Cloudflare Acquires Kivera to Deliver Simple, Preventive Cloud Security

San Francisco, CA, October 8, 2024 – Cloudflare, Inc. (NYSE: NET), the leading connectivity cloud company, today announced the acquisition of Kivera, a cloud security, data protection, and compliance platform. The combination of Kivera and the Cloudflare One platform will put preventive controls directly into the cloud deployment process, or ‘inline’, preventing security issues and risks before they happen to create a cloud journey that is faster, simpler, and more secure.

Gartner® estimates that, “through 2027, 99% of records compromised in cloud environments will be the result of user misconfigurations and account compromise, not the result of an issue with the cloud provider.” Traditional methods of addressing these risks—such as cloud security posture management (CSPM) systems or infrastructure as code (IaC) scanning tools—alert IT teams and developers only after something goes wrong, immediately putting these teams on defense. At the same time, the amount of data flowing between organizations and their cloud providers has ballooned, increasing the chances of data leakage, compliance issues, and, worse, opportunities for attackers.

“At Cloudflare, we want to make it easy for any organization to connect and protect everything connected to the Internet—and our global network puts us in the best position to do that for millions of users across the world. Almost every organization uses multiple clouds now to power their business, but that can translate to more risks and unintentional errors,” said Matthew Prince, co-founder and CEO, Cloudflare. “By integrating Kivera’s team and technology, we’ll be able to better help all of our customers work with any big cloud provider in the most secure, reliable manner.”

Cloudflare One is one of the fastest-growing platforms for single-vendor secure access service edge (SASE) and security service edge (SSE) services. Companies worldwide rely on Cloudflare One to ensure safe access to web, SaaS, and private apps or infrastructure, safeguard against cyber threats, and maintain robust data protection across their networks. With the integration of Kivera’s technology, Cloudflare’s SASE platform will soon bring additional, preventive cloud security all within a unified platform. Together, the companies will allow customers to:

• Safeguard all of their cloud environments: By detecting and then alerting security teams of cloud misconfigurations, the integration of Kivera’s technology creates a first line of defense for cloud deployment errors–across all of the major cloud providers.
• Enable preventive security with one click: Now organizations will be able to instantly protect themselves from cloud breaches caused by misconfigurations and human error, like accidentally allowing public access or policy inconsistencies.
• Keep sensitive data inside their organization: By easily drawing boundaries around their cloud resources and tenants, customers will be able to enforce cloud tenant controls that ensure sensitive data is not shared with external parties accidentally.
• Reduce ‘shadow’ cloud infrastructure: Every interaction between a customer and their cloud provider is enforced within preset standards, mitigating the risks of shadow IT that can lead to security vulnerabilities, compliance breaches, unmanaged costs, and data leakage.
• Streamline cloud security compliance: Customers can automatically assess and enforce compliance rules against the most common regulatory frameworks.

“For too long, the adoption of cloud computing has left security teams within organizations playing catch-up,” said Vernon Jefferson, Co-founder, Kivera. “As they do their best to ensure sensitive company data is protected and compliance obligations are met, they are bombarded by alerts that they then have to investigate. We believe there’s a better way—a way to give security teams the upper hand by eliminating room for error at the cloud configuration level. Kivera has solved this in an elegant way, and I’m excited to help bring this technology to the wider Cloudflare customer base.”

In May 2024, Cloudflare also acquired BastionZero, a Zero Trust infrastructure access company. This expanded the scope of Cloudflare One’s VPN replacement solution beyond apps and networks to infrastructure resources. Together, Kivera and BastionZero help to deliver centralized security management across hybrid IT environments, and provide a modern DevOps-friendly way to help enterprises connect and protect their hybrid infrastructure with Zero Trust best practices.

If you’re interested in early access, please click here to join the waitlist. To learn more, please check out the blog below:

Blog: Cloudflare Acquires Kivera Expands Cloud Security Capabilities

Gartner Reference

Gartner, Outcome-Driven Metrics You Can Use to Evaluate Cloud Security Controls, By Charlie Winckless, Paul Proctor, Manuel Acosta, 09/28/2023

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

About Cloudflare

Cloudflare, Inc. (NYSE: NET) is the leading connectivity cloud company on a mission to help build a better Internet. It empowers organizations to make their employees, applications and networks faster and more secure everywhere, while reducing complexity and cost. Cloudflare’s connectivity cloud delivers the most full-featured, unified platform of cloud-native products and developer tools, so any organization can gain the control they need to work, develop, and accelerate their business.

Powered by one of the world’s largest and most interconnected networks, Cloudflare blocks billions of threats online for its customers every day. It is trusted by millions of organizations – from the largest brands to entrepreneurs and small businesses to nonprofits, humanitarian groups, and governments across the globe.

Learn more about Cloudflare’s connectivity cloud at cloudflare.com/connectivity-cloud. Learn more about the latest Internet trends and insights at https://radar.cloudflare.com.

Follow us: Blog | X | LinkedIn | Facebook | Instagram

Forward-Looking Statements

This press release contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933, as amended, and Section 21E of the Securities Exchange Act of 1934, as amended, which statements involve substantial risks and uncertainties. In some cases, you can identify forward-looking statements because they contain words such as “may,” “will,” “should,” “expect,” “explore,” “plan,” “anticipate,” “could,” “intend,” “target,” “project,” “contemplate,” “believe,” “estimate,” “predict,” “potential,” or “continue,” or the negative of these words, or other similar terms or expressions that concern Cloudflare’s expectations, strategy, plans, or intentions. However, not all forward-looking statements contain these identifying words. Forward-looking statements expressed or implied in this press release include, but are not limited to, statements regarding the capabilities and effectiveness of Cloudflare One and Cloudflare’s other products technology and Kivera’s products and technology, the benefits to Cloudflare’s customers from using Cloudflare One and Cloudflare’s other products and technology and Kivera’s products and technology, the timing of when Cloudflare One and Kivera’s products and technology and or any of their related features will be fully integrated and generally available to all current and potential Cloudflare customers, Cloudflare’s plans and objectives for, and the timing of, the integration of Kivera’s products and technology into Cloudflare One, Cloudflare’s technological development, future operations, growth, initiatives, or strategies, and comments made by Cloudflare’s CEO*** ***and others. Actual results could differ materially from those stated or implied in forward-looking statements due to a number of factors, including but not limited to, risks detailed in Cloudflare’s filings with the Securities and Exchange Commission (SEC), including Cloudflare’s Quarterly Report on Form 10-Q filed on August 1, 2024, as well as other filings that Cloudflare may make from time to time with the SEC.

The forward-looking statements made in this press release relate only to events as of the date on which the statements are made. Cloudflare undertakes no obligation to update any forward-looking statements made in this press release to reflect events or circumstances after the date of this press release or to reflect new information or the occurrence of unanticipated events, except as required by law. Cloudflare may not actually achieve the plans, intentions, or expectations disclosed in Cloudflare’s forward-looking statements, and you should not place undue reliance on Cloudflare’s forward-looking statements.

© 2024 Cloudflare, Inc. All rights reserved. Cloudflare, the Cloudflare logo, and other Cloudflare marks are trademarks and/or registered trademarks of Cloudflare, Inc. in the U.S. and other jurisdictions. All other marks and names referenced herein may be trademarks of their respective owners.

Media Contacts

Cloudflare, Inc.

[email protected]