%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Model Context Protocol (MCP) security vendor Runlayer announced today a $11 million seed round led by Khosla Ventures and Felicis, while simultaneously ending its four-month stealth operation. Founder Andrew Berman revealed that Runlayer has signed eight unicorns or public companies, including Gusto, dbt Labs, Instacart, and Opendoor, and has attracted David Soria Parra, the main author of the MCP specification, as a consultant.
Since the open-sourcing of the MCP protocol in November 2024, it has been adopted by major model vendors such as OpenAI, Microsoft, AWS, and Google to provide AI agents with the capability to read and write data and perform business operations without human intervention. However, the protocol itself lacks security mechanisms, and platforms such as GitHub and Asana have reported prompt injection and data access violations, creating demand for gateways, audits, and permission management.
Runlayer launched an integrated security platform that combines gateways, threat detection, observability, enterprise automation development, and fine-grained permissions into a single console. The product uses an "Okta-style" directory, allowing IT departments to pre-approve MCP servers and map them to employee identities, thereby enabling one-to-one mapping between agent permissions and user permissions to prevent unauthorized reading and writing. The platform supports identity providers such as Okta and Entra and provides full-chain audit logs to meet compliance requirements.
Berman previously served as the Director of AI at Zapier, participated in building early MCP servers, and had deep collaboration with OpenAI and Anthropic. He believes that the rapid deployment of the protocol has created "observability blind spots," leading him and two former Zapier colleagues to leave in August and found Runlayer, completing product development and customer validation within four months. The company plans to expand its engineering team this year and launch the GA version. The next step will be to support on-premises private deployment and multi-cloud environments.