In today’s hyper-connected world, security teams are drowning in a sea of tools, and the consequences of a single misstep can be catastrophic. But what if there was a way to predict and prevent these breakdowns before they happen? Enter Fig Security, a game-changing startup emerging from stealth with a whopping $38 million in funding, ready to tackle the chaos of modern security stacks.
For enterprises, data isn’t just about profits; it’s about understanding the intricate web of their tech ecosystem. Imagine a symphony orchestra where each musician plays a different tune – that’s the modern enterprise tech stack. Dozens of tools, each with its own quirks, working (or breaking) in harmony. And this is the part most people miss: analyzing these data streams isn’t just about fixing what’s broken; it’s about predicting where the cracks will form.
But here’s where it gets controversial: security teams can’t afford to be reactive. Waiting for an alarm to sound is like trusting a silent watchdog. The modern security stack is a labyrinth, where a tiny tweak in one tool can trigger a domino effect, leaving vulnerabilities wide open. Fig Security, founded by veterans of Israel’s elite cyber units 8200 and Mamram, steps in as the cartographer of this labyrinth. Their mission? To monitor the security stack, ensuring every rule, mitigation tool, and detection mechanism stays on course, even as changes ripple through the system.
Here’s how they do it: Fig’s technology maps data flows from their origin, through pipelines and lakes, to security orchestration platforms. It’s like having a real-time blueprint of your security infrastructure. When a change threatens detection or response capabilities, Fig alerts the team instantly. But it doesn’t stop there – the platform lets companies simulate fixes and patches before deployment, like a virtual sandbox for security.
Gal Shafir, Fig’s CEO, puts it this way: ‘We don’t just follow the data; we start with your detections – the single source of truth. Then, we back-trace to ensure the data triggers the right response. If something’s off, we flag it in real-time.’ This approach, Shafir explains, involves sampling data as it flows through tools, creating a ‘data lineage’ that predicts how upstream changes could break downstream security.
Fig integrates seamlessly with data links and SIEM systems, making it compatible with virtually any security environment. This versatility is key, especially as enterprises grapple with the AI revolution. C-suites are under pressure to harness AI for cost savings and efficiency, but the influx of tools has left security teams overwhelmed. What’s the right defense strategy when hackers are wielding AI? Fig’s founders saw this dilemma firsthand during their time at Google Cloud Security.
Shafir recalls: ‘CISOs were unanimous: ‘AI is cool, but how can I trust it if I don’t trust my current detections?’ This question sparked Fig’s creation. With large enterprise customers already on board and plans to triple their team, Fig is poised to redefine security.
But here’s the thought-provoking question: As AI becomes the new frontier in cybersecurity, are we building on a foundation of trust, or are we just adding another layer of complexity? Share your thoughts below – do you think Fig’s approach is the solution, or is there a bigger issue at play?
Fig’s funding includes investments from Team8, Ten Eleven Ventures, and security heavyweights like Doug Merritt and Rene Bonvanie. With plans to expand in North America, Fig is just getting started.
Ram Iyer, TechCrunch’s financial and tech reporter, brings you this exclusive story. Reach out to Ram at ram.iyer@techcrunch.com or explore more of his work here.
