30. Obsidian Security

Company: Obsidian Security

Founder: Glenn Chisholm

Website: https://www.obsidiansecurity.com/

 

 

About Obsidian Security

 

Obsidian Security was co-founded in California in 2017 by (amongst others) current Chief Product Officer Glenn Chisholm. Prior to Obsidian he was the CTO at Cylance and directed the strategic product direction for the company, while leading the research and dev teams.

Obsidian was formed with one simple guiding principle: To solve the unaddressed blind spot of SaaS Security. SaaS applications provide the tools employees need to succeed, holding the most business-critical information as a result. If those tools become unavailable or that data is jeopardised, there is a detrimental impact on the organisation. In 2024, this came into sharp focus for organisations all over the world following SaaS-associated breaches at household names such as Ticketmaster, and where traditional solutions fell short of a credible remediation.

Since their inception, Obsidian have been laser-focused on making the impact of SaaS breaches a thing of the past for our customers. While the challenges related to that mission have continued to evolve, Obsidian have proudly stayed one step ahead and continue to offer the industry’s most comprehensive and powerful SaaS defence solution. By deploying their technology, Obsidian customers have a platform which can both operate independently, and integrate seamlessly with existing cybersecurity providers to defend against the following use cases:

-Manage Excessive Privileges in SaaS

-Prevent SaaS Configuration Drift

-Achieve SaaS Compliance

-Stop Token Compromise

-Protect Against SaaS Spear Phishing

-Detect Threats Pre-Exfiltration

-Remove Stale Integrations

-Manage and Block Shadow SaaS

-Govern App-to-App Data Movement

Obsidian has recently turned their attention to EMEA establishing its EMEA CIO Advisory Board and a partnership with NORMA ( The Norwegian Maritime Cyber Resilience Centre). Even more recently, Obsidian has launched increased focus and investment in the Germany region in October to protect critical SaaS applications for organisations all across the region, and have launched a brand-new strategic global partnership with Crowdstrike’s Falcon next-gen SIEM, adding to their network of existing partners which includes Salesforce, Google Cloud, ServiceNow, AWS and DataBricks.

In addition to technology which places them on the cutting edge of SaaS Security, Obsidian also works on an annual SaaS Threat Landscape report, which is informed by true positive data points aggregated from across our customer base, as well as hundreds of engagements with incident response partners who leveraged our platform to investigate and address breaches that spread to SaaS over the previous 12 months. The 2024 version is currently in development, and the 2023 report discovered:

-10 times more successful SaaS breaches were identified over a 30-day period year over year

-93.1% of SaaS breaches are direct account takeovers with no prior endpoint compromise

-27.6% of SaaS security incidents involve credential or session token interception by an adversary in the middle

This places Obsidian not only on the cutting edge of cybersecurity technology, but also on the cutting edge of cybersecurity research.

 

Check out what TechRound can do for your business: SEO, PR, HR Software, Payroll Software, IT, VoIP.