Episode #9 - oak9 with Aakash Shah
In this episode, we speak with Aakash Shah, Co-Founder & CTO of oak9 - a company with DevX in its DNA. oak9 assesses every change to a company's application architecture against customized security blueprints to identify security design gaps, provide monitoring for drift, and offering actionable advice to remediate. All of this is achieved by evaluating Infrastructure-as-Code (IaC) and providing immediate feedback in the IDE.
In modern cloud-native architectures, this security entry point is so important as the landscape of features and services that are deployed across team boundaries, and interaction with one another through various access policies, events, and communication methods are making it exceptionally difficult to infer behaviors of an application or transaction. Learn how Oak9 is tackling this complexity by leveraging deep knowledge of IaC (e.g. Terraform) and CSP capabilities.
oak9 is a Chicago-based cybersecurity startup founded in 2019 by Raj Datta, Om Vyas, and Aakash Shah, offering an Infrastructure-as-Code security platform that continuously assesses every change to a company's application architecture against customized Security-as-Code blueprints to identify security and compliance design gaps, provide monitoring for drift, and offering actionable advice to remediate. To achieve this, their software SaaS platform integrates into a company’s development pipeline and sends alerts via mediums familiar todevelopers.
To date, they have raised $5.9M in seed funding from notable investors including Menlo Ventures and Hyde Park Angels. Currently, oak9 support 20-plus compliance standards out-of-the-box including HIPAA, HITRUST, FCA, PCI, SOC2, and ISO27001, and the platform has extensibility such that security engineers augment security blueprints to provide additional guard rails.