Oneleet Raises $33M to Simplify Security Compliance for Businesses
Growing up, Bryan Onel had a knack for ethical hacking, a hobby he later turned into a career. After studying AI, he spent years performing penetration tests for numerous companies. What he discovered was quite alarming: many companies, despite passing security checks, were surprisingly easy to breach. It seemed like security was either effective but cumbersome, or painless but ultimately useless.
This realization led Onel to create Oneleet, a security compliance platform designed to bridge this gap. Teaming up with his wife, Ora, and friend Erik Vogelzang, they launched Oneleet in 2022, aiming to make security certifications easier to obtain while genuinely improving a company's security posture.
The problem, as Onel saw it, was that existing compliance platforms often focused on evidence collection. Companies would simply upload data, pay a fee, and receive a certificate, creating a false sense of security. "It's compliance theater," Onel argued, "You're certified on paper, but still vulnerable."
Oneleet takes a different approach. Its platform integrates a suite of security tools – penetration testing, code scanning, cloud data security, and security training – offering a more comprehensive view of a company's defenses. By integrating these tools, Oneleet aims to save clients time and eliminate the blind spots that come with managing fragmented systems. I think this is where Oneleet can shine, offering an integrated solution, and that's something many companies desperately need.
To further validate its security, Oneleet partners with independent auditors for formal certification reviews. This comprehensive approach seems promising, and investors agree.
Funding and Future Plans
Recently, Oneleet announced a $33 million Series A funding round led by Dawn Capital. Onel described the fundraising process as "straightforward," highlighting the instant connection he felt with Dawn Capital due to their deep understanding of the security and compliance landscape. Other notable investors include Y Combinator, Dropbox co-founder Arash Ferdowsi, and former Snowflake and ServiceNow chief executive Frank Slootman.
With this fresh capital, Oneleet plans to expand its engineering team, enhance its AI capabilities, and reach more customers. The ultimate goal is to eliminate "security theater" and provide companies with effective defenses against cyberattacks. Given the rising sophistication and automation of cybercrime, this mission is more critical than ever.
Onel acknowledges the double-edged sword of AI in cybersecurity. While Oneleet leverages AI for threat modeling and policy drafting, it also recognizes the potential for misuse, such as generating fake documentation. To prevent this, Oneleet uses humans to verify the AI output. It's a very smart move, and it shows a commitment to security.
Ultimately, Onel envisions a future where "good security should be invisible." Companies should focus on building great products, not on constantly worrying about security. With its integrated platform and commitment to genuine security, Oneleet aims to make this vision a reality.
Source: TechCrunch