Upwind Security

https://www.upwind.io

Upwind is a privately held cloud security company that provides a runtime-first platform designed to secure cloud deployments, configurations, and applications. The company's mission is to secure the cloud for the world by building a leading cloud security platform. Upwind is headquartered in San Francisco, California.

Upwind's core offering is a Cloud-Native Application Protection Platform (CNAPP) that delivers real-time visibility, threat detection, and automated response capabilities for dynamic cloud environments. The platform emphasizes runtime context to prioritize and remediate risks, providing solutions for workload protection, detection and response, vulnerability management, identity security, container security, API security, and AI security.

In January 2026, Upwind raised $250 million in Series B funding, bringing its total funding to $430 million and valuing the company at $1.5 billion, establishing it as a "unicorn" in the cloud security sector. The company, co-founded by CEO Amiram Shachar, CTO Tal Zur, and CRO Lavi Ferdman, has been recognized for its innovative approach, including being named to Fast Company's list of the World's Most Innovative Companies of 2026. Upwind has also expanded its global presence and acquired Nyx Software Security Solutions in April 2025.

Latest updates

Upwind Security Adds Ex-Facebook CSO Sullivan as AI Security Market Intensifies

Event summary

  • Upwind Security, a runtime-first cloud security platform, appointed Joe Sullivan as Strategic Advisor.
  • Sullivan previously served as CSO at Facebook, Uber, and Cloudflare, and was the first federal prosecutor in Silicon Valley focused on cybercrime.
  • Upwind Security achieved 900% year-over-year revenue growth and secured a $250 million Series B funding round led by Bessemer Ventures.
  • The company has raised $430 million since its founding in 2022.

The big picture

The appointment of a high-profile figure like Joe Sullivan underscores the escalating importance of runtime security in an environment increasingly dominated by cloud and AI. Upwind's rapid growth and substantial funding ($430M) position it as a significant player in a market poised for further consolidation, but the company faces the challenge of translating this momentum into sustained leadership amidst evolving threat landscapes and intense competition. Sullivan's experience navigating security at scale across major internet platforms provides valuable insight, but also raises expectations for Upwind's ability to deliver on its promises.

What we're watching

Advisory Impact
Sullivan’s influence on Upwind’s strategy and product direction will be a key indicator of whether the company can effectively translate his experience into tangible market gains.
Market Consolidation
The press release highlights Upwind as a challenger amid industry consolidation; whether it can maintain this position against larger, established players remains to be seen.
AI Adoption
The rapid adoption of AI infrastructure by enterprises will continue to drive demand for runtime security solutions, but also create new and complex attack vectors that Upwind must address.

Upwind's Innovation Recognition Signals Shift in Cloud Security

Event summary

  • Upwind Security was named to Fast Company’s 2026 World’s Most Innovative Companies list.
  • The company has achieved 900% year-over-year revenue growth and 200% year-over-year customer growth.
  • Upwind recently raised $250 million in Series B funding, bringing its total funding to $430 million.
  • Upwind has strategic partnerships with AWS and Microsoft, integrating its runtime security capabilities into their platforms.

The big picture

Upwind’s recognition highlights the growing importance of runtime security as cloud environments become increasingly complex and AI adoption accelerates. The company’s rapid growth and substantial funding underscore a broader industry shift away from traditional, static security models toward dynamic, behavior-based approaches. This validates a significant market opportunity as enterprises grapple with securing modern, ephemeral cloud architectures.

What we're watching

Partnership Dynamics
The depth of Upwind’s integration with AWS and Microsoft will dictate its ability to expand market reach and influence within the major cloud providers’ ecosystems.
Competitive Landscape
The recognition validates Upwind’s runtime-first approach, but increased visibility will likely attract greater scrutiny and competition from established players and emerging startups.
Execution Risk
Scaling globally while maintaining a focus on runtime intelligence will require disciplined execution and potentially necessitate strategic acquisitions to broaden its product portfolio.

Upwind Leverages Nvidia AI for Real-Time LLM Threat Detection

Event summary

  • Upwind Security demonstrated a system capable of detecting malicious LLM prompts with 95% precision and sub-millisecond inference using Nvidia technology.
  • The system utilizes a three-stage architecture: traffic identification (99.88% accuracy), semantic threat detection (94.53% accuracy), and selective validation.
  • Upwind has raised $430 million since its founding in 2022, backed by a consortium of venture capital firms.
  • Gartner predicts over 80% of enterprises will use generative AI APIs, models, or enabled applications in production this year.

The big picture

The rise of generative AI is fundamentally altering application security, shifting the attack surface to natural language prompts. Upwind's solution addresses a critical gap in existing security controls, but its success hinges on demonstrating scalability and maintaining a competitive edge in a rapidly evolving market. The company's backing and prior acquisition history suggest a potential for further strategic moves.

What we're watching

Adoption Rate
The speed at which enterprises adopt Upwind's solution will depend on the demonstrated ability to scale the system without introducing unacceptable latency or cost.
Competitive Landscape
Other cloud security vendors will likely attempt to replicate Upwind’s approach, intensifying competition and potentially eroding margins.
Model Dependence
Upwind’s reliance on Nvidia’s models creates a dependency that could be impacted by future pricing changes or model deprecations.

Upwind Secures Microsoft Partnership, Bolsters Azure Security Footprint

Event summary

  • Upwind Security has partnered with Microsoft to integrate runtime security into Azure workloads, available on the Microsoft Marketplace.
  • The partnership includes co-sell status and eligibility for Azure Consumption Commitment decrement, streamlining procurement for enterprise customers.
  • Upwind has experienced 900% year-over-year revenue growth and 200% logo growth.
  • Upwind has raised $430 million in funding since its founding in 2022.

The big picture

The partnership underscores the growing demand for runtime security in dynamic cloud environments, as highlighted by Gartner's Hype Cycle for Cloud Security. Upwind’s rapid growth and integration with Microsoft’s ecosystem position it to capitalize on this trend, but also increases scrutiny of its ability to scale operations and maintain its technological edge against larger, established competitors. The deal also signals Microsoft’s continued commitment to bolstering its Azure security offerings, a critical factor for enterprise adoption.

What we're watching

Market Adoption
The pace at which Azure customers adopt the integrated Upwind solution will determine the partnership's immediate financial impact and Upwind’s ability to displace existing security vendors.
GenAI Security
The stated expansion to address GenAI workloads signals a strategic focus; success here will depend on Upwind’s ability to adapt its runtime detection to the unique risks of generative AI.
Multi-Cloud Strategy
While the partnership focuses on Azure, Upwind’s multi-cloud approach requires continued investment and differentiation to avoid becoming solely reliant on a single hyperscaler.

Upwind Security Bets Big on APJ Amid Rising Cloud Security Costs

Event summary

  • Upwind Security is significantly expanding its presence in India and across Asia-Pacific and Japan (APJ), including local infrastructure and engineering teams.
  • The company has experienced 200% year-over-year growth in its global customer base and tripled its APJ workforce in the last three months.
  • Organizations in India face average cloud breach costs exceeding ₹220 million, while Australia estimates AUD $86 billion in economic impact from cyber incidents.
  • Upwind has added over 100 new partners in APJ, including strategic partnerships with NVIDIA, Microsoft Azure, and AWS.

The big picture

Upwind's aggressive expansion into APJ reflects the escalating cloud security risks and regulatory pressures facing enterprises in the region. The high breach costs and increasing complexity of hybrid/multi-cloud environments are driving demand for runtime security solutions. This move positions Upwind to capitalize on a rapidly growing market, but also exposes it to the challenges of scaling operations and competing with established players.

What we're watching

Regulatory Headwinds
The effectiveness of Upwind’s strategy will hinge on navigating increasingly stringent data residency and cybersecurity regulations like DPDA and PDPA across APJ.
Execution Risk
Rapid workforce expansion and infrastructure deployment pose execution risks; monitoring integration and operational efficiency will be crucial.
Competitive Landscape
The CNAPP space is becoming crowded; Upwind’s ability to differentiate through its runtime-first approach and partner ecosystem will determine its long-term success.

Upwind Integrates with AWS Security Hub Extended Plan to Bolster Runtime Cloud Security

Event summary

  • Upwind Security has integrated its CNAPP with the Extended plan in AWS Security Hub.
  • The integration aims to provide real-time visibility and reduce alert noise for AWS workloads.
  • Upwind, founded by the team behind Spot.io (acquired by NetApp for $450 million), has raised $430 million since 2022.
  • Waste Management is a customer using Upwind’s platform, reporting a reduction in security alerts and CVEs.

The big picture

The partnership reflects a broader shift in cloud security towards runtime-based detection and automated response, driven by the increasing complexity of modern cloud architectures. AWS’s Security Hub Extended plan is designed to streamline security procurement and deployment, creating a powerful distribution channel for CNAPP vendors like Upwind. This move positions Upwind to capitalize on the growing demand for integrated cloud security solutions, but also highlights the increasing importance of partnerships for specialized security providers.

What we're watching

Vendor Consolidation
The integration signals a trend toward consolidated security tooling within AWS, potentially impacting smaller, standalone security vendors.
Runtime Adoption
The success of Upwind’s runtime-first approach will depend on its ability to demonstrate tangible benefits over traditional, periodic security assessments.
AWS Dependence
Upwind’s reliance on AWS Security Hub Extended Plan creates a dependency that could limit its portability to other cloud environments.

Upwind Secures $250M, Solidifies Runtime Cloud Security Lead

Event summary

  • Upwind Security, a runtime-first cloud security platform, has received $250 million in Series B funding.
  • The company has experienced explosive growth, exceeding 4,000% year-over-year revenue growth in 2024.
  • Latio Tech recognized Upwind as a Runtime Innovator and API Security Innovator in its 2026 Application Security Market Report.
  • Upwind has been consistently recognized by industry analysts including Frost & Sullivan, GigaOm, and QKS Group.

The big picture

Upwind's rapid ascent and recent funding round underscore a shift in cloud security towards runtime-first approaches, prioritizing real-time threat detection and response over traditional posture-based assessments. The $250 million investment signals strong investor confidence in this emerging paradigm, positioning Upwind to capitalize on the growing demand for more dynamic and proactive cloud security solutions. This validates a broader trend of security platforms consolidating functionality and emphasizing operational efficiency.

What we're watching

Market Adoption
Whether Upwind's runtime-first approach will continue to gain traction as cloud security matures and organizations prioritize real-time threat detection.
Competitive Landscape
The extent to which larger, established security vendors adopt or acquire runtime-first capabilities, potentially eroding Upwind's differentiation.
Integration Risk
The challenges of integrating Upwind's platform with existing security tools and workflows across diverse enterprise environments.

Upwind Security Lands $250M Series B, Doubles Down on Runtime Cloud Security

Event summary

  • Upwind Security, a runtime-first cloud security company, raised $250 million in Series B funding, bringing its total funding to $430 million.
  • The round was led by Bessemer Venture Partners, with participation from Salesforce Ventures and Picture Capital.
  • Upwind has achieved 900% year-over-year revenue growth and 200% logo growth since its last funding round in January 2025.
  • The company has expanded its workforce from 150 to over 300 employees and significantly broadened its global footprint.

The big picture

Upwind’s Series B funding underscores the escalating demand for runtime-first cloud security solutions as enterprises grapple with increasingly complex cloud environments and the proliferation of AI-driven applications. The $250 million raise positions Upwind to aggressively expand its platform and market reach, but also intensifies scrutiny of its ability to deliver on its ambitious vision within a rapidly evolving and competitive landscape. The company's focus on runtime security represents a direct challenge to traditional, static security approaches, reflecting a broader industry shift.

What we're watching

Market Adoption
The rapid growth of the CNAPP market, projected to reach $18.79 billion by 2029, will determine if Upwind can maintain its position as a leader and avoid commoditization.
AI Integration
How Upwind’s stated focus on AI security capabilities translates into tangible product differentiation and customer value will be critical for long-term success.
Competitive Landscape
The ongoing consolidation within the cloud security market means Upwind must demonstrate a clear advantage over legacy players and emerging competitors to sustain its growth trajectory.

Upwind Embeds 'Transparent' AI in Cloud Security Platform

Event summary

  • Upwind Security launched 'Choppy AI', integrating AI capabilities into its CNAPP platform.
  • Choppy AI focuses on natural-language interfaces for cloud security tasks, emphasizing transparency and control.
  • The company has raised $180 million since its founding in 2022.
  • Spot.io, founded by Upwind's co-founders, was acquired by NetApp for $450 million.
  • Upwind is backed by a consortium of venture capital firms, including those with NBA connections.

The big picture

The increasing complexity of cloud environments and the limitations of traditional security tools are driving demand for AI-powered solutions. However, the 'black box' nature of many existing AI systems has created a trust deficit. Upwind's Choppy AI attempts to address this by prioritizing transparency and control, positioning itself as a potential leader in a segment increasingly concerned with AI governance and explainability. The $180 million raised suggests significant investor confidence in this approach, but execution remains critical.

What we're watching

Adoption Rate
The success of Choppy AI hinges on existing Upwind customers embracing the new interface and workflows, which will determine its impact on overall platform usage and retention.
Competitive Response
Other CNAPP vendors will likely observe Upwind’s transparency-focused approach and may be compelled to adjust their own AI strategies, potentially accelerating a broader industry shift.
Transparency Standards
The market will scrutinize whether Upwind’s model of transparent AI becomes a de facto standard for cloud security, influencing regulatory expectations and customer demand for explainability.

Upwind Integrates NVIDIA Tech to Secure Growing AI Workloads

Event summary

  • Upwind Security and NVIDIA have deepened their collaboration to secure AI workloads running on NVIDIA’s GPU infrastructure.
  • Upwind is integrating NVIDIA NIM microservices for internal security operations and incorporating NVIDIA Garak for LLM security validation.
  • The partnership aims to deliver enhanced performance, deployment flexibility, scalability, data privacy, and tailored engineering for AI environments.
  • Upwind has raised $180 million in funding since its founding in 2022.
  • Spot.io, a previous venture of Upwind’s founders, was acquired by NetApp for $450 million.

The big picture

The collaboration reflects the escalating need for specialized security solutions tailored to the unique vulnerabilities of AI infrastructure. As enterprises increasingly rely on AI, the risk of sophisticated cyberattacks targeting these workloads is growing, creating a significant market opportunity for companies like Upwind that can provide real-time protection and validation. NVIDIA’s move to partner with Upwind signals a recognition of this trend and a commitment to securing its own AI ecosystem.

What we're watching

Market Adoption
The success of this partnership hinges on the broader adoption of runtime security solutions as AI infrastructure expands, and the willingness of enterprises to integrate these tools into their workflows.
Competitive Landscape
How Upwind’s integration of NVIDIA’s technologies will differentiate it from other cloud security providers, particularly those offering AI-specific security solutions, will be a key indicator of its market position.
Garak Integration
The effectiveness of NVIDIA Garak’s LLM security validation layer, and Upwind’s ability to seamlessly integrate it, will determine its impact on mitigating prompt injection and other model manipulation threats.
CID: 48