DryRun Security raises $8.7M to AI-driven Application Security

DryRun Security, founded in 2023 by a startup in Austin, is developing AI-driven solutions to revolutionize how development and security teams address application security. The seed funding of $8.7 million recently received marks a milestone for the company on its way toward streamlining and enhancing AppSec processes.

About the Company

DryRun Security was founded by industry veterans James Wickett and Ken Johnson, who bring deep experience in application security and development. The company’s flagship product is its Contextual Security Analysis (CSA) platform, designed to integrate seamlessly with existing development workflows, particularly within GitHub environments. By leveraging artificial intelligence, DryRun Security provides real-time, context-aware insights into code changes, enabling teams to identify and mitigate security risks efficiently.

Read also: Doti AI Raises $7M to Transform Enterprise Data Access

Funding Details

The $8.7 million seed funding round was co-led by LiveOak Ventures and Work-Bench, with additional participation from Cannage Capital. This investment reflects strong confidence in DryRun Security’s innovative approach to application security and its potential to address pressing challenges faced by development and security teams.

Strategic Objectives

With the infusion of capital, DryRun Security aims to:

• Enhance AI Capabilities: Invest in the development of advanced artificial intelligence features to improve the platform’s ability to understand and process complex code changes, delivering more accurate and contextually relevant security insights.
• Expand the Team: Grow the engineering department to accelerate product development and innovation, and strengthen the go-to-market team to broaden market reach and customer engagement.
• Introduce Natural Language Code Policies (NLCP): Develop and launch NLCP to allow AppSec teams to define and enforce security policies using plain, conversational language, simplifying policy management and reducing the reliance on complex scripting.

Read also: Axoflow Secures $7 Million to Enhance Security Data Curation

Innovative Approach: Contextual Security Analysis (CSA)

DryRun Security’s CSA platform represents a paradigm shift in application security by focusing on contextual analysis rather than traditional pattern matching. The platform evaluates code changes across multiple dimensions, including:

• Static Context: Analyzing the code’s structure and syntax to identify potential vulnerabilities.
• Change Context: Assessing the nature and scope of modifications to determine their impact on overall security.
• Application Context: Considering the application’s environment and usage patterns to provide relevant security recommendations.

By integrating these aspects, CSA delivers comprehensive and actionable insights, enabling teams to address security concerns proactively.

Natural Language Code Policies (NLCP)

A standout feature in DryRun Security’s offering is the introduction of Natural Language Code Policies. This functionality empowers AppSec teams to create and manage security policies using everyday language, eliminating the need for intricate scripting. 

NLCP integrates seamlessly into developers’ workflows, allowing for real-time policy enforcement and compliance monitoring. This innovation not only reduces the complexity associated with traditional policy management but also ensures that security measures are consistently applied throughout the development process.

Read also: Matchory Secures €6M to enhance its AI-driven supplier discovery

Leadership Perspective

James Wickett, CEO and Co-Founder of DryRun Security, emphasizes the importance of integrating security into the development pipeline without disrupting productivity. He notes that developers inherently care about security and quality, but often lack the tools that align with their workflows. DryRun Security aims to bridge this gap by providing solutions that are both effective and developer-friendly.

Investor Confidence

The participation of prominent investors such as LiveOak Ventures, Work-Bench, and Cannage Capital underscores a strong belief in DryRun Security’s vision and technological capabilities. Creighton Hicks, Partner at LiveOak Ventures, stated, “DryRun Security is a true leap forward in application security, enabling application security teams to identify code risk in a way that previously wasn’t possible.” This sentiment reflects the broader industry recognition of the need for innovative solutions in the AppSec domain.

Read also: iMotorbike Secures $10M to Accelerate Regional Expansion

Impact on Application Security

DryRun Security’s approach addresses several critical challenges in the current application security landscape:

• Scalability: By automating context-aware security analysis, the platform can handle the increasing volume and complexity of code changes in modern development environments.
• Developer Engagement: Integrating security tools directly into developers’ existing workflows fosters a culture of shared responsibility for security, enhancing collaboration between development and security teams.
• Risk Mitigation: Proactively identifying and addressing security risks during the development process reduces the likelihood of vulnerabilities being exploited in production, thereby safeguarding organizational assets and reputation.

Future Outlook

With the secured funding, DryRun Security is poised to accelerate its product development and market expansion efforts. The company plans to introduce additional features that enhance user experience and integrate with a broader range of development tools and platforms. By continuously innovating, DryRun Security aims to set new standards in application security, ensuring that organizations can develop and deploy software with confidence

Summary

Austin-based startup DryRun Security has successfully raised $8.7 million in seed funding to advance its AI-native application security platform. The investment, led by LiveOak Ventures and Work-Bench, with participation from Cannage Capital, will support the development of innovative features like Natural Language Code Policies (NLCP) and expand the company’s engineering and go-to-market teams.