Clover Secures $36M to Streamline Automated Product Security Assessments

Application Security
,
Artificial Intelligence & Machine Learning
,
Next-Generation Technologies & Secure Development

Startup Uses AI Agents to Support Proactive Security and Scale Development

Michael Novinson (MichaelNovinson) •
December 9, 2025    

A startup run by a former Dazz and Hysolate product leader has emerged from stealth mode to revolutionize product security tasks for enterprise development teams. The innovative company, Clover Security, has recently secured $36 million in funding from Notable Capital and Team8, aiming to transition product security from a reactive, scanner-based model to a proactive, design-led approach that leverages Artificial Intelligence (AI).

According to Alon Kollmann, co-founder and CEO of Clover Security, the company’s flagship AI solution automates design and architecture reviews to ease the burden on often lean security teams. “What they’ve been doing is very manual, repetitive work, trying to review documents and provide guidance to developers,” Kollmann explained. With Clover’s technology, these tasks can be augmented through automation, freeing up valuable resources.

Clover Security, founded in 2023 and currently employing 54 staff members, is spearheaded by Kollmann, who previously played pivotal roles at Dazz and Hysolate. Each of these companies has undergone significant transitions, with Dazz being acquired by Wiz in November 2024 and Hysolate eventually entering Fortinet’s portfolio in December 2024.

Understanding the Failings of Traditional Security Practices

Traditional product security measures often involve scanning code or infrastructure only after the development process has been completed. Kollmann points out that this reactive approach is unsustainable, especially in the fast-paced realm of AI-enhanced development. Clover’s core mission is to shift security evaluations upstream, integrating them into the design phase before coding even begins. This proactive strategy encourages security teams to engage earlier in the development cycle.

“Historically, the tools available to security teams were reactive,” Kollmann remarks. “They pointed out errors only after developers had already written code.” With Clover’s new paradigm, the goal is to create a collaborative environment where security considerations are integrated from the outset of a project, aligning more closely with modern development practices.

How Clover Elevates Efficiency in Reviews

One significant challenge for security teams is the extensive amount of fragmented information scattered across various platforms during design and architecture reviews. According to Kollmann, these reviews can require significant time and effort that many teams simply do not have to spare. Clover’s AI agents are programmed to collect and synthesize this fragmented data, surfacing relevant threats and making security recommendations automatically.

“Designing architecture reviews was a very natural first use case for our technology,” Kollmann explains. “Many prospects we talked to expressed the same struggle: it took countless hours and resources to conduct these reviews, which they simply did not have.” As Clover demonstrates its capabilities, consumers rapidly seek further applications for the technology, revealing a broader demand for automated security assessment tools.

Navigating New Risks with AI Integration

As organizations embrace AI development tools like GitHub Copilot and Cursor, new risks emerge. Kollmann highlights that the convenience of generative code assistants can occasionally lead developers to inadvertently introduce vulnerabilities into their projects. To combat this issue, Clover has crafted a specialized agent that integrates with these tools, imposing real-time security guardrails and recommending secure coding patterns as developers write.

“This capability sets us apart,” Kollmann asserts, emphasizing Clover’s potential to guide users as they transition from design into implementation, maintaining security without sacrificing development efficiency.

Modularity and Streamlined Integration

Another key advantage of Clover’s platform is its modularity and ease of use. The architecture supporting Clover’s technology permits rapid inclusion of new agents without the need for extensive rebuilding of existing infrastructure. This adaptability means that 90% of Clover’s backend systems can serve multiple agents, streamlining the onboarding process for customers as they adopt new capabilities.

“Organizations integrate Clover once, and we handle the analytics to support every agent we offer,” Kollmann explains. This abstraction helps customers to minimize complexity while maximizing the security benefits derived from Clover’s offerings.

In a fast-evolving technological landscape, the emergence of innovative solutions like Clover Security holds promise for fortifying the future of product security while adapting to shifting methodologies. Organizations faced with the increasing complexities of modern software development are encouraged to consider these advancements in their quest for robust security practices.