Technology

>

Legal, Compliance, Privacy, and Regulated Ops

Upwind Security

Roadmap & Position in Cloud Security

Runtime-powered cloud security platform using eBPF sensors and AI agents for detection and response.

Cloud Security

|

Series A

|

Valuation:

~$900M

Company Overview

Upwind is a cloud-native application protection platform (CNAPP) that uses runtime context from eBPF sensors to prioritize real risks and drive AI-powered response. Customers span SaaS, fintech, e-commerce, and mid-market to enterprise cloud-native organizations running on AWS, GCP, and Azure.

What They're Building

The company's public product roadmap & what they're committed to building.

Agentic AI Security Workflows

Autonomous agents that detect, investigate, and remediate cloud threats end-to-end without analyst intervention.

AI-Powered SAST

Code scanning integrated with runtime signals to prioritize vulnerabilities actually reachable in production.

Windows Workload Coverage

A kernel-level sensor for Windows servers and endpoints, extending beyond Linux container environments.

Deep Research Group

Premium threat intelligence and AI security research, productized as a differentiated service tier.

API and Data Security

Expanded coverage for API risk and data-layer threat detection, correlated with the runtime asset graph.

Latest Intelligence

Zeitgeist tracks private signals to determine where the company is heading strategically.

Upwind Security: First APAC Beachhead And Quiet Federal Prep
May 11, 2026
|
Confidence:
Medium

New Intel: Upwind Security is building FedRAMP-ready release processes and opening a Japan technical presence, both ahead of any public announcement. Series A cloud security companies almost never do federal prep this early, so someone there sees a specific opening.

Upwind Security: Extending Runtime Sensor Into Windows And Autonomous Response
May 11, 2026
|
Confidence:
High

New Intel: Upwind Security is building Windows kernel-level sensors and autonomous AI response agents, pushing into territory traditionally owned by EDR vendors like CrowdStrike. Most CNAPP vendors stay in their swim lane; Upwind is choosing not to.

Upwind Security: Rebranding From CNAPP Vendor To AI-Native Security Company
May 11, 2026
|
Confidence:
High

New Intel: Upwind Security is building brand, AI platform, and threat research leadership in parallel. That often comes before either a major round or a category-defining product launch.

Add To Your Portfolio

Founder and Key Execs

Amiram Shachar

CEO and Co-founder (ex-Spot.io)

Liran Polak

CTO and Co-founder (ex-Spot.io)

Lanir Shacham

Co-founder (ex-Spot.io)

Founder Force Multiplier

Amiram Shachar, Liran Polak, and Lanir Shacham previously built and sold Spot.io to NetApp for a reported $450M, which gives them a full cycle of cloud-native infrastructure product experience plus enterprise sales muscle they can replay. Repeat founders in cloud infrastructure are unusual; this trio gets to skip several years of customer-discovery work.

Funding History

2023 | Seed and Series A, $80M combined, led by Greylock and Cyberstarts
2024 | Series A extension, $100M, led by Craft Ventures

Competitors

Wiz:

Agentless-first CNAPP incumbent with massive distribution; differentiates on breadth and Microsoft relationship, not runtime depth.

Orca Security:

Agentless SideScanning leader; competes on zero-deployment posture scanning but lacks live runtime telemetry.

Sweet Security:

Israeli runtime-focused competitor with a similar eBPF thesis; smaller footprint and narrower platform scope.

Upwind Security

's Moat:

A proprietary eBPF-based runtime sensor architecture paired with a Neo4j-backed asset relationship graph gives Upwind live execution context that agentless competitors cannot replicate without an equivalent sensor investment that takes years to deploy at scale.

How They're Leveraging AI

Runtime Cloud Risk Prioritization

Runtime-aware cloud security uses eBPF telemetry, asset graphs, and AI investigation to prioritize active risk and automate response.

AI Use Overview:

Upwind combines eBPF runtime sensors with asset-graph reasoning in Neo4j, reachability analysis, AI-driven investigation, and runtime-aware SAST to prioritize the small set of risks that are actually exploitable in production rather than the broader vulnerability noise.

More Similar Companies

Harvey AI

Generative AI platform automating legal workflows for law firms and in-house counsel

A category-defining wedge into a $1T legal services market with deep enterprise penetration, OpenAI alignment, and workflow lock-in that incumbents cannot easily replicate.

XBOW

Autonomous AI agents that continuously pentest web apps and validate exploits end to end.

Agentic pentesting is one of the few security categories where LLMs plausibly replace expensive human labor, and XBOW has the team and early proof points to own it.

SolveAI

Natural-language platform for building production-grade enterprise apps without code.

Forward-deployed delivery produces proprietary pattern libraries that feed back into the product, a data advantage pure self-serve competitors cannot replicate without the same embedded model.

Horizon3.ai

Autonomous penetration testing platform that finds and verifies exploitable attack paths

Autonomous pentesting compounds as attack surfaces grow, and federal traction combined with MSSP distribution give Horizon3 a defensible wedge against legacy breach-and-attack simulation vendors.

Back To All Companies >