We started this company to make cloud resources more secure *and* make developers' lives easier. In a DevOps world, developers have too many responsibilities, including writing code, testing code, deploying their services, responding to outages, provisioning cloud services, and keeping their services secure. With so much on their plate, developers need tools that give them best practices in these areas without thinking about them.
Resourcely is tackling this problem specifically related to cloud services, which are powerful but can be complex to set up correctly. For example, setting up a microservice usually requires a friendly DNS name and a TLS certificate. This requires, in turn, detailed knowledge of DNS zones, naming standards, and record types. Not to mention selecting cryptographic cipher suites and parameters, generating and managing sensitive private keys, and keeping certificates refreshed and deployed correctly.
DNS records and certificates are just two examples of many resources developers wrestle with to get services into production. And without proper tooling to support this work, security often suffers. Many of today’s cloud security solutions scan cloud resources to identify configuration issues only after they have already been introduced. While scanning is essential in the security lifecycle, it shouldn’t be the *only* strategy. Developers should have access to self-service systems that create secure-by-default resources. These systems should be quick and straightforward to use, and they should enforce security policies and best practices without developers needing to be aware of them.
Cloud resource configuration is a complex but generic problem. We have spoken with dozens of companies that have implemented one-off systems that create and govern cloud resources, and we have built some ourselves. But companies keep reinventing the wheel, and they shouldn’t have to. Resourcely brings the best features we have learned from the collective wisdom of these companies and makes it available as a service.
Resourcely offers a simple and powerful policy-as-code interface that teams like platform, DevOps, and security use to set requirements. We provide customizable collections of standards and policies to meet security, compliance, and reliability requirements. Developers use Resourcely to create resources in a way that meets guidelines without having to be aware that policies exist - simplifying one of the most complex parts of developers’ jobs.
From our time leading security programs at Netflix, Databricks, and Robinhood, we have seen the fantastic results of empowering your developers. We are thrilled to have the support of the world's best investors and advisors (see the list below) to pursue this mission.
If your organization is interested in speeding up developers while reducing the operational load on central teams, we would love to speak with you! We are also hiring for several engineering roles; check our jobs page or connect with us to find out more.
Onward! - Travis and Aladdin
Leaders
- Jason Chan (Former VP of Security, Netflix)
- Michael Coates (Former CISO, Twitter)
- Leif Dreizler (Manager of Security Features, Twilio Segment)
- Adam Gross (Investor, Former CEO, Heroku)
- Mark Hillick (Head of Security, Brex)
- Ely Kahn (VP Cloud Security, SentinelOne)
- Julia Knecht (Manager of Security Platforms Engineering, Netflix)
- Srinath Kuruvadi (Head of Cloud Security, Netflix)
- Philip Martin (CSO, Coinbase)
- David Rook (Director of Security, Riot Games)
- Talha Tariq (CSO, Hashicorp)
- Anna Westelius (Director, Security Engineering, Netflix)
- Bryant Zadegan
- Charles Zedlewski (Chief Product Officer, Temporal)
Founders
- Tom Alcock (Code Red)
- Christian Almenar (CEO, Monad Security)
- Dylan Ayrey (CEO, Truffle Security)
- Varun Badhwar (CEO, Endor Labs)
- Rob Fletcher (CPO, DevZero)
- Savin Goyal (CTO, Outerbounds)
- Eynat Guez (CEO, Papaya Global)
- Mike Haydon (Code Red)
- Spencer Kimball (CEO, Cockroach Labs)
- Jason Martin (CEO, Permiso)
- Paul Nguyen (CEO, Permiso)
- Harshil Parikh (CEO, Tromzo)
- Debosmit Ray (CEO, DevZero)
- Rob Witoff (Unit 410)
Subject Matter Experts
- Scott Behrens
- Clint Gibler (Creator, tl;dr sec Newsletter)
- Jake Guerre (Enterprise Account Executive, Truffle Security)
- Ryan McGeehan
- Chris Post
- Mike Ruth (Staff Security Engineer, Brex)
- Patrick Thomas (Senior Security Partner, Netflix)
- Jen Yip & David King (Founders You Should Know)
Advisors
- William Bengtson (Senior Director Security Engineering, Hashicorp)
- Gordon Chaffee (Former Senior Director of Engineering, Google)
- Adam Cotenoff (Principal Security Engineer, Cloud and Infrastructure, Block)
- Ryland Goldstein (Head of Product, Temporal)
- Jesse Kriss (Senior Software Engineer, Netflix)
- Leticia Lourenco (Senior Frontend Engineer, Netflix)
- Caleb Sima (CSO, Robinhood)
- Josh Snyder
- Seth Vargo
Funds
- Farooq Abbasi (Preface Ventures)
- Joseph Abebe (Query Capital)
- Tim Chen (Essence)
- Nkechi Iregbulem (Collective Scout Fund)
VC Firms
- Andreessen Horowitz: Matt Bornstein, Joel de la Garza, Zane Lackey
- Felicis: Aydin Senkut, Jake Storm