See for yourself – run a scan on your code right now

ShiftLeft™ Inc., an innovator in application-specific cloud security, today announced it has been honored in the third annual DevOps Dozen Awards Program. The company has been named a 2017 finalist in the Best New DevOps Solutions Company awards category.

According to, as a finalist ShiftLeft is recognized as having “…exploded on the scene and really made an impact.” Thousands of votes were cast nominating companies, and the sixtop vote recipients per category were named as finalists. One winner in each category will be selected by the judges from the list of finalists, with winners announced in early January.

“The DevOps Dozen acknowledges the best-of-the-best – the leaders and innovators in the DevOps community,” said Alan Shimel, editor-in-chief, “We are proud to present the finalists for the DevOps Dozen 2017 as selected by you our readers and community. We appreciate everyone who voted in the nominations phase of this year’s DevOps Dozen. Good luck and congratulations to all of the finalists. Just making it to the finals round is quite an accomplishment.”

ShiftLeft delivers the industry’s first fully automated SECaaS for cloud software that understands the security needs of each version of each application, and creates custom security and threat detection for it. With ShiftLeft, organizations can now secure their cloud applications as part of their continuous integration pipeline, rather than merely reacting to threats discovered in production. ShiftLeft identifies vulnerabilities in source code, enabling organizations to either fix them or protect against them in production using ShiftLeft’s Microagent.

“While ShiftLeft has received industry accolades and recognition in the industry before, this finalist honor from is especially gratifying because it is the result of nominations from the DevOps community itself,” said Manish Gupta, ShiftLeft CEO and co-founder. “ShiftLeft is unique in how it serves DevOps personnel because it injects threat detection into the very continuous integration/continuous deployment processes they are working on. Now DevOps can automate runtime protection for code weaknesses not yet fixed or not even identified yet, without compromising the pace of innovation.”

With ShiftLeft, DevOps teams can track compliance requirements for regulations such as PCI-DSS, HIPAA, and the General Data Protection Regulation (GDPR) for every release; for example, identifying violations such as when a credit card verification code is stored after authorization. Teams can leverage ShiftLeft’s pre-defined policies, or define custom dictionaries that suit their business requirements and development practices, to track the flow of sensitive data throughout their infrastructure.

About ShiftLeft

ShiftLeft™ Inc., is an innovator in application-specific cloud security, delivering the industry’s first fully automated Security-as-a-Service (SECaaS) solution that understands the unique security needs of each version of each application and creates custom security and threat detection for it. With ShiftLeft, DevOps can make threat detection part of their continuous integration/continuous deployment (CI/CD) process. ShiftLeft’s approach allows teams to both protect their applications immediately and enhance the security posture of their code. The company was founded by a team with extensive backgrounds in security and cloud infrastructure who were early innovators of technologies such as sandbox, nextgen Firewall, nextgen Electronic Payment network and Fraud Modeling, and several open source initiatives. Headquartered in Santa Clara, Calif., ShiftLeft is backed by Bain Capital Ventures and Mayfield. For more information, see

About ShiftLeft

ShiftLeft empowers developers and AppSec teams to dramatically reduce risk by quickly finding and fixing the vulnerabilities most likely to reach their applications and ignoring reported vulnerabilities that pose little risk. Industry-leading accuracy allows developers to focus on security fixes that matter and improve code velocity while enabling AppSec engineers to shift security left.

A unified code security platform, ShiftLeft CORE scans for attack context across custom code, APIs, OSS, containers, internal microservices, and first-party business logic by combining results of the company’s and Intelligent Software Composition Analysis (SCA). Using its unique graph database that combines code attributes and analyzes actual attack paths based on real application architecture, ShiftLeft then provides detailed guidance on risk remediation within existing development workflows and tooling. Teams that use ShiftLeft ship more secure code, faster. Backed by SYN Ventures, Bain Capital Ventures, Blackstone, Mayfield, Thomvest Ventures, and SineWave Ventures, ShiftLeft is based in Santa Clara, California. For information, visit:


See for yourself – run a scan on your code right now