While it is extremely sought after, federal software contracts often come at a hidden cost: achieving government compliance with SAAS security, known as Fedramp, can take years and require significant resources.
Achieving this certification usually lasts up to three years and costs more than $ 3 million, covering everything from security engineers’ salaries to security checks, according to Irina Denisenko, Managing Director of Knox.
Denisenko (depicted above, the second on the left) started Knox, a federal cloud provider, last year with the mission to help software suppliers accelerate the security authorization process in just three months and in a fraction of what to cost them.
On Thursday, Knox said he has garnered a $ 6.5 million seed round led by Felicis, with Ridgeline and FirsthandVC.
Denisenko decided to start this journey after learning firsthand the challenges of acquiring the Fedramp. The class, a start of education, where it served as COO, had secured a contract for the sale of its software in the US Air Force. And instead of waiting three years and spending millions, Denisenko helped class.com buy Cloud CosoA company that was already certified Fedramp and managing Adobe’s federal cloud.
The acquisition helped the class to obtain Fedramp certification in just six months. “The class would still take the Fedramp today” if he had tried to obtain the clearance on his own, Denisenko told TechCrunch.
And at the end of last year, when it became clear that the proliferation of AI agents became concern for national security, Denisenko decided to overcome the management cloud solution at autonomous start, Knox.
Companies that can afford the Fedramp Certificaiton include major software suppliers such as Crowdstrike, Palo Alto Networks and Salesforce, at Denisenko in Techcrunch. And as the government increasingly adopts software, it hopes that Knox can help SAAS sellers win Fedramp to gain access to government contracts more easily.
Knox, its name from a giant gold storage fortress in Kentucky, essentially provides a compliance management platform through a managed cloud in which customers can connect their code. The company’s software performs a continuous series of tests and checks to determine where the client’s infrastructure, codes and security checks do not lack Fedramp standards and either by restoring these issues or signals to the customer. It also offers some non -software tools for monitoring and verifying policies such as staff training and sellers’ management.
“These things are legally very tough and very dangerous,” he said. “We will withstand the danger.”
Knox already handles security and compliance for Adobe, Class, Spacelift and a LLM provider. “We will end the year with a good north of twelve customers living in the cloud,” Denisenko said.
While Fedramp authorization management may seem like a specialized offer, Knox has a big competitor: Palantir.
Palantir’s offer, called GamblingIt was introduced just two years ago and since then the giant data analysis platform has brought human and Windsurf as customers.
For Denisenko, Palantir’s early success with Fedramp only validates Knox’s mission.
“Even the man could not understand it on its own,” he said, adding that by moving forward, software companies would want to assign to third parties to comply with Fedramp to a company such as Knox.
