At startup.security, we’re proud to introduce ourselves, and to share what we’ve been working on for the past couple of years.

We are a managed security service provider, and our experts help funded startups secure their applications, infrastructure, and data. We know from experience that security can be an afterthought as you juggle the responsibilities of building a product and a company, but we believe that a solid security posture and program are fundamental. That’s where we come in.

We provide:

  • Bootstrap Security Programs & Rapid Security Reviews
  • Threat Modeling & Attack Surface Discovery
  • Managed Bug Bounty & VDP
  • Vulnerability Remediation
  • Penetration Testing
  • Audit Support (SOC2, ISO, etc)

We retain Principals who specialize in web3 and web2 cybersecurity. We embed deeply within your company, identify issues, work with you to prioritize what matters, and then we remediate vulnerabilities without slowing your roadmap down. We know what strong security programs look like, and we've helped build them for clients like Alchemy and Tender Finance.

If you’re an early-stage startup with an overworked or overlooked security team, little visibility into your attack surfaces, and no time to implement tools like a SIEM, IDP, MDM, etc. we can help.

Reach out to chat with one of our Principals through this blog, or visit startup.security.