.406 Ventures

RAD Security is a developer of an AI-driven cloud security platform designed to monitor and protect modern containerized infrastructure. The platform continuously observes behavior across hybrid-cloud environments, providing real-time alerts for any security issues detected. It proactively quarantines or eliminates suspicious configurations and workloads, ensuring compliance with security standards. By enhancing its cloud detection and response capabilities, RAD Security helps organizations safeguard their AI systems as they evolve, enabling them to effectively manage the complexities of AI security. This approach allows businesses to maintain seamless, scalable protection while identifying and addressing vulnerabilities and misconfigurations in their security posture.

Tausight, Inc. is a software company founded in 2018 and headquartered in Sudbury, Massachusetts, with an additional office in San Francisco, California. The company focuses on developing solutions to mitigate healthcare cyber incidents related to patient data theft, specifically targeting the needs of chief information officers and chief information security officers in the healthcare sector. Tausight's software employs machine learning techniques to enhance the confidentiality, integrity, and availability of patients’ protected health information (PHI). By adopting a proactive risk management approach, the platform aims to improve patient care, clinician satisfaction, regulatory compliance, and innovation rates, ultimately helping healthcare organizations assess and reduce the risks associated with data breaches.

Sevco Security, Inc., founded in 2020 and based in Austin, Texas, specializes in cyber security products and services. The company offers a unified asset intelligence platform that focuses on IT asset visibility and cyber asset management. This cloud-native platform is designed to address the challenges posed by an extended attack surface, creating a reliable data repository for all organizational devices, users, and applications. Sevco Security's solution continuously updates the inventory of assets, encompassing IT, public and private cloud environments, IoT devices, operational technology, and remote users. By autonomously identifying and closing security gaps, the platform helps organizations manage risk more effectively and improve incident response times while ensuring compliance across various deployments.

Telmai is a data observability platform that focuses on enhancing the quality and integrity of data across modern data environments. The company automates the scanning of complex data stored in data warehouses, data lakes, and event streams to identify anomalies. Using an artificial intelligence-based approach, Telmai's platform monitors the entire data pipeline, automatically detecting duplicates and ensuring data completeness and correctness. This proactive monitoring enables data teams to investigate issues in real-time, ultimately reducing the time required for data analysis and enhancing the security and scalability of data systems within organizations.

HYPR is a cybersecurity company that provides passwordless authentication for users. The HYPR Cloud Platform makes it easy to eliminate passwords and deliver lightning-fast login experiences. HYPR aims to reduce the risks associated with password-based authentication by replacing passwords with biometrics, security keys, and other strong authentication factors.

Oort is an identity threat detection and response platform that focuses on enhancing enterprise security. Given that over 60% of security breaches involve the misuse of valid identity credentials, Oort recognizes identity as a critical perimeter that cannot be solely defended by personnel. The platform empowers cybersecurity and IT professionals to effectively manage their identity and access management (IAM) programs, providing full visibility and control over their identity attack surface. Oort's SaaS solution is designed for rapid deployment, allowing organizations to quickly reduce identity vulnerabilities at scale. Additionally, it offers network solutions through a network of globally distributed data centers, ensuring robust security for the digital supply chain. Based in Boston, MA, Oort operates as a fully remote startup and is supported by prominent investors such as Bain Capital Ventures, 645 Ventures, and First Star Ventures.

ThreatX is a cybersecurity company that specializes in protecting application programming interfaces (APIs) from a variety of threats, including DDoS attacks, bot attacks, and exploitation of vulnerabilities. Its cloud-based platform offers comprehensive API protection by using advanced detection capabilities to identify malicious actors and respond dynamically to threats. The company's solutions are designed to help organizations across different industries effectively manage risks and safeguard their networks from cyberattacks. By leveraging cloud-optimized infrastructure, ThreatX provides essential tools for bot management and mitigation of distributed denial-of-service attacks, enabling businesses to maintain secure operations and communication.

ThreatX is a cybersecurity company that specializes in protecting application programming interfaces (APIs) from a variety of threats, including DDoS attacks, bot attacks, and exploitation of vulnerabilities. Its cloud-based platform offers comprehensive API protection by using advanced detection capabilities to identify malicious actors and respond dynamically to threats. The company's solutions are designed to help organizations across different industries effectively manage risks and safeguard their networks from cyberattacks. By leveraging cloud-optimized infrastructure, ThreatX provides essential tools for bot management and mitigation of distributed denial-of-service attacks, enabling businesses to maintain secure operations and communication.

Sevco Security, Inc., founded in 2020 and based in Austin, Texas, specializes in cyber security products and services. The company offers a unified asset intelligence platform that focuses on IT asset visibility and cyber asset management. This cloud-native platform is designed to address the challenges posed by an extended attack surface, creating a reliable data repository for all organizational devices, users, and applications. Sevco Security's solution continuously updates the inventory of assets, encompassing IT, public and private cloud environments, IoT devices, operational technology, and remote users. By autonomously identifying and closing security gaps, the platform helps organizations manage risk more effectively and improve incident response times while ensuring compliance across various deployments.

HYPR is a cybersecurity company that provides passwordless authentication for users. The HYPR Cloud Platform makes it easy to eliminate passwords and deliver lightning-fast login experiences. HYPR aims to reduce the risks associated with password-based authentication by replacing passwords with biometrics, security keys, and other strong authentication factors.

Tausight, Inc. is a software company founded in 2018 and headquartered in Sudbury, Massachusetts, with an additional office in San Francisco, California. The company focuses on developing solutions to mitigate healthcare cyber incidents related to patient data theft, specifically targeting the needs of chief information officers and chief information security officers in the healthcare sector. Tausight's software employs machine learning techniques to enhance the confidentiality, integrity, and availability of patients’ protected health information (PHI). By adopting a proactive risk management approach, the platform aims to improve patient care, clinician satisfaction, regulatory compliance, and innovation rates, ultimately helping healthcare organizations assess and reduce the risks associated with data breaches.

Onapsis Inc. specializes in cybersecurity and compliance solutions tailored for business-critical applications and infrastructure, particularly in the context of ERP systems like SAP. The company's flagship offering, the Onapsis Security Platform, is an SAP-certified solution that employs a context-aware approach to detect and mitigate security risks, compliance gaps, and cyber threats. Additionally, Onapsis X1 serves as a standard tool for automated security assessments and audits of SAP and other ERP platforms. The company also provides professional services, including penetration testing and security audits, along with training programs focused on SAP security. Onapsis aims to enhance the visibility and control of security and audit teams over potential threats and compliance issues within enterprise applications. Founded in 2009 and headquartered in Boston, Massachusetts, Onapsis operates additional offices in Heidelberg, Germany, and Buenos Aires, Argentina, serving a diverse clientele that includes major firms across various industries.

Terbium Labs, Inc., founded in 2013 and based in Baltimore, Maryland, specializes in data intelligence solutions for information security. The company offers Matchlight, a comprehensive and fully private dark web monitoring system designed to detect stolen data and mitigate the impact of data breaches. This automated platform monitors for leaks of sensitive information, providing organizations with real-time alerts when their data appears in unauthorized locations on the internet or dark web. By enabling proactive risk management, Terbium Labs helps organizations safeguard their high-value data against theft and misuse.

Sevco Security, Inc., founded in 2020 and based in Austin, Texas, specializes in cyber security products and services. The company offers a unified asset intelligence platform that focuses on IT asset visibility and cyber asset management. This cloud-native platform is designed to address the challenges posed by an extended attack surface, creating a reliable data repository for all organizational devices, users, and applications. Sevco Security's solution continuously updates the inventory of assets, encompassing IT, public and private cloud environments, IoT devices, operational technology, and remote users. By autonomously identifying and closing security gaps, the platform helps organizations manage risk more effectively and improve incident response times while ensuring compliance across various deployments.

HYPR is a cybersecurity company that provides passwordless authentication for users. The HYPR Cloud Platform makes it easy to eliminate passwords and deliver lightning-fast login experiences. HYPR aims to reduce the risks associated with password-based authentication by replacing passwords with biometrics, security keys, and other strong authentication factors.

GreatHorn, Inc. is a cybersecurity company that focuses on protecting cloud communication infrastructures from sophisticated threats such as spear phishing and credential theft. Founded in 2015 and based in Waltham, Massachusetts, GreatHorn offers a range of solutions tailored for cloud platforms like Google applications, Office 365, and Slack. Its services include Inbound Email Security, which provides automated protection against spear phishing; Collaboration and Chat Security, which helps IT teams monitor and manage communication security; Continuous Credential Monitoring for real-time threat detection; and Mailbox Protection, which equips users with insights for safe email interactions. By leveraging advanced threat detection and automated defenses, GreatHorn empowers enterprises to secure their communications across multiple channels effectively.

Edgewise Networks, Inc. is a cybersecurity software company based in Burlington, Massachusetts, founded in 2016. It specializes in Trusted Application Networking for cloud and data center environments, addressing vulnerabilities where traditional firewalls may fall short. The company focuses on preventing the compromise of applications and the advancement of network-borne threats by permitting only trusted applications to communicate over designated network paths. Edgewise employs machine learning to analyze application communication patterns, enabling the creation of effective protection policies that can reduce the network attack surface by up to 98%. This approach allows organizations to safeguard critical business applications without necessitating network changes, thereby enhancing security management even in the absence of firewall effectiveness. In May 2020, Edgewise Networks became a subsidiary of Zscaler, Inc.

Randori is your trusted adversary. Our Attack Platform empowers organizations with a continuous and automated red team experience they can use to assess their real-world security. By mirroring today’s adversaries, we help security teams identify gaps, demonstrate effectiveness, and get better over time. Headquartered in Waltham, MA, with offices in Denver, CO, the company is backed by .406 Ventures, Accomplice, Harmony Partners and Legion Capital.

Pwnie Express is an IoT security platform focused on addressing security vulnerabilities arising from the deployment of IoT devices in enterprises. Founded by a team with extensive experience in security testing and product development, the company specializes in comprehensive threat detection for both wired and wireless devices within workplace environments. Its solutions uniquely identify rogue, misconfigured, and unauthorized devices, helping organizations mitigate potential risks from these vulnerabilities. By automating the detection process, Pwnie Express enables security teams to continuously monitor their networks for open pathways that could be exploited by attackers. The company's offerings include Pwn Pulse, a distributed security assessment service, along with award-winning sensors that provide timely and effective insights for managing security challenges.

Threat Stack is a provider of a cloud security platform that supports DevOps and SecOps teams in managing security risks within cloud, hybrid-cloud, and containerized environments. The platform offers continuous security monitoring and risk assessment, enabling organizations to detect insider threats, external attacks, and compliance gaps in real-time. By delivering full-stack security observability throughout the application development lifecycle, Threat Stack helps enterprises achieve regulatory compliance and safeguard against potential data loss. This comprehensive approach enhances the ability of security and operations teams to innovate and scale securely while addressing complex cloud security needs.

GreatHorn, Inc. is a cybersecurity company that focuses on protecting cloud communication infrastructures from sophisticated threats such as spear phishing and credential theft. Founded in 2015 and based in Waltham, Massachusetts, GreatHorn offers a range of solutions tailored for cloud platforms like Google applications, Office 365, and Slack. Its services include Inbound Email Security, which provides automated protection against spear phishing; Collaboration and Chat Security, which helps IT teams monitor and manage communication security; Continuous Credential Monitoring for real-time threat detection; and Mailbox Protection, which equips users with insights for safe email interactions. By leveraging advanced threat detection and automated defenses, GreatHorn empowers enterprises to secure their communications across multiple channels effectively.

Pwnie Express is an IoT security platform focused on addressing security vulnerabilities arising from the deployment of IoT devices in enterprises. Founded by a team with extensive experience in security testing and product development, the company specializes in comprehensive threat detection for both wired and wireless devices within workplace environments. Its solutions uniquely identify rogue, misconfigured, and unauthorized devices, helping organizations mitigate potential risks from these vulnerabilities. By automating the detection process, Pwnie Express enables security teams to continuously monitor their networks for open pathways that could be exploited by attackers. The company's offerings include Pwn Pulse, a distributed security assessment service, along with award-winning sensors that provide timely and effective insights for managing security challenges.

Threat Stack is a provider of a cloud security platform that supports DevOps and SecOps teams in managing security risks within cloud, hybrid-cloud, and containerized environments. The platform offers continuous security monitoring and risk assessment, enabling organizations to detect insider threats, external attacks, and compliance gaps in real-time. By delivering full-stack security observability throughout the application development lifecycle, Threat Stack helps enterprises achieve regulatory compliance and safeguard against potential data loss. This comprehensive approach enhances the ability of security and operations teams to innovate and scale securely while addressing complex cloud security needs.

Terbium Labs, Inc., founded in 2013 and based in Baltimore, Maryland, specializes in data intelligence solutions for information security. The company offers Matchlight, a comprehensive and fully private dark web monitoring system designed to detect stolen data and mitigate the impact of data breaches. This automated platform monitors for leaks of sensitive information, providing organizations with real-time alerts when their data appears in unauthorized locations on the internet or dark web. By enabling proactive risk management, Terbium Labs helps organizations safeguard their high-value data against theft and misuse.

Lexumo, Inc. offers a cloud-based platform designed to identify and remediate security vulnerabilities in embedded, enterprise, and cloud software products. Founded in 2015 and located in Cambridge, Massachusetts, Lexumo's technology automatically detects open-source software within clients' products and identifies associated security vulnerabilities. The platform performs rapid, scalable software analysis and continuously monitors code for both existing and emerging vulnerabilities throughout the product lifecycle. By leveraging big data analytics, Lexumo tracks popular vulnerability repositories and provides instant alerts to clients when new vulnerabilities arise or when changes are made to the codebase. Additionally, when patches are available, the platform facilitates back-porting to help developers address security issues effectively, even when upgrading is not feasible. This comprehensive service aims to protect clients from potential data theft, system failures, and brand damage associated with software vulnerabilities.

Carbon Black, Inc. is a cybersecurity company that offers advanced security solutions both in the United States and globally. Established in 2002 and headquartered in Waltham, Massachusetts, the company provides a range of products aimed at predicting, preventing, detecting, responding to, and remediating cyber threats. Its flagship offering, the Cb Predictive Security Cloud, is a big data and analytics platform that enables comprehensive endpoint data collection and analysis. Carbon Black's product suite includes CB Defense for antivirus and endpoint detection, CB ThreatHunter for threat hunting, and CB LiveOps for real-time security operations. Additionally, it provides managed services through CB ThreatSight and application control via CB Protection. The company serves a diverse clientele, including security-focused enterprises, government agencies, and small to mid-sized organizations, and has been recognized for its innovative approach to endpoint security. In January 2016, Carbon Black rebranded from its original name, Bit9, Inc., and it currently operates as a subsidiary of VMware.

Onapsis Inc. specializes in cybersecurity and compliance solutions tailored for business-critical applications and infrastructure, particularly in the context of ERP systems like SAP. The company's flagship offering, the Onapsis Security Platform, is an SAP-certified solution that employs a context-aware approach to detect and mitigate security risks, compliance gaps, and cyber threats. Additionally, Onapsis X1 serves as a standard tool for automated security assessments and audits of SAP and other ERP platforms. The company also provides professional services, including penetration testing and security audits, along with training programs focused on SAP security. Onapsis aims to enhance the visibility and control of security and audit teams over potential threats and compliance issues within enterprise applications. Founded in 2009 and headquartered in Boston, Massachusetts, Onapsis operates additional offices in Heidelberg, Germany, and Buenos Aires, Argentina, serving a diverse clientele that includes major firms across various industries.

Threat Stack is a provider of a cloud security platform that supports DevOps and SecOps teams in managing security risks within cloud, hybrid-cloud, and containerized environments. The platform offers continuous security monitoring and risk assessment, enabling organizations to detect insider threats, external attacks, and compliance gaps in real-time. By delivering full-stack security observability throughout the application development lifecycle, Threat Stack helps enterprises achieve regulatory compliance and safeguard against potential data loss. This comprehensive approach enhances the ability of security and operations teams to innovate and scale securely while addressing complex cloud security needs.

Vaultive specializes in cloud data encryption services that address the critical challenge of securing data in the cloud. By employing advanced encryption-in-use technology, Vaultive enables businesses to maintain control and ownership of their data, even as they transition to cloud applications. Customers retain their encryption keys, ensuring they can utilize cloud services while adhering to necessary governance and security requirements. This approach allows encrypted data to be processed—searched, indexed, and sorted—within cloud applications without needing to be decrypted first. As a result, organizations can benefit from the cost-effectiveness and efficiency of cloud computing while upholding the data security, control, and compliance standards typically associated with on-premise solutions.

Veracode is an independent provider of cloud-based application security and intelligence services, founded in 2006 and headquartered in Burlington, Massachusetts. The company offers a platform designed to identify and remediate security-related vulnerabilities throughout the software development lifecycle. By integrating security seamlessly into the development process, Veracode enables security teams, software developers, and enterprises to test and monitor the security of both internally developed and third-party applications. This comprehensive solution enhances the security of web, mobile, and outsourced software applications, ensuring that organizations can effectively address potential defects from the inception of their software projects.

Onapsis Inc. specializes in cybersecurity and compliance solutions tailored for business-critical applications and infrastructure, particularly in the context of ERP systems like SAP. The company's flagship offering, the Onapsis Security Platform, is an SAP-certified solution that employs a context-aware approach to detect and mitigate security risks, compliance gaps, and cyber threats. Additionally, Onapsis X1 serves as a standard tool for automated security assessments and audits of SAP and other ERP platforms. The company also provides professional services, including penetration testing and security audits, along with training programs focused on SAP security. Onapsis aims to enhance the visibility and control of security and audit teams over potential threats and compliance issues within enterprise applications. Founded in 2009 and headquartered in Boston, Massachusetts, Onapsis operates additional offices in Heidelberg, Germany, and Buenos Aires, Argentina, serving a diverse clientele that includes major firms across various industries.

Threat Stack is a provider of a cloud security platform that supports DevOps and SecOps teams in managing security risks within cloud, hybrid-cloud, and containerized environments. The platform offers continuous security monitoring and risk assessment, enabling organizations to detect insider threats, external attacks, and compliance gaps in real-time. By delivering full-stack security observability throughout the application development lifecycle, Threat Stack helps enterprises achieve regulatory compliance and safeguard against potential data loss. This comprehensive approach enhances the ability of security and operations teams to innovate and scale securely while addressing complex cloud security needs.

Carbon Black, Inc. is a cybersecurity company that offers advanced security solutions both in the United States and globally. Established in 2002 and headquartered in Waltham, Massachusetts, the company provides a range of products aimed at predicting, preventing, detecting, responding to, and remediating cyber threats. Its flagship offering, the Cb Predictive Security Cloud, is a big data and analytics platform that enables comprehensive endpoint data collection and analysis. Carbon Black's product suite includes CB Defense for antivirus and endpoint detection, CB ThreatHunter for threat hunting, and CB LiveOps for real-time security operations. Additionally, it provides managed services through CB ThreatSight and application control via CB Protection. The company serves a diverse clientele, including security-focused enterprises, government agencies, and small to mid-sized organizations, and has been recognized for its innovative approach to endpoint security. In January 2016, Carbon Black rebranded from its original name, Bit9, Inc., and it currently operates as a subsidiary of VMware.

Threat Stack is a provider of a cloud security platform that supports DevOps and SecOps teams in managing security risks within cloud, hybrid-cloud, and containerized environments. The platform offers continuous security monitoring and risk assessment, enabling organizations to detect insider threats, external attacks, and compliance gaps in real-time. By delivering full-stack security observability throughout the application development lifecycle, Threat Stack helps enterprises achieve regulatory compliance and safeguard against potential data loss. This comprehensive approach enhances the ability of security and operations teams to innovate and scale securely while addressing complex cloud security needs.

Pwnie Express is an IoT security platform focused on addressing security vulnerabilities arising from the deployment of IoT devices in enterprises. Founded by a team with extensive experience in security testing and product development, the company specializes in comprehensive threat detection for both wired and wireless devices within workplace environments. Its solutions uniquely identify rogue, misconfigured, and unauthorized devices, helping organizations mitigate potential risks from these vulnerabilities. By automating the detection process, Pwnie Express enables security teams to continuously monitor their networks for open pathways that could be exploited by attackers. The company's offerings include Pwn Pulse, a distributed security assessment service, along with award-winning sensors that provide timely and effective insights for managing security challenges.

Carbon Black, Inc. is a cybersecurity company that offers advanced security solutions both in the United States and globally. Established in 2002 and headquartered in Waltham, Massachusetts, the company provides a range of products aimed at predicting, preventing, detecting, responding to, and remediating cyber threats. Its flagship offering, the Cb Predictive Security Cloud, is a big data and analytics platform that enables comprehensive endpoint data collection and analysis. Carbon Black's product suite includes CB Defense for antivirus and endpoint detection, CB ThreatHunter for threat hunting, and CB LiveOps for real-time security operations. Additionally, it provides managed services through CB ThreatSight and application control via CB Protection. The company serves a diverse clientele, including security-focused enterprises, government agencies, and small to mid-sized organizations, and has been recognized for its innovative approach to endpoint security. In January 2016, Carbon Black rebranded from its original name, Bit9, Inc., and it currently operates as a subsidiary of VMware.

ThreatGRID is a pioneering provider of malware analysis and threat intelligence solutions, designed to enhance how organizations defend against complex cyber threats. By leveraging cloud technology, ThreatGRID crowdsources and analyzes vast amounts of malware, identifying key behavioral indicators for efficient threat detection and remediation. The platform offers security teams continuous, real-time threat intelligence enriched with both global and historical context, helping to prevent future attacks. Additionally, ThreatGRID's API facilitates easy sample submission and the integration of threat intelligence with other security products, optimizing the value of existing security investments.

Veracode is an independent provider of cloud-based application security and intelligence services, founded in 2006 and headquartered in Burlington, Massachusetts. The company offers a platform designed to identify and remediate security-related vulnerabilities throughout the software development lifecycle. By integrating security seamlessly into the development process, Veracode enables security teams, software developers, and enterprises to test and monitor the security of both internally developed and third-party applications. This comprehensive solution enhances the security of web, mobile, and outsourced software applications, ensuring that organizations can effectively address potential defects from the inception of their software projects.

Vaultive specializes in cloud data encryption services that address the critical challenge of securing data in the cloud. By employing advanced encryption-in-use technology, Vaultive enables businesses to maintain control and ownership of their data, even as they transition to cloud applications. Customers retain their encryption keys, ensuring they can utilize cloud services while adhering to necessary governance and security requirements. This approach allows encrypted data to be processed—searched, indexed, and sorted—within cloud applications without needing to be decrypted first. As a result, organizations can benefit from the cost-effectiveness and efficiency of cloud computing while upholding the data security, control, and compliance standards typically associated with on-premise solutions.

Carbon Black, Inc. is a cybersecurity company that offers advanced security solutions both in the United States and globally. Established in 2002 and headquartered in Waltham, Massachusetts, the company provides a range of products aimed at predicting, preventing, detecting, responding to, and remediating cyber threats. Its flagship offering, the Cb Predictive Security Cloud, is a big data and analytics platform that enables comprehensive endpoint data collection and analysis. Carbon Black's product suite includes CB Defense for antivirus and endpoint detection, CB ThreatHunter for threat hunting, and CB LiveOps for real-time security operations. Additionally, it provides managed services through CB ThreatSight and application control via CB Protection. The company serves a diverse clientele, including security-focused enterprises, government agencies, and small to mid-sized organizations, and has been recognized for its innovative approach to endpoint security. In January 2016, Carbon Black rebranded from its original name, Bit9, Inc., and it currently operates as a subsidiary of VMware.

Veracode is an independent provider of cloud-based application security and intelligence services, founded in 2006 and headquartered in Burlington, Massachusetts. The company offers a platform designed to identify and remediate security-related vulnerabilities throughout the software development lifecycle. By integrating security seamlessly into the development process, Veracode enables security teams, software developers, and enterprises to test and monitor the security of both internally developed and third-party applications. This comprehensive solution enhances the security of web, mobile, and outsourced software applications, ensuring that organizations can effectively address potential defects from the inception of their software projects.

Veracode is an independent provider of cloud-based application security and intelligence services, founded in 2006 and headquartered in Burlington, Massachusetts. The company offers a platform designed to identify and remediate security-related vulnerabilities throughout the software development lifecycle. By integrating security seamlessly into the development process, Veracode enables security teams, software developers, and enterprises to test and monitor the security of both internally developed and third-party applications. This comprehensive solution enhances the security of web, mobile, and outsourced software applications, ensuring that organizations can effectively address potential defects from the inception of their software projects.

PGP TrustCenter is the provider of on-demand PKI (public key infrastructure) security services, enabling a wide range of PKI-enabled security services for enterprise authentication, secure e-mail, and digital signatures. They deliver breakthrough economics and implementation speed to the enterprise's traditional managed services.

Carbon Black, Inc. is a cybersecurity company that offers advanced security solutions both in the United States and globally. Established in 2002 and headquartered in Waltham, Massachusetts, the company provides a range of products aimed at predicting, preventing, detecting, responding to, and remediating cyber threats. Its flagship offering, the Cb Predictive Security Cloud, is a big data and analytics platform that enables comprehensive endpoint data collection and analysis. Carbon Black's product suite includes CB Defense for antivirus and endpoint detection, CB ThreatHunter for threat hunting, and CB LiveOps for real-time security operations. Additionally, it provides managed services through CB ThreatSight and application control via CB Protection. The company serves a diverse clientele, including security-focused enterprises, government agencies, and small to mid-sized organizations, and has been recognized for its innovative approach to endpoint security. In January 2016, Carbon Black rebranded from its original name, Bit9, Inc., and it currently operates as a subsidiary of VMware.

PGP TrustCenter is the provider of on-demand PKI (public key infrastructure) security services, enabling a wide range of PKI-enabled security services for enterprise authentication, secure e-mail, and digital signatures. They deliver breakthrough economics and implementation speed to the enterprise's traditional managed services.

Veracode is an independent provider of cloud-based application security and intelligence services, founded in 2006 and headquartered in Burlington, Massachusetts. The company offers a platform designed to identify and remediate security-related vulnerabilities throughout the software development lifecycle. By integrating security seamlessly into the development process, Veracode enables security teams, software developers, and enterprises to test and monitor the security of both internally developed and third-party applications. This comprehensive solution enhances the security of web, mobile, and outsourced software applications, ensuring that organizations can effectively address potential defects from the inception of their software projects.

CPX Security is a Boston-based company that specializes in cloud-based security management solutions for the Internet of Things (IoT) and connected products. The company provides a comprehensive security framework that assesses and manages the security of these products throughout their lifecycle, from design and testing to operational deployment. Its platform enables manufacturers to identify and monitor vulnerabilities within their IoT solutions, offering insights into potential security issues. By protecting the entire IoT ecosystem, including edge devices, communication software, gateways, cloud infrastructure, and applications, CPX Security helps clients detect and address security exposures with minimal risk.