Oligo Security’s mission is to revolutionize application security by providing runtime visibility into library and function-level activity. The company aims to solve the challenges of open-source software vulnerabilities by identifying and prioritizing threats based on their actual exploitability. This approach is designed to reduce the overwhelming number of alerts that security teams often face, allowing them to focus on genuine risks. Oligo Security’s goal is to help developers stay focused on creating features rather than fixing non-exploitable vulnerabilities.
The company has established a strong market reputation, powering the security programs for Fortune 500 companies across various sectors, including financial services and healthcare. Oligo Security is recognized for its innovative approach to application security, which provides deep inspection at runtime. This capability enables security teams to pinpoint precisely where code vulnerabilities exist and whether they are actively being used. The platform is also designed to continuously monitor application components to detect and stop malicious behavior before it can lead to a security breach.
Offerings, Capabilities, and Integrations
Oligo Security provides a runtime application security and observability platform designed to protect applications from open-source vulnerabilities. Its core capability lies in providing deep visibility into application behavior at the library and function level by leveraging eBPF technology. This approach allows Oligo Security to monitor applications in production without significant performance overhead. The platform’s key differentiator is its focus on runtime context to identify which vulnerabilities are actually exploitable, thereby reducing alert fatigue for security teams by a significant margin. Oligo Security’s platform is designed for rapid deployment and integrates into existing DevSecOps workflows. This focus on real-time, contextual security provides a competitive edge by enabling organizations to prioritize critical threats, detect zero-day vulnerabilities, and protect against malicious code in their software supply chain.
Products and Services
Oligo Security’s offerings are centered around its application security platform, which delivers two primary solutions:
- Runtime Vulnerability Management: This solution, also referred to as Oligo Focus, helps development teams prioritize remediation efforts by identifying which vulnerable open-source libraries and functions are actively being used in runtime. By focusing on exploitable vulnerabilities, it aims to reduce the number of security alerts, allowing developers to concentrate on feature development rather than chasing non-critical issues.
- Cloud Application Detection & Response (ADR): This solution, also known as Oligo ADR, provides real-time threat detection by monitoring the behavior of individual libraries within an application. It can identify and block anomalous or malicious activity, including from undisclosed zero-day vulnerabilities, by establishing a baseline of normal library behavior and alerting on deviations.
The underlying technology for these solutions is the Oligo Sensor, which utilizes patented innovations based on eBPF for deep observability with minimal performance impact. The platform also provides capabilities for generating dynamic Software Bill of Materials (SBOM) and Vulnerability Exploitability eXchange (VEX) artifacts to aid in compliance and risk assessment.
Target Customers
Oligo Security’s target customers are organizations that develop and use modern applications, particularly those leveraging open-source software. This includes companies of various sizes, from startups to Fortune 100 enterprises. The primary users within these organizations are:
- Application Security (AppSec) Teams: These teams benefit from the platform’s ability to reduce alert noise and prioritize vulnerabilities based on actual risk, increasing their productivity and effectiveness.
- Developers (DevOps/DevSecOps): Developers can use Oligo Security’s insights to focus their remediation efforts on vulnerabilities that pose a genuine threat, integrating security more efficiently into their workflows.
- Security Operations Center (SOC) Teams: SOCs can leverage the platform’s real-time attack detection and response capabilities to identify and mitigate threats within the application layer, including those that might be missed by traditional tools.
Customers across various industries, including finance, healthcare, and e-commerce, utilize Oligo Security to enhance their security posture, ensure compliance, and protect their software supply chain.
Cloud Integrations and Marketplaces
Oligo Security has a presence on the AWS Marketplace and is an AWS Partner. It does not have listings on the Microsoft Azure Marketplace or the Google Cloud Marketplace.
- AWS Marketplace: Oligo Security offers its “Oligo – AppSec with Runtime Context and Library-Level Least Privilege” solution on the AWS Marketplace. This product is designed to provide precise open-source security by leveraging runtime application context, which helps to reduce vulnerability alerts by focusing on libraries that are actively running. It is aimed at helping developers and security teams prioritize vulnerabilities that are genuinely exploitable. The solution uses eBPF technology for real-time observability into application behavior at the library and function level with minimal performance overhead.
Oligo Security also offers the Oligo MCP (Model Context Protocol), a server that allows for seamless integration between the Oligo platform and various development tools. This facilitates the connection of running workloads back to the source code. Integrations include AI assistants and IDEs such as Cursor, VSCode, and OpenAI Codex.
Key People
- Co-founder & CEO: Nadav Czerninski
- Co-founder & CTO: Gal Elbaz
- Co-founder & CPO: Avshalom Hilu
- EVP Customer Success: Alberto Rodrigues
- Director of Solution Engineering: Mic McCully
- Chief Revenue Officer: B. C.
- Head Of Global Channels And Alliances: S. H.
- Head Of Communications: J. M.
- Director of Research and Technology, CTO Office: Guy Kaplan
Key Facts
- Headquarters Location: Tel Aviv, Israel.
- Number of Employees: 51-100.
- Annual Revenue: $100K-$5.0M.
- Parent Company: None.
- Subsidiary Companies: None.
- Publicly Listed: No.
Analyst Recognition
Based on publicly available information, Oligo Security is not currently featured in the primary technology categories or market reports from Gartner, Forrester, IDC, and Everest Group.
