seed fund
Auto Added by WPeMatico
Auto Added by WPeMatico
Compliance automation isn’t exactly the most exciting topic, but security audits are big business and companies that aim to get a SOC 2, ISO 207001 or FedRamp certification can often spend six figures to get through the process with the help of an auditing service. Seattle-based Strike Graph, which is launching today and announcing a $3.9 million seed funding round, wants to automate as much of this process as possible.
The company’s funding round was led by Madrona Venture Group, with participation from Amplify.LA, Revolution’s Rise of the Rest Seed Fund and Green D Ventures.
Strike Graph co-founder and CEO Justin Beals tells me that the idea for the company came to him during his time as CTO at machine learning startup Koru (which had a bit of an odd exit last year). To get enterprise adoption for that service, the company had to get a SOC 2 security certification. “It was a real challenge, especially for a small company. In talking to my colleagues, I just recognized how much of a challenge it was across the board. And so when it was time for the next startup, I was just really curious,” he told me.
Together with his co-founder Brian Bero, he incubated the idea at Madrona Venture Labs, where he spent some time as Entrepreneur in Residence after Koru.
Beals argues that today’s process tends to be slow, inefficient and expensive. The idea behind Strike Graph, unsurprisingly, is to remove as many of these inefficiencies as is currently possible. The company itself, it is worth noting, doesn’t provide the actual audit service. Businesses will still need to hire an auditing service for that. But Beals also argues that the bulk of what companies are paying for today is pre-audit preparation.
“We do all that preparation work and preparing you and then, after your first audit, you have to go and renew every year. So there’s an important maintenance of that information.”
When customers come to Strike Graph, they fill out a risk assessment. The company takes that and can then provide them with controls for how to improve their security posture — both to pass the audit and to secure their data. Beals also noted that soon, Strike Graph will be able to help businesses automate the collection of evidence for the audit (say your encryption settings) and can pull that in regularly. Certifications like SOC 2, after all, require companies to have ongoing security practices in place and get re-audited every 12 months. Automated evidence collection will launch in early 2021, once the team has built out the first set of its integrations to collect that data.
That’s also where the company, which mostly targets mid-size businesses, plans to spend a lot of its new funding. In addition, the company plans to focus on its marketing efforts, mostly around content marketing and educating its potential customers.
“Every company, big or small, that sells a software solution must address a broad set of compliance requirements in regards to security and privacy. Obtaining the certifications can be a burdensome, opaque and expensive process. Strike Graph is applying intelligent technology to this problem — they help the company identify the appropriate risks, enable the audit to run smoothly and then automate the compliance and testing going forward,” said Hope Cochran, managing director at Madrona Venture Group. “These audits were a necessary pain when I was a CFO, and Strike Graph’s elegant solution brings together teams across the company to move the business forward faster.”
Powered by WPeMatico
Replica, the data-gathering tool created within Sidewalk Labs that maps the movement of people in cities, is now a company.
The newly formed company, which is headed by Nick Bowden, also announced Thursday it has raised $11 million in a Series A funding round from investors Innovation Endeavors, Firebrand Ventures and Revolution’s Rise of the Rest Seed Fund. The capital will be used to accelerate Replica’s growth through new hires beyond its existing 13-person staff, expansion to new cities and investment in its technology.
Replica will remain connected to Sidewalk Labs, the smart city technology firm owned by Google’s parent company Alphabet. Both Sidewalk Labs and Innovation Endeavors will be on the company’s board.
Replica, which is headquartered in Kansas City, with an engineering office in San Francisco, plans to launch in several new regions. Replica is already working with Kansas City, Portland, Chicago and Sacramento, with more cities to come this year.
The Replica tool, which has drawn the ire of some privacy advocates, grew out of Model Lab, a project started two years ago to investigate modeling as a way to address urban problems. Early work focused on meeting with public agencies throughout the world to learn more about the data, processes and other tools they used.
The Replica planning tool was born out what they discovered: Public agencies don’t have all the information needed to understand the link and interdependence between transportation and land use. The upshot is an incomplete picture of how people move within cities, leaving public agencies ill-equipped to make decisions about how land is used and what transportation is needed and where, the company says.
“Answering questions like who uses the street, in which way and why, are critical for city planners as they work to make transit and land use more efficient and sustainable,” Bowden wrote. “But current resources available to city planners to analyze people’s travel in urban areas are less than satisfactory.”
The Replica modeling tool uses de-identified mobile location data to give public agencies a comprehensive portrait of how, when and why people travel. Movement models are matched to a synthetic population, which has been created using samples of census demographic data to create a broad new data set that is statistically representative of the actual population. The result, Bowden says, is a model that is both privacy-sensitive and extremely useful for public agencies.
Bowden tried to quell privacy worries Thursday in a blog post, emphasizing that the data has been “de-identified,” meaning that an individual’s location data would be identifiable. The company says it’s not interested in the movement of individuals. Instead, the modeling tool is used to see and understand patterns of movement.
“For this reason, we only start with data that has been de-identified,” Bowden wrote Thursday. “This data is then used to train a travel behavior model — basically, a set of rules to represent the movement in a particular place.”
Powered by WPeMatico
Yesterday in San Francisco, AngelPad held its 10th Demo Day, a graduation of sorts for the enterprise startups admitted into and backed by the accelerator. The accelerator, run by husband and wife team Thomas Korte and Carine Magescas, has realized at least one solid exit already in the adtech startup MoPub, which sold to Twitter for $350 million in stock in the fall of 2013. Companies that… Read More
Powered by WPeMatico