Welcome!

IBM Cloud Authors: Liz McMillan, Elizabeth White, Pat Romanski, Kevin Benedict, Yeshim Deniz

News Feed Item

Risk I/O Lands $5.25 Million Series A Funding Round Led by US Venture Partners

Vulnerability Intelligence Platform Surpasses 400 Enterprise Users in First Year

CHICAGO, IL -- (Marketwire) -- 11/13/12 -- Risk I/O, the first vulnerability intelligence platform, today announced that it has closed a $5.25 million Series A funding round led by U.S. Venture Partners (USVP), with participation from Tugboat Ventures and Greg Sands' Costanoa Venture Capital. USVP partner Jacques Benkoski, Ph.D. will join the Board of Directors. The company will use the funding to accelerate product innovation as well as expand sales and marketing to meet increasing demand from enterprise users. To date, Risk I/O has processed over 6 million security vulnerabilities via its SaaS platform, and over 400 businesses, including many in the Fortune 100, use Risk I/O for vulnerability intelligence.

"Security professionals are faced with a sea of noise when it comes to security data generated by their numerous, disparate assessment tools. It is incredibly difficult to manually aggregate, mine and prioritize vulnerability data from these tools, and companies are often left exposed to attack for far too long," said Ed Bellis, Risk I/O Cofounder & CEO. "I cofounded Risk I/O after experiencing this challenge first-hand as the CISO of Orbitz with the hope of making it easier for security teams to quickly identify and remediate high-risk vulnerabilities and improve their overall security posture."

According to research from analyst firm Enterprise Management Associates, almost half of all enterprises surveyed are overwhelmed by the amount of security data they collect, and even more feel they have insufficient time or expertise to analyze that data. The vast majority of respondents said they would collect more security-related data if they could make sense of it.(1)

Risk I/O is the first vulnerability intelligence platform to provide:

  • Aggregation: Risk I/O aggregates and prioritizes vulnerability data collected from over 20 of the most widely-deployed security assessment tools -- including Qualys, Rapid7, HP, IBM and others -- in a single dashboard to provide a centralized view of an organization's security posture and enable the quick identification and remediation of high-risk vulnerabilities.

  • Collaboration: Risk I/O enables companies to track vulnerabilities through their entire lifecycle and enable collaborative remediation between engineers and security teams using Risk I/O's workflow or integrating into existing bug tracking and trouble ticketing systems.

  • Precognition: Risk I/O leverages a combination of sophisticated predictive, big data analytics technologies to compare a company's own vulnerability data against that of thousands of others, as well as contextual data such as publicly available exploit information, to foresee where a business is most likely to be attacked.

"Risk I/O is the first company to tackle the big data problem that plagues the information security market. The explosion of cyber attacks against businesses today combined with the variety of security assessment tools in use has left CISOs with an increasingly uncontrollable vulnerability management problem," said Jacques Benkoski, Venture Partner at USVP. "With its SaaS-based solution, Risk I/O offers deep insight and sophisticated intelligence into an organization's risk posture, enabling faster, smarter vulnerability remediation and better overall protection. The power of its analytics platform and the visibility offered by the large community Risk I/O has built has led to rapid adoption by Fortune 100 companies and more."

"Security holes are everywhere -- in applications, networks, databases, you name it. Risk I/O is the only vulnerability intelligence platform to aggregate and prioritize all vulnerability data no matter which assessment technologies a company is using. It sits above the fray to help companies make sense of the flood of security issues they ingest on a daily basis," said Jeremiah Grossman, Founder and CTO of WhiteHat Security and advisor to Risk I/O. "The analytics behind Risk I/O's precognition capabilities -- and the ability to foresee potential breaches -- are a first of their kind and make Risk I/O a powerful tool for any security organization."

Online Resources

About Risk I/O
Risk I/O is the first vulnerability intelligence platform. Delivered via SaaS, Risk I/O aggregates and prioritizes vulnerability data from over 20 of the most widely-deployed security assessment technologies to provide enterprises with a single view of their security risk. By integrating with the top bug fix and ticketing systems, Risk I/O enables organizations to collaborate on vulnerability remediation. Its precognition capabilities leverage predictive, big data analytics to foresee where an organization is most likely to be breached. Risk I/O is used by over 400 businesses, including many in the Fortune 100. Backed by US Ventures Partners, Tugboat Ventures, Costanoa Venture Capital, and Hyde Park Angels, Risk I/O is headquartered in Chicago, IL. For more information, visit http://www.risk.io.

About U.S. Venture Partners
U.S. Venture Partners (USVP) has helped entrepreneurs build world-class companies for more than thirty years, yielding 79 IPOs and many more successful acquisitions. The USVP team consists of experienced investing and operating professionals, with considerable domain and management expertise. USVP focuses on early stage opportunities in business and consumer services, enterprise software and security, infrastructure, biopharmaceuticals, and medical devices. Recent successes include Adify, Dotomi, Guidewire, Imperva, Intellikine, Intermolecular, Lutonix, MaxLinear, myYearbook, Optichron, Proteolix, and Revolution Money. Examples of promising companies in USVP's portfolio include Act-On Software, Box, GoPro, HeartFlow, Intersect ENT, LivingSocial, ON24, OncoMed, Redwood Systems, ScoreBig, SentreHEART, Smartling, ThreatMetrix, Total Beauty, Trunk Club, Trusteer, Xicato, and Yammer.

(1) The Rise of Data-Driven Security, Scott Crawford, Enterprise Management Associates, May 2012

Media Contact
Katherine Nellums
LEWIS Pulse for Risk I/O
Email Contact
415.432.2451

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

@ThingsExpo Stories
With an estimated 50 billion devices connected to the Internet by 2020, several industries will begin to expand their capabilities for retaining end point data at the edge to better utilize the range of data types and sheer volume of M2M data generated by the Internet of Things. In his session at @ThingsExpo, Don DeLoach, CEO and President of Infobright, discussed the infrastructures businesses will need to implement to handle this explosion of data by providing specific use cases for filterin...
Is your aging software platform suffering from technical debt while the market changes and demands new solutions at a faster clip? It’s a bold move, but you might consider walking away from your core platform and starting fresh. ReadyTalk did exactly that. In his General Session at 19th Cloud Expo, Michael Chambliss, Head of Engineering at ReadyTalk, will discuss why and how ReadyTalk diverted from healthy revenue and over a decade of audio conferencing product development to start an innovati...
So, you bought into the current machine learning craze and went on to collect millions/billions of records from this promising new data source. Now, what do you do with them? Too often, the abundance of data quickly turns into an abundance of problems. How do you extract that "magic essence" from your data without falling into the common pitfalls? In her session at @ThingsExpo, Natalia Ponomareva, Software Engineer at Google, provided tips on how to be successful in large scale machine learning...
Early adopters of IoT viewed it mainly as a different term for machine-to-machine connectivity or M2M. This is understandable since a prerequisite for any IoT solution is the ability to collect and aggregate device data, which is most often presented in a dashboard. The problem is that viewing data in a dashboard requires a human to interpret the results and take manual action, which doesn’t scale to the needs of IoT.
What does it look like when you have access to cloud infrastructure and platform under the same roof? Let’s talk about the different layers of Technology as a Service: who cares, what runs where, and how does it all fit together. In his session at 18th Cloud Expo, Phil Jackson, Lead Technology Evangelist at SoftLayer, an IBM company, spoke about the picture being painted by IBM Cloud and how the tools being crafted can help fill the gaps in your IT infrastructure.
"C2M is our digital transformation and IoT platform. We've had C2M on the market for almost three years now and it has a comprehensive set of functionalities that it brings to the market," explained Mahesh Ramu, Vice President, IoT Strategy and Operations at Plasma, in this SYS-CON.tv interview at @ThingsExpo, held June 7-9, 2016, at the Javits Center in New York City, NY.
"delaPlex is a software development company. We do team-based outsourcing development," explained Mark Rivers, COO and Co-founder of delaPlex Software, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Whether your IoT service is connecting cars, homes, appliances, wearable, cameras or other devices, one question hangs in the balance – how do you actually make money from this service? The ability to turn your IoT service into profit requires the ability to create a monetization strategy that is flexible, scalable and working for you in real-time. It must be a transparent, smoothly implemented strategy that all stakeholders – from customers to the board – will be able to understand and comprehe...
Traditional IT, great for stable systems of record, is struggling to cope with newer, agile systems of engagement requirements coming straight from the business. In his session at 18th Cloud Expo, William Morrish, General Manager of Product Sales at Interoute, outlined ways of exploiting new architectures to enable both systems and building them to support your existing platforms, with an eye for the future. Technologies such as Docker and the hyper-convergence of computing, networking and sto...
SYS-CON Events announced today that LeaseWeb USA, a cloud Infrastructure-as-a-Service (IaaS) provider, will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. LeaseWeb is one of the world's largest hosting brands. The company helps customers define, develop and deploy IT infrastructure tailored to their exact business needs, by combining various kinds cloud solutions.
The cloud market growth today is largely in public clouds. While there is a lot of spend in IT departments in virtualization, these aren’t yet translating into a true “cloud” experience within the enterprise. What is stopping the growth of the “private cloud” market? In his general session at 18th Cloud Expo, Nara Rajagopalan, CEO of Accelerite, explored the challenges in deploying, managing, and getting adoption for a private cloud within an enterprise. What are the key differences between wh...
It’s 2016: buildings are smart, connected and the IoT is fundamentally altering how control and operating systems work and speak to each other. Platforms across the enterprise are networked via inexpensive sensors to collect massive amounts of data for analytics, information management, and insights that can be used to continuously improve operations. In his session at @ThingsExpo, Brian Chemel, Co-Founder and CTO of Digital Lumens, will explore: The benefits sensor-networked systems bring to ...
SYS-CON Events announced today the Enterprise IoT Bootcamp, being held November 1-2, 2016, in conjunction with 19th Cloud Expo | @ThingsExpo at the Santa Clara Convention Center in Santa Clara, CA. Combined with real-world scenarios and use cases, the Enterprise IoT Bootcamp is not just based on presentations but with hands-on demos and detailed walkthroughs. We will introduce you to a variety of real world use cases prototyped using Arduino, Raspberry Pi, BeagleBone, Spark, and Intel Edison. Y...
Large scale deployments present unique planning challenges, system commissioning hurdles between IT and OT and demand careful system hand-off orchestration. In his session at @ThingsExpo, Jeff Smith, Senior Director and a founding member of Incenergy, will discuss some of the key tactics to ensure delivery success based on his experience of the last two years deploying Industrial IoT systems across four continents.
Much of IT terminology is often misused and misapplied. Modernization and transformation are two such terms. They are often used interchangeably even though they mean different things and have very different connotations. Indeed, it is somewhat safe to assume that in IT any transformative effort is likely to also have a modernizing effect, and thus, we can see these as levels of improvement efforts. However, many businesses are being led to believe if they don’t transform now they risk becoming ...
Identity is in everything and customers are looking to their providers to ensure the security of their identities, transactions and data. With the increased reliance on cloud-based services, service providers must build security and trust into their offerings, adding value to customers and improving the user experience. Making identity, security and privacy easy for customers provides a unique advantage over the competition.
SYS-CON Events announced today that Venafi, the Immune System for the Internet™ and the leading provider of Next Generation Trust Protection, will exhibit at @DevOpsSummit at 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Venafi is the Immune System for the Internet™ that protects the foundation of all cybersecurity – cryptographic keys and digital certificates – so they can’t be misused by bad guys in attacks...
Whether your IoT service is connecting cars, homes, appliances, wearable, cameras or other devices, one question hangs in the balance – how do you actually make money from this service? The ability to turn your IoT service into profit requires the ability to create a monetization strategy that is flexible, scalable and working for you in real-time. It must be a transparent, smoothly implemented strategy that all stakeholders – from customers to the board – will be able to understand and comprehe...
"Tintri was started in 2008 with the express purpose of building a storage appliance that is ideal for virtualized environments. We support a lot of different hypervisor platforms from VMware to OpenStack to Hyper-V," explained Dan Florea, Director of Product Management at Tintri, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
"There's a growing demand from users for things to be faster. When you think about all the transactions or interactions users will have with your product and everything that is between those transactions and interactions - what drives us at Catchpoint Systems is the idea to measure that and to analyze it," explained Leo Vasiliou, Director of Web Performance Engineering at Catchpoint Systems, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York Ci...