Upwind Raises $250M to Enhance CNAPP with AI and Data Security Solutions

Upwind, a cloud security startup led by a former NetApp executive, has successfully raised $250 million to develop a CNAPP platform designed to address a wider array of security risks. The financing, spearheaded by Bessemer Venture Partners, is expected to enhance the company’s capabilities in vulnerability management, Cloud Security Posture Management (CSPM), and cloud-data rights (CDR), according to co-founder and CEO Amiram Shachar.

This round of funding will allow Upwind to evolve from a runtime-based security solution to an integrated platform that tackles challenges such as misconfiguration and data exposure. Shachar emphasized the importance of this transition, stating, “We realized we’re building something way bigger,” indicating a shift towards a holistic approach in addressing enterprise-level security needs.

Founded in 2022, Upwind has quickly garnered attention, employing 337 people and accumulating a total of $430 million in external funding, which includes a $100 million Series A round in December 2024 led by Craft Ventures. The company secured a $1.5 billion valuation during its Series B funding, positioning itself as a formidable competitor in the enterprise security landscape.

With successful deployments at major enterprises like Waste Management and Carvana, Upwind underscored its capacity for rapid scaling, initially aiming to raise $150 million before closing at $250 million due to overwhelming investor interest. Shachar noted the process as organic, driven by the enthusiasm from potential investors.

In contrast to other companies that treat CNAPP simply as a collection of features, Upwind approaches it as a unified fabric that integrates runtime data, configuration, vulnerability, identity, and application-layer data. This comprehensive methodology aims to create predictive and precise security alerts, a critical advancement in the domain of cloud security.

Utilizing advanced eBPF-based sensors and serverless tracers, Upwind can solidify its CSPM strategy by integrating attack surface management capabilities, allowing the simulation of external attack scenarios to identify exposed resources and internal configuration risks. By reimagining vulnerability management to incorporate runtime data, Upwind aims to pioneer auto-remediation techniques as part of the continuous integration and development cycles.

The company is placing a strong emphasis on extending its focus beyond traditional cloud security to encompass AI security, API protection, and data security. By building its own modules and forming strategic partnerships with firms like Chainguard and Cyera, Upwind aims to rapidly enhance its service offerings while acquiring new capabilities through recent acquisitions.

In a landscape populated by established competitors like CrowdStrike, Palo Alto Networks, and Wiz, Upwind seeks to differentiate itself by addressing the underlying cloud infrastructure challenges that contribute to security vulnerabilities. As the firm expands globally, it aims to secure enterprise clients that not only validate its model but also serve as a significant revenue driver. Shachar emphasized the necessity of CNAPP as an indispensable component of enterprise security protocols, particularly as the company continues to raise its profile amid increasing competition.