Upwind Security, founded in 2022, is a cloud security company built around a runtime-powered platform that uses eBPF sensors to collect real-time data from cloud infrastructure. The platform covers a broad set of security domains - including Cloud Security Posture Management (CSPM), Data Security Posture Management (DSPM), Cloud Workload Protection Platform (CWPP), Cloud Detection and Response (CDR), API security, vulnerability management, identity security, and container security - consolidating them under a single, runtime-informed view.
The platform's core approach is what the company calls "inside-out security": rather than working purely from static configurations or build-time snapshots, Upwind derives intelligence from live runtime behaviour and bridges it back to build-time context. This allows engineering and security teams to distinguish active threats from theoretical vulnerabilities, with the company claiming a 95% reduction in security noise and threat response times ten times faster than conventional methods. The platform is said to be trusted by hundreds of enterprises worldwide.
Upwind was founded by the team behind Spot.io, a cloud infrastructure optimisation company that was acquired by NetApp. The company's platform is designed to improve the productivity of developers, security engineers, and DevOps teams by surfacing only the risks that matter in the context of what is actually running in production.