SaaS security startup DoControl has raised $10 million in Series A funding to help customers safeguard SaaS applications from Google, Microsoft, Salesforce, and others. Key financial backers include RTP Global, CrowdStrike Falcon Fund, StageOne Ventures and Cardumen Capital.
DoControl is the latest in a growing list of security startups focused specifically on safeguarding SaaS applications. Co-founder and CEO Adam Gavish previously was product manager for cloud security and privacy at Google Cloud. Earlier, he held an e-commerce post at Amazon Consumer Services. Gavish's career extends back to a network security engineer post with the Israeli Intelligence Corps., according to his LinkedIn profile.
In a prepared statement about the funding and business strategy, Gavish said:
“While leading cybersecurity product management at Google Cloud, I saw firsthand how enterprises struggle with preventing unauthorized access to data stored in the cloud. This becomes more complex with SaaS applications serving the entire workforce. Identity providers and zero trust solutions manage users and secure remote access, but security/IT teams have no simple way to dynamically monitor and restrict access to data by former employees, private accounts, external vendors, customers or partners. This creates a huge amount of unmanageable data access, posing significant risks to organizations and increasing the likelihood of data breaches. DoControl solves one of the most complex operational challenges - monitoring and restricting data access to the wrong personnel without slowing down business enablement. We’re giving enterprises an efficient platform to balance this operational equation through automation and frictionless, modern user experience.”
DoControl: SaaS Security Software Capabilities, Partner Program
DoControl's software provides organizations with "automated, self-service tools they need for SaaS applications data access monitoring, orchestration, and remediation," the startup asserts.
The DoControl platform provides:
- Asset Management spanning users, external collaborators and assets;
- Security Policy Enforcement through no-code workflows ; and
- Slack/Teams Bot engaging with end-users on behalf of security/IT teams.
The bots enable a self-service remediation path for human errors, malicious activity, and data leakage, DoControl asserts.
DoControl has an emerging partner program that's "designed to help you and your customers allow and restrict data access automatically and at scale." The partner program page doesn't specifically mention MSP and MSSP focus areas. However, early partners include:
Early DoControl customers include Armis, Bizzabo, Hive Media, Silverfort, and YellowHead, among others, according to the company's website.
DoControl: Early SaaS Investors, Executive Perspectives
RTP Global, which previously backed Datadog, led the DoControl funding round. Additional investors include:
This is CrowdStrike's second key investment in recent days. The other one involves Tines -- a SOAR (security orchestration, automation and response) startup.
Added advisor Andy Brown, a Zscaler board member:
“With so much business data moving outside the network perimeter into SaaS applications, this is becoming a blind spot for CISOs and security teams. It’s time for a solution that gives enterprises not only visibility on such data movements but also control on how it is used and shared to drive business without increasing the risk of data breaches.”
Noted RTP Global Partner Luke Page:
“The DoControl team is redefining an emerging category affecting almost every company worldwide - SaaS security. We were immediately impressed with the product and engineering background of the founding team, and quickly realized this customer-focused team is driven to solve real-world challenges with a differentiated technology that works at scale. With automated security workflows, DoControl makes data access control painless for enterprises of all shapes and sizes to improve security and operational efficiency.”
Concluded Shawn Henry, president of CrowdStrike Services and chief security officer at CrowdStrike:
“CrowdStrike is delighted to participate in DoControl’s funding rounds. Their innovative approach reduces the complexities of security maintenance, compliance and data access across SaaS applications, allowing enterprises to strike a better balance between security and business enablement while optimizing the efficiency and effectiveness of their security operations.”
SaaS Security Startups, Funding and MSP Partners
The market for tools that protect, monitor and/or manage SaaS applications is growing rapidly. Additional names to know include:
- Augmentt, from N-able veterans Gavin Garbutt and Derik Belair.
- SaaS Alerts, which raised $1.2 million in early stage funding in March 2021.
- Torii, which raised $10 million in January 2021 to expand a SaaS management software platform.
- Intello, which SailPoint Technologies acquired in February 2021.
Of the companies listed above, Augmentt (overall SaaS management) and SaaS Alerts (security) each have the sharpest focus on MSPs as partners.
