# BlueFlag Security

> BlueFlag Security is a Sunnyvale, California cybersecurity company building an identity-centric security and governance platform for the software development lifecycle (SDLC). Rather than scanning code for vulnerabilities, BlueFlag watches the identities and tools behind the code - developers, service accounts, bots, and increasingly the AI coding assistants and autonomous agents that now write, test, and deploy software. Founded in 2024 by former CloudKnox and Symantec operators Raj Mallempati and Ken Schneider, the company applies AI/ML-based 'Identity Intelligence' to detect risky behavior, enforce least privilege, and govern AI agents across CI/CD pipelines. In March 2026 it announced a $28 million Series A and 300% year-over-year revenue growth.

- **Founded:** 2024
- **Headquarters:** Sunnyvale, California, United States
- **Founders:** Raj Mallempati (Co-Founder & CEO), Ken Schneider (Co-Founder & CTO)
- **Team size:** ~36 employees
- **Products:** Manage Developer Entitlements, Detect Risky Behavior (Developer Behavioral Risk Analysis), Govern AI Agents (AI Agent Governance), Secure Your Toolchain, Activity Intelligence Graph
- **Notable:** Raised $28 million in total funding by March 2026, including a $16.5M Series A round, Reported 300% year-over-year revenue growth in 2025, Grew Fortune 500 enterprise customers 5x in 2025

## Products & services

- **Manage Developer Entitlements** — Unified visibility into permissions across developers, service accounts, bots, and AI agents. Identifies over-privileged identities, enforces least privilege through just-in-time access, and automates credential reviews and revocation.
- **Detect Risky Behavior (Developer Behavioral Risk Analysis)** — Surfaces dangerous activity patterns across human and non-human identities - behavioral anomalies, unusual access, mass repository cloning outside working hours, privilege escalation, and 'toxic interactions' that are benign alone but dangerous in combination.
- **Govern AI Agents (AI Agent Governance)** — Discovers and monitors AI coding assistants like Copilot and Cursor plus fully autonomous agents across the SDLC, traces AI-generated code back to human owners, detects shadow AI, and requires human approval before high-risk actions reach production.
- **Secure Your Toolchain** — Continuously monitors development tools and CI/CD pipelines, detects misconfigurations and policy violations, flags compliance gaps, and provides guided remediation.
- **Activity Intelligence Graph** — Core technology that correlates identity, behavior, and code context using AI/ML analytics - correlation, normalization, baselining, anomaly detection, and toxic interaction analysis - across 21+ integrations including GitHub, GitLab, Jenkins, Okta, Slack, and Splunk.

## Achievements

- Raised $28 million in total funding by March 2026, including a $16.5M Series A round
- Reported 300% year-over-year revenue growth in 2025
- Grew Fortune 500 enterprise customers 5x in 2025
- Launched AI Agent Governance and Developer Behavioral Risk Analysis (March 2026)
- Backed by leading cybersecurity-focused investors Ten Eleven Ventures and Maverick Ventures
- SOC 2 compliance signaled on company materials

## Latest updates

- **2026-03** — Announced $28M total raised (including a $16.5M Series A led by Maverick Ventures and Ten Eleven Ventures), 300% YoY revenue growth, and 5x growth in Fortune 500 customers.
- **2026-03** — Launched AI Agent Governance and Developer Behavioral Risk Analysis, extending identity governance to AI coding assistants and autonomous agents.
- **2026-03** — Outlined plans to accelerate platform development and expand across the US and EMEA in regulated industries.

## Links

- Website: https://blueflagsecurity.com
- LinkedIn: https://www.linkedin.com/company/blueflag-security
- Twitter/X: https://twitter.com/BlueFlagSec
- Facebook: https://facebook.com/blueflagsec

---

Profile page: https://yespress.io/blueflag-security
Published by YesPress — https://yespress.io
Last updated: 2026-07-13
