We only take on 4 clients per month. Join our April cohort. 2 spots left.
Conversation
Highlights
Welcome to another episode of Category Visionaries — the show that explores GTM stories from tech’s most innovative B2B founders. In today’s episode, we’re speaking with David Brumley, CEO of ForAllSecure, an autonomous security testing platform that has raised $38 million.
- David’s journey from a high school dropout to a cybersecurity expert emphasizes the transformative power of education and resilience. His early career at Stanford, including an incident where he had to shut down Google’s Stanford.edu domain due to a hack, showcases the pivotal moments that shaped his path.
- The origin of ForAllSecure traces back to David’s research at Carnegie Mellon University, focused on automating the process of finding software vulnerabilities. This work led to the development of the Mayhem system, a pivotal advancement in cybersecurity technology.
- The Cyber Grand Challenge, organized by DARPA, was a turning point for ForAllSecure. Winning the challenge with a system that could autonomously find and patch software vulnerabilities demonstrated the potential of their technology and directly contributed to the company’s founding.
- A shift towards Product-Led Growth (PLG) marks a strategic move for ForAllSecure. Transitioning from traditional sales strategies to a model that emphasizes product utility and customer-driven growth reflects a broader trend in the tech industry towards more transparent and accessible solutions.
- The significance of educating the market on the new category of autonomous security testing. David’s efforts to redefine market categories and his critique of traditional analyst categories highlight the importance of clear communication and education in the adoption of innovative technologies.
- ForAllSecure’s future vision includes expanding their autonomous security testing technology to comprehensively protect software across the globe. The aim is not just to detect vulnerabilities but to fully automate the cycle of patching and verification, thus significantly enhancing software security.
Actionable
Takeaways
Embrace Non-Traditional Paths:
David’s journey shows that unconventional backgrounds can lead to significant innovation in tech. Encourage diversity of experience in your team to foster unique problem-solving approaches.
Leverage University Research for Startup Ideas:
The origins of ForAllSecure in academic research underscore the value of university projects as springboards for startup ideas, especially in deeply technical fields like cybersecurity.
Adopt a Product-Led Growth Strategy:
ForAllSecure’s shift towards PLG highlights its effectiveness in the tech industry. Focus on building a product that sells itself through its utility, enhancing both user acquisition and expansion.
Educate Your Market:
David’s approach to redefining market categories and educating analysts and customers alike emphasizes the importance of clear communication about your product's value proposition and the new categories it may create.
Automate to Scale:
The vision for ForAllSecure to fully automate the cycle of finding and patching software vulnerabilities exemplifies how automation can be a game-changer for scaling solutions in complex fields like cybersecurity. Invest in technologies that automate critical, yet repetitive tasks to enhance efficiency and effectiveness.
Recommended Founder
Interviews
Paul Lewis
Founder and CEO of Calamu
Paul Lewis, CEO of Calamu: $20 Million Raised to Build the Cyber Storage Category
John Milburn
CEO of Clear Skye
John Milburn, CEO of Clear Skye: More Than $20 Million Raised to Build the Future of Identity and Access Governance
Michael Assraf
CEO & Co-Founder of Vicarius
Michael Assraf, CEO of Vicarius: $29 Million Raised to Build the Future of Vulnerability Prioritization
Austin Ogilvie
Founder of Thoropass
Austin Ogilvie, Founder of Thoropass: $98 Million Raised to Power the Future of Continuous Compliance
Danny Lopez
CEO of Glasswall
Danny Lopez CEO of Glasswall: $60+ Million Raised to Make the Content Disarm and Reconstruction (CDR) Category Mainstream
Philippe Humeau
CEO of CrowdSec
Philippe Humeau, CEO of CrowdSec: $21 Million Raised to Build the Future of Cyber Threat Intelligence
Jag Lamba
Founder and CEO of Certa
Jag Lamba, Founder and CEO of Certa: $52 Million Raised to Build the Future of Third-Party Management
Stephen de Vries
CEO and Co-Founder of IriusRisk
Stephen de Vries, CEO and Co-Founder of IriusRisk: $40 Million Raised to Build the Future of Threat Modeling
Mollie Breen
CEO and Co-Founder of Perygee
Mollie Breen, CEO and Co-Founder of Perygee: $6.4 Million Raised to Build the Future of IT/OT Security
Neil Serebryany
CEO and Co-Founder of CalypsoAI
Neil Serebryany, CEO & Co-Founder of CalypsoAI: $38 Million Raised to Power the Future of AI Security
Arjun Bhatnagar
CEO & Co-Founder of Cloaked
Arjun Bhatnagar, CEO of Cloaked: $25 Million Raised to Build the Future of Data Privacy
David Etue
CEO of Nisos
David Etue, CEO of Nisos: $33 Million Raised to Build the Future of Managed Intelligence
Austin Gadient
CTO & Co-Founder of Vali Cyber
Austin Gadient, CTO & Co-Founder of Vali Cyber: $15 Million Raised to Build the Future of Linux Security
Dave Mor
CEO and Co-Founder of OneLayer
Dave Mor, CEO and Co-Founder of OneLayer: $15 Million Raised to Protect Private Cellular Networks
Jason Martin
Co-Founder and Co-CEO of Permiso Security
Jason Martin, Co-Founder and Co-CEO of Permiso Security: $10 Million Raised to Build the Future of Cloud Security
Justin Beals
CEO, Co-Founder of Strike Graph
Justin Beals, CEO of Strike Graph: $12 Million Raised to Build the Future of Automated Security and Compliance
Josh Shaul
CEO of Allure Security
Josh Shaul, CEO of Allure Security: $6 Million Raised to Help Businesses Win the Battle Against Online Scammers
Scott McCrady
CEO of SolCyber
Scott McCrady, CEO of SolCyber: $20 Million Raised to Build the Future of Managed Security
Tiffany Ricks
CEO and Founder of HacWare
Tiffany Ricks, CEO and Founder of HacWare: $2.6 Million Raised to Build the Future of Security Awareness
Ryan Lasmaili
CEO & Co-Founder of Vaultree
Ryan Lasmaili, CEO of Vaultree: $16 Million Raised to Build the World’s First Fully Functional Data-in-Use Encryption
Peter Prizio Jr
CEO of SnapAttack
Peter Prizio Jr, CEO of SnapAttack: $8 Million Raised to Power the Future of Threat Management
Christian Almenar
CEO & Co-Founder of Monad
Christian Almenar, CEO of Monad: $19 Million Raised to Solve the Cybersecurity Big Data Problem
Ryan Schonfeld
Founder & CEO of Hivewatch
Ryan Schonfeld, CEO of Hivewatch: $25 Million Raised to Build the OS of Physical Security
Spencer Thompson
CEO and Co-Founder of Prelude
Spencer Thompson, CEO and Co-Founder of Prelude: Over $30 Million Raised to Build the Future of Continuous Security Testing
Pukar Hamal
CEO and Founder of SecurityPal
Pukar Hamal, CEO and Founder of SecurityPal: $21 Million Raised to Power the Future of Customer Assurance
Stijn Vande Casteele
Founder of Sweepatic
Stijn Vande Casteele, Founder of Sweepatic: $4.4 Million Raised to Build the Future of External Attack Surface Management
Kyle Hanslovan
CEO & Co-Founder of Huntress
Kyle Hanslovan, CEO of Huntress: $160 Million Raised to Build the Future of Managed Security
Sivan Tehila
Founder and CEO of Onyxia
Sivan Tehila, Founder and CEO of Onyxia: $5 Million Raised to Build the Future of Cybersecurity Performance Management
Arie Zilberstein
CEO and Co-Founder of Gem Security
Arie Zilberstein, CEO and Co-Founder of Gem Security: $34 Million Raised to Power the Future of Cloud Detection and Response
Tom Jermoluk
CEO of Beyond Identity
Tom “TJ” Jermoluk, CEO of Beyond Identity: $200 Million Raised to Build the Future of Multi-Factor Authentication
Paul Valente
CEO and Co-Founder of VISO Trust
Paul Valente, CEO and Co-Founder of VISO Trust: $17 Million Raised to Build the Future of Third-Party Cyber Risk Management
Marina Segal
CEO and Co-Founder of Tamnoon
Marina Segal, CEO & Co-Founder of Tamnoon: Over $5 Million Raised to Build the Future of Cloud Security