Sorenson Capital

NetRise offers a cloud-based platform dedicated to automated detection and risk management within software supply chains, particularly focusing on firmware vulnerabilities. The company's services provide organizations with enhanced visibility and control over their software assets, allowing for comprehensive analysis and reporting of potential threats. By facilitating continuous risk monitoring, NetRise enables consultants, operators, and analysts to identify and address risks associated with firmware and software dependencies effectively. The platform aims to strengthen the overall security posture of organizations, assisting them in maintaining compliance and safeguarding their digital environments.

VulnCheck is a cyber threat intelligence platform focused on helping organizations enhance their security posture against potential attacks. By delivering actionable exploit and vulnerability intelligence, the platform enables businesses to integrate critical information directly into their existing tools and processes. It specializes in predicting potential avenues of attack with speed and accuracy, allowing organizations to prioritize vulnerabilities based on the current threat landscape. This proactive approach facilitates timely and effective responses to emerging threats, ultimately assisting businesses in staying ahead of adversaries.

Cloudsmith Ltd. is a software-as-a-service company that specializes in secure storage and sharing of software assets, packages, and containers. Founded in 2013 and based in Belfast, United Kingdom, Cloudsmith offers a cloud-native, universal package management solution that supports various formats, including npm, Docker, Maven, PyPI, RubyGems, and Debian. Its platform includes features such as access controls, authentication mechanisms, and integration with identity providers for user management, ensuring the security of packages and repositories. Additionally, Cloudsmith provides tools for discovering and searching artifacts, facilitating easier access for developers to the packages they require. The company's offerings also encompass infrastructure automation development tools and cloud-hosted repositories with features like geo/IP restrictions, historical statistics, and malware scanning, catering to the needs of modern software supply chain management.

Bureau is a no-code identity and risk orchestration platform that helps businesses mitigate friction and fraud in customer interactions. It specializes in automating decisions for onboarding trustworthy customers while enhancing security and user experiences. The platform employs real-time insights, instant logins, and risk profiling to streamline authentication and hasten the onboarding process. Bureau offers a comprehensive suite of solutions, including customer onboarding, account monitoring, device intelligence, behavioral biometrics, and transaction monitoring, providing extensive protection throughout the customer journey. Its innovative Identity Bureau Network leverages contextual data to generate actionable insights, allowing businesses to make informed decisions regarding digital identities while improving KYC compliance and fraud prevention in the mobile domain.

Tuskira, established in 2018, specializes in proactive cybersecurity. Its core product, Agentic AI Security Mesh, consolidates data from over 150 security tools, enabling organizations to proactively identify and mitigate vulnerabilities before they're exploited. This unified platform enhances existing defenses, facilitates real-time threat response, and empowers security teams to transition from reactive to proactive strategies, providing continuous protection against evolving cyber threats.

ZeroEyes, Inc. is an artificial intelligence-based security company focused on firearm detection and prevention of active shooter incidents. Founded in 2018 and based in Philadelphia, Pennsylvania, the company analyzes over three billion images daily from security camera feeds to identify weapons and provide immediate alerts to authorities. Its platform enhances safety in various environments, including schools, workplaces, healthcare facilities, and public events, by improving situational awareness and reducing response times for first responders. ZeroEyes aims to combat mass shootings and gun-related violence by integrating advanced technology into security systems, thereby addressing critical safety concerns in education, commercial travel, and government sectors.

Evo Security is a cybersecurity SaaS company that specializes in identity and access management solutions. It offers a multi-factor authentication product called Evo MFA, tailored for managed service providers, managed security service providers, value-added resellers, and distributors. This white-labeled solution enables these partners to serve their small and medium-sized enterprise clients effectively. Evo Security's platform includes features such as multi-cloud authentication, login breach protection, single sign-on, privileged access management, and password management. By employing Evo Security's offerings, businesses can eliminate credential sharing, establish robust administrative permissions, enhance login security for their clients, and meet necessary insurance and compliance requirements.

Traceable Inc is a San Francisco-based company that specializes in security solutions for cloud-native applications, focusing on protecting application activity from user interactions to application programming interfaces (APIs) and underlying code. Founded in 2018, Traceable offers an end-to-end application security monitoring platform that utilizes machine learning technology to analyze user and session data alongside application behavior. This approach enables the detection of anomalies and potential cyberattacks, providing organizations with insights for threat protection and management throughout the Software Development Lifecycle. The platform includes features for security posture management and forensic analysis, empowering businesses to minimize risks while maximizing the value of their APIs in an increasingly cloud-driven environment.

VulnCheck is a cyber threat intelligence platform focused on helping organizations enhance their security posture against potential attacks. By delivering actionable exploit and vulnerability intelligence, the platform enables businesses to integrate critical information directly into their existing tools and processes. It specializes in predicting potential avenues of attack with speed and accuracy, allowing organizations to prioritize vulnerabilities based on the current threat landscape. This proactive approach facilitates timely and effective responses to emerging threats, ultimately assisting businesses in staying ahead of adversaries.

Sandfly Security Limited, founded in 2017 and based in Christchurch, New Zealand, specializes in agentless intrusion detection and endpoint security for Linux systems. The company offers a solution known as Agentless Linux Security™, which provides immediate protection for both cloud and non-cloud Linux environments without the need for deploying agents. Sandfly’s technology can analyze all Linux distributions and detect over 1,000 different tactics and threats, including rootkits, malware, and signs of compromise, within seconds. This automated security system continuously monitors Linux infrastructures, identifying potential intrusions multiple times a day while maintaining system performance. Sandfly's comprehensive detection capabilities allow clients to respond swiftly to threats, including advanced persistent threats and other forms of cyberattacks, ensuring robust security without the complexities associated with traditional agent-based systems.

NetRise offers a cloud-based platform dedicated to automated detection and risk management within software supply chains, particularly focusing on firmware vulnerabilities. The company's services provide organizations with enhanced visibility and control over their software assets, allowing for comprehensive analysis and reporting of potential threats. By facilitating continuous risk monitoring, NetRise enables consultants, operators, and analysts to identify and address risks associated with firmware and software dependencies effectively. The platform aims to strengthen the overall security posture of organizations, assisting them in maintaining compliance and safeguarding their digital environments.

SAFE Security, also known as Lucideus Tech Private Limited, is a cyber risk management company headquartered in New Delhi, India. Founded in 2012, it specializes in providing comprehensive information technology risk assessment and digital security services to organizations globally. The company develops a cyber risk quantification and management platform that enables businesses to continuously monitor and respond to cyber threats in real time. SAFE Security's offerings include IT security maturity assessments, governance policy formation, application security, IT infrastructure security, and emergency response services. By establishing a common risk taxonomy, the platform facilitates better communication among stakeholders and shifts the focus of security discussions from tactical projects to strategic value, ultimately helping organizations mitigate cyber risks through prioritized actionable insights.

VulnCheck is a cyber threat intelligence platform focused on helping organizations enhance their security posture against potential attacks. By delivering actionable exploit and vulnerability intelligence, the platform enables businesses to integrate critical information directly into their existing tools and processes. It specializes in predicting potential avenues of attack with speed and accuracy, allowing organizations to prioritize vulnerabilities based on the current threat landscape. This proactive approach facilitates timely and effective responses to emerging threats, ultimately assisting businesses in staying ahead of adversaries.

Boostsecurity.io is a computer software company founded in 2020 and based in Montreal, Quebec. The company focuses on helping software developers identify and address cybersecurity-related issues through its security automation platform. This platform facilitates the early detection and remediation of security vulnerabilities, allowing developers to ship secure software more effectively. Boostsecurity.io's solution features a flexible and customizable policy engine that supports various workflows, rules, and scanners, ultimately enhancing the security of the software supply chain.

Talon Cyber Security specializes in providing cybersecurity solutions tailored for the distributed workforce, addressing emerging threats associated with hybrid work environments. Its innovative technology enhances security controls to accommodate the growing reliance on cloud services and remote operations. Talon Cyber Security offers a unique secure browser that delivers enterprise-grade protection across both managed and unmanaged devices, independent of location, device type, or operating system. This approach not only fortifies cybersecurity but also promotes productivity and flexibility for businesses navigating the complexities of modern work arrangements.

Airgap Networks, established in 2019 and headquartered in Santa Clara, California, specializes in cloud enterprise campus network security. The company's core product is a Zero Trust Isolation Platform, which provides robust protection against ransomware and other cyber threats, even after initial network breaches or in the presence of unpatched vulnerabilities. Airgap's solution can be rapidly deployed without requiring agents, APIs, or significant infrastructure changes. Founded by experienced cybersecurity experts, Airgap's platform is trusted by large enterprises and service providers alike.

Mobile Authentication, Reimagined. Blazingly Fast Phone Verification. APIs for instant, invisible strong authentication.

Talon Cyber Security specializes in providing cybersecurity solutions tailored for the distributed workforce, addressing emerging threats associated with hybrid work environments. Its innovative technology enhances security controls to accommodate the growing reliance on cloud services and remote operations. Talon Cyber Security offers a unique secure browser that delivers enterprise-grade protection across both managed and unmanaged devices, independent of location, device type, or operating system. This approach not only fortifies cybersecurity but also promotes productivity and flexibility for businesses navigating the complexities of modern work arrangements.

Evo Security is a cybersecurity SaaS company that specializes in identity and access management solutions. It offers a multi-factor authentication product called Evo MFA, tailored for managed service providers, managed security service providers, value-added resellers, and distributors. This white-labeled solution enables these partners to serve their small and medium-sized enterprise clients effectively. Evo Security's platform includes features such as multi-cloud authentication, login breach protection, single sign-on, privileged access management, and password management. By employing Evo Security's offerings, businesses can eliminate credential sharing, establish robust administrative permissions, enhance login security for their clients, and meet necessary insurance and compliance requirements.

CyCognito, founded in 2017 and based in Palo Alto, California, specializes in cyber security services with a focus on external cyber risk management. The company offers a cloud-based platform that conducts automated and continuous analysis of an organization's IT ecosystem, simulating the perspective of potential attackers. This approach enables organizations to identify vulnerabilities and prioritize remediation efforts effectively. By leveraging advanced machine learning and natural language processing, CyCognito provides organizations with insights into their security weaknesses, helping them understand their true risks and allocate resources efficiently. The platform aims to bridge cyber risk remediation across departments, enhancing overall security posture and reducing the likelihood of data breaches.

Socure Inc. is a provider of digital identity verification solutions, focusing on real-time identity authentication through its Socure ID+ platform. This predictive analytics platform utilizes artificial intelligence and machine learning to authenticate identities by analyzing a multitude of online and offline data sources, including email, phone numbers, addresses, IP addresses, and social media profiles. Socure's offerings include Aida, an AI-driven bot for validating digital identities, Docv, an omnichannel document verification solution, and Sigma Synthetic Fraud, which tackles synthetic identity fraud. The company addresses the needs of various sectors, including software, consulting, and financial firms, through compliance initiatives such as customer identification programs, know your customer requirements, and anti-money laundering measures. Founded in 2012 and headquartered in New York, Socure has established partnerships with key industry players to enhance its service delivery.

NetRise offers a cloud-based platform dedicated to automated detection and risk management within software supply chains, particularly focusing on firmware vulnerabilities. The company's services provide organizations with enhanced visibility and control over their software assets, allowing for comprehensive analysis and reporting of potential threats. By facilitating continuous risk monitoring, NetRise enables consultants, operators, and analysts to identify and address risks associated with firmware and software dependencies effectively. The platform aims to strengthen the overall security posture of organizations, assisting them in maintaining compliance and safeguarding their digital environments.

Cloudsmith Ltd. is a software-as-a-service company that specializes in secure storage and sharing of software assets, packages, and containers. Founded in 2013 and based in Belfast, United Kingdom, Cloudsmith offers a cloud-native, universal package management solution that supports various formats, including npm, Docker, Maven, PyPI, RubyGems, and Debian. Its platform includes features such as access controls, authentication mechanisms, and integration with identity providers for user management, ensuring the security of packages and repositories. Additionally, Cloudsmith provides tools for discovering and searching artifacts, facilitating easier access for developers to the packages they require. The company's offerings also encompass infrastructure automation development tools and cloud-hosted repositories with features like geo/IP restrictions, historical statistics, and malware scanning, catering to the needs of modern software supply chain management.

Socure Inc. is a provider of digital identity verification solutions, focusing on real-time identity authentication through its Socure ID+ platform. This predictive analytics platform utilizes artificial intelligence and machine learning to authenticate identities by analyzing a multitude of online and offline data sources, including email, phone numbers, addresses, IP addresses, and social media profiles. Socure's offerings include Aida, an AI-driven bot for validating digital identities, Docv, an omnichannel document verification solution, and Sigma Synthetic Fraud, which tackles synthetic identity fraud. The company addresses the needs of various sectors, including software, consulting, and financial firms, through compliance initiatives such as customer identification programs, know your customer requirements, and anti-money laundering measures. Founded in 2012 and headquartered in New York, Socure has established partnerships with key industry players to enhance its service delivery.

Socure Inc. is a provider of digital identity verification solutions, focusing on real-time identity authentication through its Socure ID+ platform. This predictive analytics platform utilizes artificial intelligence and machine learning to authenticate identities by analyzing a multitude of online and offline data sources, including email, phone numbers, addresses, IP addresses, and social media profiles. Socure's offerings include Aida, an AI-driven bot for validating digital identities, Docv, an omnichannel document verification solution, and Sigma Synthetic Fraud, which tackles synthetic identity fraud. The company addresses the needs of various sectors, including software, consulting, and financial firms, through compliance initiatives such as customer identification programs, know your customer requirements, and anti-money laundering measures. Founded in 2012 and headquartered in New York, Socure has established partnerships with key industry players to enhance its service delivery.

CyCognito, founded in 2017 and based in Palo Alto, California, specializes in cyber security services with a focus on external cyber risk management. The company offers a cloud-based platform that conducts automated and continuous analysis of an organization's IT ecosystem, simulating the perspective of potential attackers. This approach enables organizations to identify vulnerabilities and prioritize remediation efforts effectively. By leveraging advanced machine learning and natural language processing, CyCognito provides organizations with insights into their security weaknesses, helping them understand their true risks and allocate resources efficiently. The platform aims to bridge cyber risk remediation across departments, enhancing overall security posture and reducing the likelihood of data breaches.

NS8 Inc. is a provider of a fraud prevention and user experience protection platform, specializing in helping online businesses minimize risk through its comprehensive services. Founded in 2016 and headquartered in Las Vegas, Nevada, with additional offices in Miami Beach and Amsterdam, the company offers NS8 Antifraud, which utilizes machine learning, behavioral analytics, real-time scoring, and global monitoring to identify and mitigate fraudulent activities. The platform provides actionable insights into transaction quality and trustworthiness, enabling businesses to automate their fraud management workflows. It also monitors bot activity and hidden sessions, allowing users to analyze effective traffic sources and tailor content and offers accordingly. NS8 serves various industries, including e-commerce, payment gateways, online merchants, and event ticketing. In October 2020, NS8 Inc. filed for reorganization under Chapter 11 in the U.S. Bankruptcy Court for the District of Delaware.

Bridgecrew, Inc., founded in 2019 and based in San Francisco, California, specializes in cloud security. The company's platform enables developers to codify cloud-security by automating deployment and management of security workflows. This includes providing remediations, guardrails, infrastructure as code templates, collaborative workspaces, community-powered solutions, native workflow automation, and connected analytics. Bridgecrew aims to simplify and make cloud security more accessible, helping development and engineering teams save time and money on ongoing security tasks.

CloudKnox Security Inc. is a cloud security software company based in Sunnyvale, California, founded in 2016. It specializes in a multi-cloud permissions management platform that offers comprehensive visibility and automated management of permissions for cloud infrastructure resources and identities. The platform utilizes patented Activity-Based Authorization technology to continuously monitor and assess risks associated with user activities. It detects and remediates over-permissioned identities, whether human or machine, ensuring that only necessary permissions are granted. Additionally, the software provides insights for tracking risks and allows for the restriction of activities by suspicious users, as well as the creation and editing of reports.

CyCognito, founded in 2017 and based in Palo Alto, California, specializes in cyber security services with a focus on external cyber risk management. The company offers a cloud-based platform that conducts automated and continuous analysis of an organization's IT ecosystem, simulating the perspective of potential attackers. This approach enables organizations to identify vulnerabilities and prioritize remediation efforts effectively. By leveraging advanced machine learning and natural language processing, CyCognito provides organizations with insights into their security weaknesses, helping them understand their true risks and allocate resources efficiently. The platform aims to bridge cyber risk remediation across departments, enhancing overall security posture and reducing the likelihood of data breaches.

Kenna Security, Inc. is a technology company that specializes in vulnerability management and risk intelligence solutions. Founded in 2009 and headquartered in San Francisco, with an additional office in Chicago, Kenna offers a platform that helps organizations prioritize vulnerabilities, assess risks, and automate their analysis. This platform leverages Cyber Risk Context Technology to measure and predict cyber risks, enabling security teams to focus on the most critical issues. Kenna serves a diverse range of sectors, including media, healthcare, telecommunications, financial services, and transportation, both in the United States and internationally. With a customer base that includes many Fortune 100 companies, Kenna's solutions facilitate cross-functional collaboration to proactively address cyber threats and enhance overall security efficacy.

NS8 Inc. is a provider of a fraud prevention and user experience protection platform, specializing in helping online businesses minimize risk through its comprehensive services. Founded in 2016 and headquartered in Las Vegas, Nevada, with additional offices in Miami Beach and Amsterdam, the company offers NS8 Antifraud, which utilizes machine learning, behavioral analytics, real-time scoring, and global monitoring to identify and mitigate fraudulent activities. The platform provides actionable insights into transaction quality and trustworthiness, enabling businesses to automate their fraud management workflows. It also monitors bot activity and hidden sessions, allowing users to analyze effective traffic sources and tailor content and offers accordingly. NS8 serves various industries, including e-commerce, payment gateways, online merchants, and event ticketing. In October 2020, NS8 Inc. filed for reorganization under Chapter 11 in the U.S. Bankruptcy Court for the District of Delaware.

Socure Inc. is a provider of digital identity verification solutions, focusing on real-time identity authentication through its Socure ID+ platform. This predictive analytics platform utilizes artificial intelligence and machine learning to authenticate identities by analyzing a multitude of online and offline data sources, including email, phone numbers, addresses, IP addresses, and social media profiles. Socure's offerings include Aida, an AI-driven bot for validating digital identities, Docv, an omnichannel document verification solution, and Sigma Synthetic Fraud, which tackles synthetic identity fraud. The company addresses the needs of various sectors, including software, consulting, and financial firms, through compliance initiatives such as customer identification programs, know your customer requirements, and anti-money laundering measures. Founded in 2012 and headquartered in New York, Socure has established partnerships with key industry players to enhance its service delivery.

Avigilon Alta specializes in advanced security solutions, particularly in access control systems designed for modern workplaces. The company offers a seamless mobile access control solution that allows users to enter authorized areas by simply waving their smartphones, leveraging patented technology for high reliability and efficiency. Avigilon Alta provides a comprehensive cloud-based platform that includes features such as entry schedule management, multi-site oversight, and integration with third-party applications, ensuring a secure and user-friendly experience. Their innovative solutions also encompass emergency response capabilities, allowing for the remote locking or unlocking of doors and zones during critical situations. Serving a diverse range of industries, including commercial real estate, education, and retail, Avigilon Alta aims to enhance security while simplifying access management for enterprises.

Avigilon Alta specializes in advanced security solutions, particularly in access control systems designed for modern workplaces. The company offers a seamless mobile access control solution that allows users to enter authorized areas by simply waving their smartphones, leveraging patented technology for high reliability and efficiency. Avigilon Alta provides a comprehensive cloud-based platform that includes features such as entry schedule management, multi-site oversight, and integration with third-party applications, ensuring a secure and user-friendly experience. Their innovative solutions also encompass emergency response capabilities, allowing for the remote locking or unlocking of doors and zones during critical situations. Serving a diverse range of industries, including commercial real estate, education, and retail, Avigilon Alta aims to enhance security while simplifying access management for enterprises.

CyCognito, founded in 2017 and based in Palo Alto, California, specializes in cyber security services with a focus on external cyber risk management. The company offers a cloud-based platform that conducts automated and continuous analysis of an organization's IT ecosystem, simulating the perspective of potential attackers. This approach enables organizations to identify vulnerabilities and prioritize remediation efforts effectively. By leveraging advanced machine learning and natural language processing, CyCognito provides organizations with insights into their security weaknesses, helping them understand their true risks and allocate resources efficiently. The platform aims to bridge cyber risk remediation across departments, enhancing overall security posture and reducing the likelihood of data breaches.

Octarine, Inc., based in Sunnyvale, California, specializes in providing security solutions for cloud-native applications. As a subsidiary of VMware, Inc., it enforces a zero trust security model that enables organizations to maintain security and compliance while transitioning to cloud-native environments. Octarine's offerings include the Octarine Controller and Octaguard, which deliver runtime security and comprehensive visibility over workloads across various deployment modes, including containers, virtual machines, cloud, bare metal, and serverless environments. The platform allows organizations to define, enforce, and audit identity-based policies efficiently, protecting workloads from existing threats. By ensuring that each workload is inspected, authenticated, authorized, and encrypted, Octarine safeguards against unauthorized activities and data exfiltration across multiple protocols such as HTTP/HTTPS, Kafka, and Istio.

AccessData Group develops and delivers digital forensics and e-Discovery software solutions for a global clientele including corporations, law enforcement, government agencies, and law firms. Its e-Discovery solutions encompass platforms like Summation and AD eDiscovery, which facilitate legal review, data processing, and case management. The company's digital forensics offerings include Forensic Toolkit, Mobile Phone Examiner Plus (MPE+), nFIELD, AccessData Lab, AD QBlaze, AD Enterprise, and AD Triage, each serving various investigative needs. Additionally, AccessData Group provides services such as data acquisition, preservation, host and network analysis, auditing, monitoring, expert witness testimony, and litigation support. Founded in 1987 and based in Orem, Utah, the company has a significant global presence with offices in Sterling, Virginia; London, United Kingdom; Frankfurt am Main, Germany; and Dubai, United Arab Emirates. AccessData Group is also renowned for its digital forensics training and certification programs.