Stepsecurity

Step Security is a cybersecurity startup focused on preventing software supply chain attacks by enhancing the security of Continuous Integration and Continuous Deployment (CI/CD) pipelines. The company operates in the cybersecurity market, serving organizations that release software using CI/CD pipelines, which are typically defined in pipeline as code files, often YAML files, checked into source control. Step Security's core product automatically enables security features in these pipeline as code files, thereby improving the overall security of the software release process.

The business model is primarily B2B (business-to-business), targeting organizations that need to secure their software development pipelines. Revenue is generated through subscriptions to their security solutions, which can be integrated into existing CI/CD workflows. The company also offers a GitHub App to facilitate the implementation of their security features.

Keywords: cybersecurity, CI/CD pipelines, software supply chain, pipeline as code, YAML files, security automation, B2B, GitHub App, subscription model, software development.