Automation platform startup Vigilant Ops Inc. has raised $2 million in seed funding from DataTribe Capital LLC to expand the capabilities of its InSight platform across critical infrastructure industries.

Founded in 2019, Vigilant Ops provides solutions for the generation, management and vulnerability monitoring of software bills of materials or SBOMs. The company’s platform is used by regulated organizations that buy and build software, with Vigilant Ops simplifying the SBOM journey.

The Vigilant Ops InSight platform was designed to support growing cybersecurity requirements, as those seen in the U.S. Food and Drug Administration’s PreMarket Guidance. Pitched as being like “your own special forces unit that can be deployed to take on your critical cybersecurity issues,” the platform is claimed to be the “world’s only dedicated SBOM automation and distribution solution.”

Users can automate the SBOM generation of any of their devices at any time during the software development lifecycle and also generate SBOMs for devices in the field. Certified compliant documentation is generated at each step, with complete workflow and audit trails, with users able to export data to quality management systems.

On the security side, the InSight platform allows users to quickly alert targeted end users about the availability of a patch specific to their deployed device, with real-time analysis and search and matching algorithms uncovering vulnerabilities constantly.

The most recent release of the InSight Platform now includes automated import of various SBOM formats, supporting industry standards like CycloneDX and SPDX. The platform’s vulnerability dispositioning process also enables justification responses, following prescribed industry standards and mitigation scoring, which can be included in Vulnerability Exploitability eXchange reports.

The company has been primarily focused on the healthcare sector but is seeking to expand into energy, telecom, manufacturing, information technology, financial services and communications industries.

“Software security is the next domain in cyber and government policies are increasingly placing significant development regulations that require software manufacturers to be responsible for the cybersecurity of their products,” said Tony Surak, chief marketing officer for DataTribe. “Vigilant Ops is meeting an urgent market need, automating the production of SBOMs to provide a system of record for software buyers to manage SBOMs and bolster resiliency through identifying and mitigating component vulnerabilities.”

Image: VigilantOps