Upwind Secures $250M at $1.5B Valuation for Cloud Security Platform
▼ Summary
– Despite its current $1.5 billion valuation and major clients, Upwind Security’s journey was marked by significant early uncertainty and self-doubt about its market fit.
– The company’s core innovation is an “inside-out,” runtime security approach that uses internal network and API signals to prioritize real-time threats in active cloud services.
– This approach was born from the founders’ DevOps background at Spot.io, which gave them firsthand insight into the limitations of traditional, external “outside-in” security scans that create noise.
– Upwind faced sales challenges in a crowded market, compelling it to build a broad, integrated platform because security teams were overwhelmed and resistant to new, niche tools.
– Following rapid growth, a recent $250 million Series B round will fund product development, AI security capabilities, and expansion to help developers prevent misconfigurations earlier.
The cloud security landscape is witnessing a significant shift as Upwind Security secures a substantial $250 million in Series B funding, propelling the company to a $1.5 billion valuation. This milestone arrives just four years after its founding and underscores a growing market demand for its distinctive approach to protecting modern cloud infrastructure. While its client roster now includes prominent names like Siemens, Peloton, and Roku, the path to this point was marked by persistent doubt and strategic pivots, according to co-founder and CEO Amiram Shachar.
Reflecting on the early days, Shachar admits the journey was far from certain. “Three years ago, we would spend hours asking ourselves if we were heading in the right direction, and 80% of the time, it felt like we weren’t,” he shared. The core challenge was convincing the market of a new paradigm. The team questioned whether organizations truly needed their solution, if integration would be too complex, and whether there would be customer adoption for a method that moved away from traditional agent-based installations.
Upwind’s philosophy centers on what it terms “runtime” security. This model prioritizes real-time alerts and remediation for active services by analyzing internal signals like network traffic and API requests. Shachar describes this as an “inside-out” methodology, which uses operational context to help security teams distinguish critical, immediate threats from lower-priority issues. This perspective was born not from a traditional security background, but from the team’s prior experience building and selling a cloud compute brokerage.
After that acquisition, Shachar gained firsthand insight into the frustrations of cloud security. He observed that external, agentless scans, while easy to deploy, generated excessive noise and often lacked the crucial context that comes from deeply understanding the infrastructure itself. Security teams, without that internal visibility, would frequently flag non-issues. The Upwind team believed that because they were the ones running cloud environments, they had better insight into how to secure them effectively.
Selling this novel concept, however, proved difficult. Security teams often operate with restrictions on internal software deployment, leading them to default to familiar, external tools. Initial customer conversations were marked by hesitation. Yet, the founders remained convinced of their vision. Shachar argued that the inside-out model is not merely an advanced feature but a necessity for securing next-generation infrastructure, including ephemeral containers, serverless workloads, and interconnected AI agents. Mapping such dynamic environments from the outside is virtually impossible.
Navigating a crowded security market added another layer of complexity. Customers, already overwhelmed by tool sprawl, were reluctant to add yet another point product. This reality forced Upwind’s strategy from the outset. “From the beginning, it was clear that Upwind would need to build a broad, integrated platform,” Shachar stated. The company’s focus on providing a consolidated solution for large, data-intensive organizations with significant cloud investments eventually resonated in the market.
The results speak for themselves. Since its Series A round in 2024, Upwind has reported a staggering 900% year-over-year revenue growth and has doubled its customer base. Its geographical footprint has expanded beyond the U.S., U.K., and Israel into key emerging markets such as Australia, India, Singapore, and Japan.
The new $250 million investment round was led by Bessemer Venture Partners, with participation from Salesforce Ventures and Picture Capital. The capital infusion will accelerate product development and go-to-market initiatives. A key area of investment will be enhancing AI security capabilities within its core platform and extending its preventative controls closer to developers to help stop misconfigurations before they ever reach a production environment.
(Source: TechCrunch)
