“We selected ‘Pynt’ as a result of it’s quick, memorable, and displays our love for builders and an excellent beer,” Pynt co-founder and CEO Tzvika Shneider informed me after I requested him about how the corporate acquired its title. “As we are saying: ‘A Pynt a day retains your CISO away…’”
Pynt hopes to do that by serving to builders and security professionals extra simply — and mechanically — take a look at their API security. The Tel Aviv-based firm at present introduced that it has raised a $6 million seed funding spherical led by early stage fund Joule Ventures, with participation from Dallas VC and Honeystone VC.
Along with Shneider, the corporate’s co-founders embrace CTO Ori Goldberg, CSO Golan Yosef and CPO Ofer Hakimi. Collectively, this identical group beforehand constructed Harman’s automotive cybersecurity resolution.
With cybersecurity professionals in brief provide, Pynt goals to automate API security testing by integrating with instruments like Postman and Newman, which many groups already use to check their inside and exterior APIs at present. Certainly, Postman CEO and co-founder Abhinav Asthana is an angel investor in Pynt.
Pynt’s customers can entry the service from the Postman app or as a Newman command line wrapper. The service can take a group’s present purposeful exams after which construct its security exams round that. By default, it may take a look at for the most typical OWASP vulnerabilities, masking frequent points like consumer knowledge leakage to different customers, SQL injections, native file entry, and ignored authentication tokens, for instance.
“API security is high of thoughts for security professionals and enterprise stakeholders alike, and for good cause. Placing up an API to your software and knowledge is like opening up doorways to your fort. These doorways must be each safe by design and well-guarded with the ‘door makers’ and ‘guards’ sharing the duty”, stated Shneider.
Picture Credit: Pynt
He additionally famous that since Pynt is conscious of all the APIs that an organization is utilizing and exposing, it may additionally present groups with extra visibility into their total security posture. “With Pynt, you’re not solely figuring out vulnerabilities early on but in addition geared up to proactively deal with them all through your API’s journey,” he stated. “It’s all about securing your APIs whereas providing you with the instruments and assist to confidently handle your security journey, proper from the center of growth.”
A variety of Fortune 500 corporations are already utilizing Pynt’s service and the 10-person firm plans to make use of the brand new funding to, as Shneider put it, proceed its work “on a self-serve platform that ‘magically’ finds the security points and fixes them mechanically.”
“Pynt’s distinctive method to securing APIs pre-production is the subsequent logical step for the rising variety of enterprises trying to embrace ‘shift left’ greatest practices, stated Brian Rosenzweig, founding associate at Joule Ventures. “This Pynt group has an distinctive mixture of expertise, technical acumen, and imaginative and prescient and is poised to make a big dent within the API Safety market.”
