Here’s a list of some bright and upcoming security companies which, in my opinion, have a promising potential:
Endeavor Security (www.endeavorsecurity.com, Rating 4/5) – My bets are on this startup. Endeavor is an early-stage company working on a truly disruptive security framework which could be the next big thing in Internet-wide threat analysis and actionable intelligence. The problem with existing intelligence players is that their offerings are not truly actionable, i.e. they don’t cover the complete cycle (detection-reporting-remediation). Secondly, none of them have the capability to provide vendor-agnostic remedial input. Third, no one’s able to keep pace with the changing threat landscape. Fourth, most of the industry analysts wrongly believe that the need for such a service is failing. Security intelligence is still scattered and raw. There is a big response gap which separates intelligence from the effectiveness of deployed products and services. If someone is able to bridge this gap in a product/service/vendor-agnostic way, then there is a great opportunity for setting up a truly early-warning and preemptive service offering. Backed by Department of Homeland Security, this company has taken its first steps to test the waters. It has launched solutions like FirstLight Signatures (signature service for various IPS, UTM and firewall vendors) and FirstLight Active Malware Protection (gathering latest malware data from deployed sensors and relaying it across to the AV vendors before the outbreak occurs while protecting their customer’s perimeter on-the-fly). I had a brief interaction with one of the founders and they say that a SaaS offering is in the works. All this makes it a company to watch out for. Their only challenge would be to get some gung-hos in the management team and build a very strong research back-end.
Rohati Systems (www.rohati.com, Rating 3.5/5) – Well, nothing groundbreaking really but a credible enhancement over existing offerings. They are working on a layer 4-to-7, policy-based firewall controlling access to various applications and resources, with awareness about their business context and compliance regulations. Alan Shimel has termed it as “a logical extension of identity based access control” and I agree wholeheartedly with him. They are not alone in the game, with Palo Alto Networks giving them some heat. However, they are garnering most of the media attention due some highly-accomplished Indian techies from Cisco in their management line-up.
Mocana Corp. (www.mocana.com, Rating 3.5/5) – This relatively-older company is gradually coming into the limelight. They are building security infrastructure for all kinds of networked devices, from mobile phones to coffee makers. They have acquired a small Indian company to setup their offshore R&D base in Pune.
- Imbuing the Public Service with Entrepreneurialism - September 10, 2008
- Indian SMBs to spend $1.26 billion for Internet services in ’08 - August 7, 2008
- Two new web security (SaaS) startups - August 7, 2008
great article pukhraj but you missed three more good security startups from india, seclore in drm, iviz in network security and data resolve in dlp.
I agree. It can be bit embarrassing, but one is always tempted to take the plunge at least once. Somehow I feel that every industry analyst/observer reaches a stage where he feels that he has a truly unique view of things to come (or probably gone bonkers). So I just decided to cast off my shirt-loosing fears and be gusty enough to try it once. Plus there’s a dearth of security industry analysts in India, so I hope to enlighten them and inspire them. I am okay with loosing my shirt in a small-time way. 🙂
On your comment on frameworks and long sales cycles – I can not agree more. But there’s hasn’t been a security startup like Endeavor in quite a while, one which got bootstrapped straight from the garage. It excites me! They have a long and hard road to trek which is more prone to failure than success, still I feel that the their vision is interesting.
I lost my shirt betting on the security information industry (well a case of beer anyway 🙂 Sorry, can’t agree with you on that one. Besides, “a start up to watch” can never be described as having a framework. Frameworks mean long sales cycles, especially disruptive ones. Long sales cycles are the death of startups.
I *do* agree on Rohati though. Great stuff.
I don’t know Mocana. Thanks for pointing them out.