Cloud security shifts to ‘dev’ not ‘ops’, says Snyk

Hear from CIOs, CTOs and other C-level and senior executives on data and AI strategies at the Future of Work Summit on January 12, 2022. Learn more

Snyk, a provider of security platforms for developers, is bringing an approach to cloud security that sets the company apart from others in the space, and there are signs that the market is moving towards the fast-growing company, according to Guy Podjarny, co-founder and president from pike.

In an email statement to VentureBeat, Podjarny responded to a question about the emergence of a new category in cloud security: the cloud-native application protection platform, or CNAPP. A CNAPP offering brings together many different tools, including tools for securing cloud infrastructure, cloud identities and permissions, virtual machines, containers, and serverless functionality.

Vendors and analysts have touted this unification of tools as a benefit to businesses as it reduces the complexity associated with securing cloud environments and applications. Some CNAPP vendors now also offer tools for proactive vulnerability identification during app development – an area where Snyk has been a pioneer and a leading player.

Instead of CNAPP, Snyk says it provides “CNAS” or cloud-native application security. The platform aims to provide a “developer-first” approach to cloud security, with tools built to be known by developers. The company ultimately aims to embody a developer tools company rather than a security company – with its code scanning tools meant to be woven into the development process to ensure application security from the get-go.

This, according to Podjarny, makes Snyk different from vendors in the CNAPP space, including established cybersecurity vendors and some of the best-funded security startups today.

“While CNAPP players focus on operations – observing deployed and running systems to identify and respond to threats – Snyk is embedding in dev and code, modeling the app to identify issues early and prevent their deployment” Podjarny said in the statement to VentureBeat. “This approach, which we call CNAS, brings the ‘shift left’ approach that AppSec has developed to cloud security because it is much more efficient and cost-effective.”

“There will always be a need for both Dev and Ops approaches to CNAPP, but over time the emphasis will shift from the latter to the former,” Podjarny said.

Fast growth

Snyk has been lagging behind after expanding its base of paying customers in March to 1,300 currently from 700. Snyk’s prominent customers include Google, Salesforce, Atlassian and MongoDB. And the company expects to close 2021 with faster revenue growth than 2020 — something that often isn’t possible as companies grow in size.

The company’s growth is the result of an increasing focus in the company on ensuring the security of software development. According to a recent report from machine identity management provider Venafi, nearly all senior IT executives – 97% – agree that software building processes are not secure enough.

So the industry is in the process of transitioning to DevSecOps, an approach that aligns development, security, and operations. It’s a major headwind for Snyk, and also in part a response to the availability of enterprise-grade developer security tools like the one the company offers.

In September, Snyk announced a $530 million Series F financing round that values ​​the company at $8.5 billion. That followed the $300 million Series E round that Snyk raised in March.

Founded in London and Tel Aviv in 2015, the Boston-based company has raised a total of $775 million to date.


VentureBeat’s mission is to be a digital city square for tech decision makers to learn about transformative technology and transactions. Our site provides essential information on data technologies and strategies to guide you in leading your organizations. We invite you to join our community to access:

  • up-to-date information on the topics that interest you
  • our newsletters
  • gated thought-leader content and discounted entry to our valued events, such as: Transform 2021: Learn more
  • network features and more


Leave a Comment