About
[[Please be mindful about sketchy looking emails asking to chat and saying I’m the hiring…
Articles by Nelson
-
Startups: When & Why to Work with AWS
Startups: When & Why to Work with AWS
Startup ISVs built on AWS need to understand when and why to hire an alliance team that works with AWS. Partnering with…
10 Comments
Activity
14K followers
-
Nelson Bostrom reposted thisNelson Bostrom reposted thisI’m hiring a Director, GTM Technology & Operations at Fleetio (remote, US only). This role owns how our GTM engine actually runs, across systems, data, and how we prioritize and execute initiatives. You’ll partner closely with Sales, Marketing, CX, and Finance leadership and have direct impact on pipeline, forecasting, and revenue efficiency. Looking for someone who has scaled GTM systems and operations in a $100M to $500M ARR B2B SaaS company and knows how to connect systems, process, and data to real business outcomes. If this sounds like you or someone you’d recommend, I’d love to connect. Link to the full job description in comments. David Hung, Melissa Douglas Cunningham
-
Nelson Bostrom reposted thisBuilding. 💯⚡️Nelson Bostrom reposted thisAsked Claude to evaluate the Cloud Security market for a fund thesis. It came back with this. In under 90 seconds. 15 companies ranked by momentum score. Funding history, employee growth, estimated valuations for the top 5. Overvalued companies flagged. Companies likely coming back to market identified. One prompt. One answer. Real data. This is the CybersecTools MCP Server. It connects Claude, Cursor, or any AI agent directly to our database of 10,000+ cybersecurity products and 2,800+ companies. No copy-pasting. No tab-switching. No stale spreadsheets. Here's what it pulled in that single query: 🔹 Upwind scored 72 (Accelerating). 138% headcount growth. Bessemer leading the Series B. Valuation looks justified at 17.5x on $80M revenue. 🔹 Cloudflare's $75.8B market cap vs $17.5B estimated fair value. 37.6x P/S is pricing in AI/edge compute narrative, not cloud security economics. 🔹 CoreStack flagged: 54.8x revenue multiple on $11.3M revenue. Headcount shrinking 19% YoY. Last equity round was Nov 2021. Took $50M debt in 2025. Down round or strategic exit incoming. 🔹 Sysdig, Obsidian Security, AppOmni all flagged with 18+ month funding gaps. The momentum scoring methodology weighs three pillars: growth signals, market presence, and funding velocity. It's not a vanity metric. It's built on the same data layer that tracks every product, feature, and integration across the cybersecurity landscape. This depth of analysis is available on the Professional plan. If you're an investor running due diligence, a vendor tracking competitors, or an analyst covering cybersecurity, the MCP Server turns your AI workspace into a market intelligence terminal.
-
Nelson Bostrom reposted thisNelson Bostrom reposted thisLast week’s Trivy supply chain incident is a good reminder of how quickly “trusted” tooling can become an attack vector. At first, nothing looked broken on the surface because pipelines were running as usual, and outputs looked normal. But under the hood, compromised workflows were executing code and pulling secrets straight from memory. When our MDR team investigated anomalous Trivy behavior, the real story showed up in runtime, here’s what they uncovered: - Unexpected command execution patterns - Access to /proc/<pid>/mem and /proc/<pid>/environ - Suspicious outbound traffic from CI/CD runners That’s the layer attackers are operating in now, and we built the Upwind platform exactly for this reality. We baseline how your environment behaves at runtime, then surface what doesn’t belong, with real-time context. What teams should do next: • Pin GitHub Actions to full commit SHAs (not version tags) • Audit any pull_request_target workflows handling untrusted code • Lock down GITHUB_TOKEN permissions to least privilege • Treat security tools like dependencies (pin, verify, monitor) • Don’t rely on “immutable” tags alone, verify integrity out-of-band • Add runtime visibility to CI/CD runners (this is where these attacks actually show up) If you’re trying to understand your exposure from this incident (or others like it), we’re here to help. Full technical breakdown via link in comments. Up & Up! 🌊 Avital Harel Jake Martens
-
Nelson Bostrom shared this🚨 Hiring alert 🚨 Upwind Security is looking for two Amazon Web Services (AWS) Cloud Alliance Managers to help us scale our GTM execution with AWS given our unique partnership. Please DM me with candidates/questions. Job decsriptions/links to follow. Read more on our AWS partnership: https://lnkd.in/ggaTDAEV We also raised a $250M Series B from A-list investors last month.AWS Security Hub Extended offers full-stack enterprise security with curated partner solutions | Amazon Web ServicesAWS Security Hub Extended offers full-stack enterprise security with curated partner solutions | Amazon Web Services
-
Nelson Bostrom reposted thisNelson Bostrom reposted thisIf you're at RSA, come hang Tuesday night. Upwind Security + Amazon Web Services (AWS). At The Box SF. 7:30–10pm. Ashish Rajan 🤴🏾🧔🏾♂️ from the Cloud Security & AI Podcast as our special guest. Good people, good drinks, no agenda. 👉 https://luma.com/1ein8vgh RSA Conference Upwind Security #RSAConference #Cybersecurity #InfoSec
-
Nelson Bostrom reposted thisNelson Bostrom reposted thisWe’re hiring at Upwind Security — and this is a big one!! I’m looking for a Go-To-Market Enablement Lead to join us help build the enablement engine for a category-defining cloud security company. If you are a builder, someone who can take the business strategy, connect it to field execution, and create the systems, programs, content, and coaching structure that actually help teams win you SHOUD apply! You’ll be our first GTM Enablement leader, partnering across Sales, Product, PMM, and Leadership to help our teams: - Ramp faster // prepare for strategic deals - Message better // compete smarter - Adopt tools and processes that improve execution - Drive productivity We’re looking for someone with deep [10+year] experience across Sales Enablement, Revenue Enablement, Sales Ops, PMM, or related GTM functions in cybersecurity, who knows how to turn complexity into practical guidance for the field. Why this role is exciting: Foundational: you’ll define how enablement works here High-impact: your work will directly influence GTM execution Cross-functional: you’ll partner with key leaders across the business Builder environment: we value people who create, simplify, and drive outcomes If you’ve built enablement from the ground up, thrive in fast-growth environments, and want to help shape the future of cloud security, I’d love to talk. Drop me a message or apply here: https://lnkd.in/g-Rfr_Gu Tomer Hadassi Amiram Shachar Max Stevens Chas Larios Pat Murphy Rinki Sethi Lavi Ferdman
-
Nelson Bostrom reposted thisNelson Bostrom reposted thisAnnouncing our investment in Upwind Security's $250M Series B 🤝 Upwind is built for the reality of modern cloud environments, where static scans and daily snapshots no longer cut it. Using eBPF, its runtime-first approach gives teams deep visibility into live workloads without the burden of legacy agents. That inside-out architecture lets Upwind do what static scanners can’t: determine reachability. By pairing build-time data with real-time runtime context, Upwind can show which vulnerabilities are genuinely exploitable in production. If a vulnerable library is sitting on disk but never loaded into memory, it’s not treated as an urgent risk. The result is roughly 95% less alert noise, so security teams can focus their time on what matters. We’ve known Amiram Shachar, Tal Zur, and Lavi Ferdman since their Spot.io days, and stayed close because it was obvious they had something special: serious technical depth, strong founder chemistry, and a clear view of where the market was heading. That direction feels even more important now. AI is reshaping the cloud and expanding the attack surface along with it. New risks are emerging fast, from model theft to data poisoning to entirely new security requirements around AI workloads. At the same time, those workloads are dynamic, complex, and resource-intensive, which makes traditional approaches feel increasingly outdated. We believe this change will continue to drive value into CNAPP, one of the most important and fastest-growing categories in cloud security. The Upwind team is building with real urgency, real conviction, and real product insight. We’re thrilled to partner with them as they continue to raise the bar for what modern cloud security should look like. 🔗 In a new blog post, Nowi Kallen and Kartik Gupta shared more about our investment in Upwind: https://lnkd.in/ez2-BP5i
-
Nelson Bostrom liked thisNelson Bostrom liked thisLast week was a busy one for us! CloudWatch now ingests Security Hub CSPM findings, so you can see security findings right alongside your operational logs and metrics. Query everything with Logs Insights, set up alerts that connect security and operations, and enable it org-wide. https://lnkd.in/gZCQWsuC #AWS #CloudWatch #SecurityHub #CloudSecurity #SecOps #DevSecOps #Observability
-
Nelson Bostrom liked thisNelson Bostrom liked thisTen years ago today, I moved west—despite my close family’s concerns and with surprisingly little support. I left my job without another offer in hand and took a leap to pursue a relationship and a new career path. Looking back, I’m deeply grateful for the journey, the lessons, and the small group of people who believed in me when I made that decision. Since then, I’ve worked at startups and at some of the most incredible companies ever built. I’ve had the privilege of meeting fascinating people—brilliant, ambitious, and inspiring. Silicon Valley truly is a place that pushes you to think bigger, because big things happen here. Cheers to taking risks, trusting the process, and building what’s next. 🍻 Claire Binder, Michael Henley, Scott Kesten, Brian Wilson, John Abrams, Bryan Bethel, Duncan Davidson, Jamie Davidson, Julieee Logan, Laura Davidson - You were all there for the big change and have been there for the bigger changes that followed. Thank you for your belief and support!
-
Nelson Bostrom liked thisNelson Bostrom liked thisA North Korean threat group just weaponized one of the most downloaded libraries on the internet. Axios. 100 million weekly downloads. Present in 80% of cloud environments. Two backdoored versions published overnight using a hijacked maintainer account. 15 seconds from npm install to full system compromise. RATs deployed across Windows, macOS, and Linux. Then the malware erased itself. Google attributed it to UNC1069. Mandiant's CTO warned this will cascade into more breaches, ransomware, and crypto theft for weeks. The real problem: most organizations have no idea what's buried in their dependency trees. Your developers didn't install malware. They ran a routine update of a library they've trusted for years. That's the whole point of a supply chain attack. Credit to Moshe Hassan and Upwind Security for the early detection, and to StepSecurity, Huntress, Socket, and Wiz for the rapid response. #cybersecurity #supplychainattack #infosec #npm #axios
-
Nelson Bostrom liked thisNelson Bostrom liked thisI’m hiring a Director, GTM Technology & Operations at Fleetio (remote, US only). This role owns how our GTM engine actually runs, across systems, data, and how we prioritize and execute initiatives. You’ll partner closely with Sales, Marketing, CX, and Finance leadership and have direct impact on pipeline, forecasting, and revenue efficiency. Looking for someone who has scaled GTM systems and operations in a $100M to $500M ARR B2B SaaS company and knows how to connect systems, process, and data to real business outcomes. If this sounds like you or someone you’d recommend, I’d love to connect. Link to the full job description in comments. David Hung, Melissa Douglas Cunningham
-
Nelson Bostrom liked thisNelson Bostrom liked thisWoah. It's crazy how something like an industry trade show can be something else. Like a singular place where all of your friends from across the globe get together to connect on life and business. My mind is still reeling from thousands of individual inputs conglomerating into the single idea that we are on the precipice of something massive. I am seeing architectures and products coming together that are reshaping the foundations of security. But, in the midst of the strong winds of change, we cannot forget to meet our customers where they are at in their journey. Ryan Orsi Frank Schwarzenau Jacob Abbott Himanshu Verma Danielle Ruderman Celeste Bishop, CC Stephanie Rice Brian Leedy Ashutosh M. Aliaksei Ivanou Christopher Rae Riggs Goodman III Sofía Aluma-Santos Hart Rossman Sarah Currey Chet Kapoor Gee Rittenhouse Phil Lin Idaliz Seymour Kyle Dickinson Justin Criswell, CISSP Nick Kelly Tim Honychurch Matthew Bretan Rod Wallace Nandini Ramani #cyber #security #cybersecurity #AI #AISecurity #Threat #Detection #Incident #Response #TDIR #CNAPP #CSPM #AWS #Amazon #AmazonWebServices #RSA #RSAC #conference #Network #Application #Protection #Data #Identity #Agentic #Agent #Governance Oh. And I got to meet JOE MONTANA. What?!
-
Nelson Bostrom liked thisNelson Bostrom liked this1 + 1 = 15 That’s what great partnerships look like. Partnerships are key to growth — but more importantly, they drive real value for customers. #RSA was a strong reminder of that. Grateful to have met so many of our partners there And already looking forward to catching up with those I missed. Upwind Security Paul Barbosa Ben Prouty John Schimelpfenig Gavin W. C. Chris Coburn Eli Scherr Eric Snyder Tom Anthony , Yasmin Shahar Olivia (Kelly) Tingley Kerrinjeet (KJ) Gambhir Enosh Alter Eden Amitai Kyle Pippin
-
Nelson Bostrom liked thisNelson Bostrom liked thisInteresting insights from Ilya Strebulaev - Don't Start as an Analyst. What 12,000 Careers of Junior VCs Tell About Making it in VC 1) Junior entrants are 70-80 percentage points less likely to become senior VCs than those who enter at mid-level: The single most powerful predictor of making partner is the seniority at which you enter the industry. Middle-level entrants (VP/Principal) have dramatically better odds, and lateral moves across firms count. The implication: if your goal is partnership, skip the analyst track and build operational experience first. 2) Prior startup experience is the strongest positive signal, while gender remains the only significant negative factor: VCs who previously worked at VC-backed startups, whether as founders, C-suite, or rank-and-file, are significantly more likely to reach partner. Female VCs are significantly less likely to be promoted, a gap that persists even in recent years, making gender the only economically significant negative predictor across all individual characteristics studied. 3) MBA holders are more likely to make partner but less likely to back successful deals: Holding an MBA increases promotion probability but actually lowers the likelihood of making successful investments, all else equal. Advanced non-MBA degrees (MS/PhD) help with both. Top-school MBAs (Stanford, HBS) negate the negative deal performance effect, creating a clear puzzle: the "direct path" through an MBA program is actually the harder route to real investment success. https://lnkd.in/g9v_mwan
-
Nelson Bostrom liked thisNelson Bostrom liked thisMy statement back in January about prioritizing “runtime” that caused so much discussion wasn’t a throw-away written by AI. It was my decision about how to prioritize my time in an increasingly complicated world. Today’s announcement that I’m joining Upwind Security as a Strategic Advisor is another example of that. The Upwind team figured out that “runtime” would be the word of the year long before I did. Time flies, and I want to spend my time where the action is. And in cybersecurity where we are focused on enabling productive use of AI, we need to operate in runtime to mitigate the most important risks. Only when we are effectively running along with the agents will we give people the confidence to unlock AI’s potential benefits for humanity. Thank you to Rinki Sethi and the entire Upwind team for letting me ride along - I am excited to learn from the people who get it.
Experience & Education
-
Upwind Security
View Nelson’s full experience
See their title, tenure and more.
or
Volunteer Experience
Courses
-
Accounting for Attorneys
-
-
Accounting for Lawyers
-
-
Corporate Theory
-
-
Corporate Theory
-
-
Venture Capital Law
-
-
Venture Capital Law
-
Languages
-
Spanish
-
Recommendations received
8 people have recommended Nelson
Join now to viewOther similar profiles
Explore more posts
Explore top content on LinkedIn
Find curated posts and insights for relevant topics all in one place.
View top content