘at scale’ supplies distinctive challenges that may solely be solved by means of knowledge unification and good automation of duties all through your complete pipeline. Nucleus integrates with present instruments to combination, normalize, prioritize and enrich the vulnerability knowledge in an enterprise,” Kuffer mentioned.
In brief, Nucleus Safety’s answer to this problem is to offer organizations with a central answer for ingesting and processing asset and vulnerability knowledge that integrates with exterior workflow instruments, to automate time-consuming duties round vulnerability administration.
The following era of safety and vulnerability administration
Nucleus Safety is part of the security and vulnerability management market, which researchers valued at $6.7 billion in 2020 and estimate will attain a complete worth of $15.86 billion by 2030.
The supplier is competing towards plenty of rivals together with Kenna Security (owned by Cisco, a buyer of Nucleus), a risk-based vulnerability administration platform combining menace intelligence and knowledge science to assist organizations prioritize vulnerabilities that pose the best danger, which achieved a valuation of $98 million in 2019 following a sequence D funding spherical of $48 million.
One other competitor is Vulcan Cyber, a software-as-a-service (SaaS)-based vulnerability administration platform with remediation intelligence, danger prioritization, and safety danger analytics, which raised $21 million as a part of a Sequence B funding spherical final yr.
Though, Kuffer argues that one of many key differentiators of Nucleus Safety is its quick deployment time.
“Nucleus differentiates by being extraordinarily partnership-driven with its strategy. We take heed to clients and wish to be the perfect safety software program vendor that organizations work with. We regularly get the suggestions that we’re the best vendor to work with … we additionally get constant suggestions that we may be deployed a lot faster than rivals to a full program deployment,” Kuffer mentioned.