Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

8/30/2016
01:00 PM
Sara Peters
Sara Peters
Slideshows
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Meet Some Of The Emerging Israeli Cybersecurity Firms

Many are borne out of the entrepreneurial spirit of the Israel Defense Force's Cyber Intelligence Unit 8200. Could any other nation keep up?
Previous
1 of 38
Next

If it seems to you like a hot new cybersecurity company springs out of Israel every week, you're not far off. Israel is now the world's second-largest exporter of cybersecurity products and services--second only to the US--with exports that grew from $3 billion to $6 billion in just a few years. The secret to its success: military experience. While the technology varies, many if not most of the newest companies have one thing in common: they were founded by veterans of the Israel Defense Force's (IDF) elite cyberintelligence Unit 8200.

"Last year, there were 16 Israeli companies on the Cybersecurity 500 list of the world's hottest and most innovative cybersecurity companies. This year there are 26, and we are expecting more in 2017," says Steve Morgan, founder and CEO at Cybersecurity Ventures. "VC firms and corporate investors have put around a half-billion dollars into Israel cybersecurity startups over the past few years."

Israel's main cybersecurity market is the US, according to Morgan. Many have offices, even corporate headquarters, in the US.

"With regards to Silicon Valley, that is a favorite spot for Israeli cyber firms to set up U.S. offices due to its proximity to [venture capital] firms who invest into cybersecurity startups," says Morgan. "Sand Hill Road is the Wall Street of cyber-funding and the Israeli company founders are smart enough to know the value of being there."

Regardless of where corporate HQ is, most of these companies' R&D operations remain firmly in Israel.

"Israel is the place where you can hire people who 'get' the problem," says Lior Div, CEO and co-founder of Israeli start-up Cybereason. "They add value almost from day 1." 

Why do they "get it"? Military experience.

Div says the secret to the recent boom in Israeli cybersecurity companies is a combination of both a change in the market and the nature of Israel and Unit 8200, which he linked together. Div himself won an IDF Medal of Honor for outstanding achievements as a commander of a cybersecurity team in the 8200.

Div says the market changed in 2010 when Stuxnet awoke people to what cyberattacks could truly achieve. "It's kind of a war. Some people say when I use the word 'war' that it's too much. If you really understand what's going on out there, it's not too much.'"

"You needed people with a different mindset," he says. "People who were actually creating the problem, if I may." In other words, cyberdefense experts who have offensive hacking skills as well.  

Representatives from several other Israel-based companies say military experience -- and Unit 8200 specifically -- in a post-Stuxnet age have played a significant role in the boom of Israeli start-ups, as well as other attributes and skillsets.

Maya Schirmann of DeepInstinct mentions the support of earlier giants in the industry that were founded in Check Point, founded by three ex-8200 members, and CyberArk. (In fact, one of Check Point's co-founders, Shlomo Kramer, has been on a spree, co-founding or funding several of the newest companies to come out of the country as well.) 

Schirmann and Guy Nizan, co-founder of IntSights, both note that the innovation is a function of necessity. Nizan says "our country is under continuous cyberattacks that force us to invest and develop new and innovative technologies to protect ourselves."

Here is a rundown of 37 cybersecurity companies that have sprung out of Israel in just the past four years.

 

Sara Peters is Senior Editor at Dark Reading and formerly the editor-in-chief of Enterprise Efficiency. Prior that she was senior editor for the Computer Security Institute, writing and speaking about virtualization, identity management, cybersecurity law, and a myriad ... View Full Bio
 

Recommended Reading:

Previous
1 of 38
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
whalexander13
50%
50%
whalexander13,
User Rank: Author
9/8/2016 | 10:30:36 AM
Cybersecurity and the U.S. miltary
Do we see the same link between the military and cybersecurity comapnies in the U.S.? If not, why?
whalexander13
50%
50%
whalexander13,
User Rank: Author
9/8/2016 | 10:29:13 AM
Military and Cybersecurity in the U.S.
The link between the military and Israeli cybersecurity firms is fascinating. Do we see the same link the United States? If not, why?
chibo
50%
50%
chibo,
User Rank: Apprentice
9/6/2016 | 4:01:16 PM
Re: No surprise
Nice list .. I know couple of the founders. Worth checking also our company www.cyber-observer.com which is bringing a new simple way to the CISO to manage their cyber eco-system .. Haim Chibotero Director of professional services
JulietteRizkallah
50%
50%
JulietteRizkallah,
User Rank: Ninja
8/31/2016 | 2:23:29 PM
No surprise
If you have worked for or with an Israeli security company, you will not be surprised by the number of Cybersecurity firms emerging annually from Israel.  With a country under constant attack, Israelis have master the ability to use all skills to defend themselves and have been the first one to embrace cyberdefense - and offense-.  Many founders bring their military training to their new venture, but the level of innovation is just extraordinary in a country that never finds itself complacent no matter what level they achieve.
NSA Appoints Rob Joyce as Cyber Director
Dark Reading Staff 1/15/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: I like the old version of Google assistant much better.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-8567
PUBLISHED: 2021-01-21
Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods.
CVE-2020-8568
PUBLISHED: 2021-01-21
Kubernetes Secrets Store CSI Driver versions v0.0.15 and v0.0.16 allow an attacker who can modify a SecretProviderClassPodStatus/Status resource the ability to write content to the host filesystem and sync file contents to Kubernetes Secrets. This includes paths under var/lib/kubelet/pods that conta...
CVE-2020-8569
PUBLISHED: 2021-01-21
Kubernetes CSI snapshot-controller prior to v2.1.3 and v3.0.2 could panic when processing a VolumeSnapshot custom resource when: - The VolumeSnapshot referenced a non-existing PersistentVolumeClaim and the VolumeSnapshot did not reference any VolumeSnapshotClass. - The snapshot-controller crashes, ...
CVE-2020-8570
PUBLISHED: 2021-01-21
Kubernetes Java client libraries in version 10.0.0 and versions prior to 9.0.1 allow writes to paths outside of the current directory when copying multiple files from a remote pod which sends a maliciously crafted archive. This can potentially overwrite any files on the system of the process executi...
CVE-2020-8554
PUBLISHED: 2021-01-21
Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status (which is considered a privileged operation and should not typicall...