Enterprise Software Company Investment Opportunity in Rudrapur, India

Business highlights of API Security Engine:

Core Product: API Security Engine specializes in API security solutions, employing both agentless and agent-based strategies to scan for cyber threats. Their platform also assists in generating alerts and identifying Personally Identifiable Information (PII).

Client Base: Currently, API Security Engine boasts two recurring customers for its product, from FinTech industry and are based in India. This indicates early traction and potential for growth in the market.

Revenue Model: Yearly subscription model with average charges of USD 20k per year. The company operates on a revenue-sharing model, allowing clients to benefit from cost savings of up to 80 percent. This model incentivizes clients to adopt their services while ensuring a sustainable revenue stream for the business.

Promoter Experience: The promoters bring valuable expertise from CISO/CXO levels, indicating a deep understanding of cybersecurity challenges and industry requirements. This experience likely contributes to the effectiveness and relevance of their solutions.

Business Relationships: API Security Engine has likely established strong business relationships, given its status as an incubated company at IIT-Kanpur. Such affiliations often provide access to networks, resources, and mentorship crucial for growth and credibility.

Certifications and Registrations: The company has MSME (Micro, Small, and Medium Enterprises) registration, start-up India and ISO certifications.

Expansion Plans: API Security Engine is strategically expanding its business operations into key regions such as the Gulf countries, the USA, and the UK. This expansion indicates a vision for scaling operations and tapping into new markets to drive growth and increase market presence.

Overall, API Security Engine appears to be a promising venture with a strong foundation, innovative product offerings, experienced leadership, and strategic growth initiatives.

API Security Engine:

Description: API Security Engine is a cybersecurity solution designed to scan APIs (Application Programming Interfaces) for potential cyber threats, using both agentless and agent-based strategies. It also assists in generating alerts for suspicious activities and identifying Personally Identifiable Information (PII) within the API traffic.

Who Uses It: API Security Engine would primarily be used by organizations that rely heavily on APIs for their software systems, such as technology companies, financial institutions, e-commerce platforms, healthcare providers, etc. These organizations would be concerned about protecting their APIs from cyber threats and ensuring compliance with data privacy regulations.

How It Works:

Scanning for Threats: API Security Engine continuously monitors API traffic, analyzing requests and responses for any signs of malicious activity or vulnerabilities. It employs both agentless and agent-based scanning methods to ensure comprehensive coverage.

Alert Generation: Whenever suspicious behavior or potential threats are detected within the API traffic, API Security Engine generates alerts in real-time. These alerts could include notifications about unauthorized access attempts, abnormal data patterns, or attempts to exploit known vulnerabilities.

PII Identification: In addition to threat detection, API Security Engine also includes features for identifying Personally Identifiable Information (PII) within API requests and responses. This helps organizations ensure compliance with data protection regulations such as GDPR or CCPA.

Benefits: The key benefits of API Security Engine include enhanced cybersecurity for API-driven applications, proactive threat detection and prevention, compliance with data privacy regulations, and overall risk mitigation for organizations relying on APIs for their operations.

Here's a list of tangible and intangible assets owned by the business:

Tangible Assets:

Two laptops were allocated for penetration testing. Not of a very significant value.

One IP (presumably referring to an Internet Protocol address).

Certifications:

A. ISO 27001 certification.

B. ISO 27017 certification.

C. ISO 4001 certification.

Intangible Assets:

APISecurityEngine:

A. Software for scanning APIs against cyber threats.

B. Utilizes both agentless and agent-based strategies.

Source code of software deployed in Digital Ocean:

A. Intellectual property representing the software's design and functionality.

B. Includes algorithms, codebase, and proprietary technology.

C. Hosted on Digital Ocean infrastructure.

These assets collectively contribute to the value and functionality of the business, providing both tangible resources and intellectual property essential for operations and security.

Operating remotely from different parts of the world, our team of cybersecurity experts collaborates seamlessly to develop, maintain, and enhance the API Security Engine and other cutting-edge solutions.

Through our collective expertise and dedication, we strive to stay ahead of emerging cyber threats and provide our clients with reliable protection for their digital assets.

As of now, the business is solely funded through bootstrap financing, meaning it relies on its own resources rather than external funding sources like loans or debts. The company operates without any outstanding debts or loans.

In terms of ownership structure, there are a total of five shareholders/owners:

Main Founder: Holds 80% ownership.

Technical Implementation Manager: Holds 5% ownership.

Offline Events Manager: Holds 5% ownership.

Sales Specialist: Holds 5% ownership.

5% is owned by another management member.

API Security Engine: Represents the product or service focused on scanning APIs against cyber threats. It's not explicitly stated whether this entity has its own shareholding or if its operations are encompassed within the main founder's ownership.

The ownership percentages suggest a distribution where the main founder holds the majority stake, with the remaining stakeholders each holding a smaller portion, likely reflecting their respective roles and contributions to the business.