Wallarm has raised $10.0M in total across 2 funding rounds.
Wallarm's investors include Alven, F3A, ISAI, Kurma Partners, Partech Ventures, Altair Capital Management.
Wallarm is an API and web-application security company that provides an AI-driven platform for API discovery, continuous testing, and real‑time protection (WAAP/WAAP+AI agent security) for cloud‑native, microservices, and hybrid environments.[6][8]
High-Level Overview
Wallarm’s mission is to secure modern applications and APIs by automating discovery, testing, and runtime protection so teams can safely ship cloud‑native software at scale.[6][7] Wallarm’s investment/backing profile includes venture investors such as Toba Capital, Y Combinator, Partech, and Runa Capital, which has supported the company’s growth and product development.[1][6] The company’s core product set combines API discovery & inventory, risk assessment and testing, and real‑time attack prevention (WAAP) powered by machine learning and multi‑stage parsing to reduce false positives and block sophisticated attacks.[5][7] Wallarm primarily serves enterprises and SaaS/cloud providers with extensive API surfaces and developer/DevSecOps teams that need CI/CD integration and automated security across multi‑cloud and Kubernetes deployments.[2][4] Recent materials emphasize momentum around API Attack Surface Management (AASM), AI agent security, and 24/7 API SOC offerings, signaling product expansion beyond basic WAF capabilities into comprehensive API security lifecycle tooling.[2][3][6]
Origin Story
Wallarm was founded in 2013 and is headquartered in San Francisco, California, with roots in solving WAF and API security gaps experienced by penetration testing and security service customers.[1][2] The company’s founders emerged from a background of application security and managed WAF services where they observed existing WAFs failed to protect APIs, prompting a platform that automates vulnerability discovery and generates application‑specific protections.[2] Early traction came from demonstrating ML‑based detection and automated testing capabilities; Wallarm showed an early AI demo in 2013 and subsequently gained enterprise customers and placement on growth rankings such as Inc.’s list of fast‑growing private companies.[1]
Core Differentiators
Role in the Broader Tech Landscape
Wallarm is riding the macro trend of API‑first architectures, microservices, and cloud migration that have increased the attack surface and shifted threats from web pages to APIs and machine agents, including emerging AI agent traffic.[7][3] The timing matters because enterprises are accelerating CI/CD adoption and need security that integrates into development pipelines and runtime environments rather than bolted‑on perimeter controls.[4][2] Market forces in Wallarm’s favor include growing regulatory and compliance pressure around data protection, the rapid increase in API‑centric breaches, and demand for automated, low‑noise defenses that scale with dynamic cloud environments.[7][4] By combining discovery, testing, and blocking, Wallarm influences the ecosystem by pushing security teams toward integrated WAAP/AASM solutions and encouraging closer DevSecOps collaboration to reduce time‑to‑remediation.[2][7]
Quick Take & Future Outlook
Wallarm is positioned to grow as organizations prioritize API attack surface visibility and prevention; near‑term product drivers likely include deeper AI‑agent protections, richer AASM capabilities, and expanded managed API SOC services to serve customers that need continuous external discovery and mitigation.[3][2][6] Key trends that will shape Wallarm’s trajectory are broader adoption of AI in applications (increasing complex traffic patterns), tighter cloud native observability, and consolidation in the API security market where unified platforms that cover discovery, testing, and runtime protection will gain share.[3][4][7] If Wallarm continues to reduce false positives, extend CI/CD automation, and scale its managed detection offerings, it can further entrench itself with enterprises needing end‑to‑end API and AppSec coverage.[5][2][6]
If you want, I can: provide a one‑page investor‑style snapshot, compare Wallarm to specific competitors (e.g., Salt Security, Imperva, Noname Security), or extract specific technical claims and supporting documentation from Wallarm’s product pages and docs.[6][5][9]
Wallarm has raised $10.0M across 2 funding rounds. Most recently, it raised $8.0M Series A in October 2018.
| Date | Round | Lead Investors | Other Investors |
|---|---|---|---|
| Oct 1, 2018 | $8.0M Series A | Alven, F3A, ISAI, Kurma Partners, Partech Ventures | |
| Dec 1, 2016 | $2.0M Seed | Altair Capital Management, Alven, F3A, ISAI, Kurma Partners, Partech Ventures |
