We’re on a mission:
Deliver application security
with zero noise.
Invicti by the numbers
web apps secured
unique severe vulnerabilities found
Propelling the world forward
by securing every web application
2 billion + web apps; 96% have at least one vulnerability. Untested applications in development and production are insecure and a threat.
We deliver the most accurate and efficient DAST solution for DevOps/DevSecOps teams to discover and secure all the applications that run their organizations.
You’ll always know the truth
That means accurate reports, proof-based results, and reliable support from a team that wants you to succeed.
You’ll always have the best AppSec technology
We know there’s always a better way. We constantly improve our products to make your job easier — not just for today, but for tomorrow.
You’ll bring Dev, Sec, and Ops together
Security shouldn’t be an obstacle to innovation — it should be a main ingredient. Invicti is designed to help teams embrace security as a key feature of everything they create.
You’re doing essential work. We’re here to help you do it
Meet the Invicti leadership team.
Ferruh MavitunaFounder & Strategic Advisor Read bio
Ferruh MavitunaFounder & Strategic Advisor
From the trenches of security to the front lines of strategy, Ferruh’s 20+ years of experience have taught him a thing or two about the hurdles DevSecOps professionals face daily. In the late 2000s, Ferruh was working with Europe’s biggest security company as a penetration tester, where he devoted entire days to manually verifying the results of security scans and weeding out false positives. Exasperated, he was determined to craft an end-to-end solution that automated everything that could possibly be automated, freeing up time for innovation. Sixteen years later, Invicti Security now helps thousands of organizations secure their web applications. When Ferruh isn’t driving teams towards innovation, he’s passionate about leveling up in competitive video games.
Kate BachmanVP, Marketing Read bio
Kate BachmanVP, Marketing
A seasoned marketing, brand, and post-sales leader, Kate has provided strategic communications counsel and led program execution for Fortune 500s, high-growth start-ups, and various cybersecurity and enterprise technology organizations. Blending deep expertise in integrated communications with customer experience and operational roles, Kate develops strategies to drive positive change for organizations. She has successfully led teams through a number of successful M&A, restructuring, rebranding and other change initiatives to build organizational resiliency, profitability, and culture. Kate is an avid literature enthusiast, traveler, and volunteer for the Make A Wish Foundation. She doesn’t function without coffee.
John MandelChief Engineering Officer Read bio
John MandelChief Engineering Officer
John’s firsthand experience with our customers’ challenges brings a unique perspective to Invicti’s leadership team. In his previous role, served as Head of Engineering at Acquia, where he helped ensure the security of the company’s vast IT infrastructure. Prior to that, John led engineering, IT, cloud operations, and information security teams at Continuum (acquired by ConnectWise in 2019).
As Chief Engineering Officer, John will continue to evolve Invicti’s architecture to a best-in-class DevSecOps platform that enables organizations to secure all of their web applications and APIs. In his spare time, John brings his love of team-building to the hockey rink by coaching youth hockey teams. When he isn’t coaching, you might find him cheering on the Boston Bruins.
Mike MattosChief Customer Officer Read bio
Mike MattosChief Customer Officer
Bringing his tried-and-true recipe for customer experience to Invicti, Mike has spent over 15 years crafting global programs that improve productivity, revenue, and service. Before taking the lead as our Chief Customer Officer, Mike built and scaled teams at EVERFI, DoubleDutch, and Baynote, where he helped make organizational and operational changes to boost profit and improve customer experience. Mike leans on that know-how here at Invicti to help us hit our own sales and service goals, but when he’s not immersed in the world of customer success, you can find him with his family and friends enjoying the skiing mountains or boating on the lake.
Frank CatucciCTO and Head of Security Research Read bio
Frank CatucciCTO and Head of Security Research
Frank Catucci is a global application security technical leader with over 20 years of experience, designing scalable application security specific architecture, partnering with cross-functional engineering and product teams. Frank is a past OWASP Chapter President and contributor to the OWASP bug bounty initiative and most recently was the Head of Application & Product Security at Data Robot. Prior to that role, Frank was the Sr. Director of Application Security & DevSecOps and Security Researcher at Gartner, and was also the Director of Application Security for Qualys. Outside of work and hacking things, Frank and his wife maintain a family farm. He is an avid outdoors fan and loves all types of fishing, boating, watersports, hiking, camping and especially dirt bikes and motorcycles.
Dan MurphyChief Architect Read bio
Dan MurphyChief Architect
As Chief Architect, Dan helps orchestrate the symphony of software systems that synthesize into Invicti’s solution. At the age of 12 he received the gift of a 14.4bps modem, and has been fascinated with creating (and breaking) networked software systems ever since. Dan has broad technical experience across a myriad of platforms from 25+ years of building software in organizations ranging from startups to tech giants. He continues to be shocked everytime he sees an icon for code he’s written on a zoom call, still in use worldwide. Dan loves both learning and sharing what he has learned, and engages in conference speaking and volunteering in STEM education programs. His hobbies include digital music, additive manufacturing, and contemplating convoluted game mechanics. Dan’s wardrobe is composed of both collared shirts and black hoodies in equal measure.
Kalpana TummalaVP Engineering Read bio
Kalpana TummalaVP Engineering
Kalpana is a seasoned leader with over 22 years of technical and managerial skills at leading companies in Semiconductor, FinTech and Banking industry. .Kalpana is well known for strong execution skills and for driving strong results through cross functional teams with utmost focus on Customer Centricity. Kalpana is keen on enabling teams and organizations to perform efficiently and with agility. Kalpana was recently leading Core modernization efforts at Regions Bank. Prior to that Kalpana was leading Bill payment / Merchant Fraud Software Development and Program Management at ACI Worldwide,prior to that role she worked in various management roles at Intel Corporation, a leader in semiconductor Industry. Kalpana is based in Austin, Texas, enjoys Reading, Gardening, Volunteering, Cooking and Dancing.
Karl GonziGeneral Manager, Malta Read bio
Karl GonziGeneral Manager, Malta
Karl is an established corporate lawyer and General Manager with a track record of helping tech companies scale and grow their operations. As General Manager, Malta, at Invicti, Karl is focused on executing the Group’s strategy in Malta, communicating business goals to the organization and, more broadly, growing Invicti’s footprint in Europe. Before joining Invicti, Karl was the Managing Director of Entain plc’s Malta operation. There, he led a team that managed many of Entain’s key licenses in Europe and helped the company increase the number of regulated international markets in which it operates by almost a third between 2020 and Q1 2021. Prior to his role at Entain, Karl was a senior lawyer within various payments-related businesses, including a stint as Senior Legal Counsel to Finaro (previously Credorax).
Soykan GulcanCountry Manager & SVP of Engineering Read bio
Soykan GulcanCountry Manager & SVP of Engineering
Soykan is a technology leader with over 18 years of experience at leading companies in the finance, technology, and retail industry. Worked in various roles which create a remarkable experience for technology and transformation leadership. Soykan is instrumental in leading teams across DevOps, cloud-ready container structures, and API-first solutions. He is interested in digital transformation, AI-based automation, continuous security, and technical agility for engineering excellence. Soykan was most recently Head of Technology Transformation and Core Platforms at ING. Prior to that role was Head of Product Development and Architecture at KocSistem which delivers digital transformation products for industry groups in Fortune 500. He is living in Istanbul with his family and enjoys gourmet cooking, technology gadgets, and trekking.
Meet our Board of Directors
Gerhard WatzingerChairman of the Board Read bio
Gerhard WatzingerChairman of the Board
A veteran investor and technologist, Gerhard has been at the forefront of identifying some of the world’s most innovative companies. In addition to serving as chairman of the board at Invicti, Gerhard has served as chairman of CrowdStrike Holdings, Inc.’s board of directors since 2012, and also currently sits as a member of the board at Mastech Digital, Absolute Software, and KnowBe4. With a focus on security technology, Gerhard was a key driver behind McAfee’s acquisition by Intel resulting in a record-making $7.7B transaction. He previously served as the Executive Vice President for Corporate Strategy and Mergers & Acquisitions of the McAfee business unit of Intel, and was also the Chief Executive Officer of SafeBoot. Gerhard also held senior positions at APT, PricewaterhouseCoopers, and Cap Gemini.
Scott CollinsManaging Director and COO, Summit Partners Read bio
Scott CollinsManaging Director and COO, Summit Partners
Scott Collins is a distinguished investor with over 25 years of venture capital experience. He joined Summit Partners in 1996 where he currently serves as Chief Operating Officer and Managing Director of the firm, focusing primarily on investing in the technology sector. In addition to Invicti, Scott made investments in and served as a board director for over 25 companies, including 360T Group (acquired by Deutsche Börse), Avast (LON: AVST), Calypso Technology (acquired by Thoma Bravo), PrismHR, SafeBoot (acquired by McAfee). Scott previously worked as a strategy consultant with McKinsey & Company in the financial institution’s group, and served in various U.S. federal government positions. Scott holds a B.A. in economics, magna cum laude, from Harvard University and a J.D., cum laude, from Harvard Law School.
Sophia PopovaPartner, Summit Partners Read bio
Sophia PopovaPartner, Summit Partners
Sophia is a startup advisor and investor with a passion for transforming ideas into successful products. She joined Summit in 2017 and currently serves as a Principal at the firm, where she’s managed over $600 million in invested capital. Sophia focuses primarily on investing in the technology sector, and in addition to Invicti, her current board and investment experience includes Klaviyo, Markforged (NYSE: MKFG), Mavrck, PrismHR, Sifted, and Ylopo. Prior to joining Summit, Sophia was an investment partner at Dorm Room Fund and held roles at several startups, including Contactive, where she was Product Manager. She has a BA in economics and mathematics from Yale University and an MBA, with distinction, from Harvard Business School. Sophia was recognized as one of the WSJ Pro Private Equity’s 2021 ‘Women to Watch.’
Dominic AngManaging Partner, Turn/River Capital Read bio
Dominic AngManaging Partner, Turn/River Capital
As founder of Turn/River Capital, Dominic brings invaluable SaaS experience to Invicti. Before launching Turn/River in 2012, he held critical roles at high-growth companies like Plumtree Software, where he helped grow the business to over $100 million in revenue. Eventually, Dominic made the shift to investing at Advent International, and later Vector Capital, where he had the opportunity to combine his vast knowledge of software operations and investing at scale to create more value and foster growth for the organization. Prior to founding Turn/River, Dominic was the CEO of My Perfect Sale (acquired by Sugar, Inc.). While there, he increased sales by 5X in three years and led its successful strategic buyout.
Joanne YuanPartner, Turn/River Capital Read bio
Joanne YuanPartner, Turn/River Capital
With over ten years of investment and operational experience, Joanne has worked with various software companies from pre-launch to post-IPO. At Turn/River, Joanne brings a range of experiences that are helping shape our financial and strategic path at Invicti. She has an MBA from Stanford University Graduate School of Business and graduated magna cum laude with dual B.S./B.A. degrees from the University of Pennsylvania.
Making headlines. Changing the game.
Trusted by 3,600+ organizations
Back when the world had only 50M websites, we built our first application security testing solution to help organizations meet the emerging web application security threat.
Solving the false positive problem
Invicti became the first application security testing solution with Proof-Based Scanning: technology that automatically verifies vulnerabilities to save teams hours of manual verification.
The rise of web apps
In just one year, the number of websites in the world doubled from 350M to 700M, making application security all the more critical.
After 8 years, W3C completed the HTML5 standard, starting the era of mobile and cloud internet applications.
Invicti goes enterprise
Invicti became the first truly scalable enterprise DAST solution to manage the security of thousands of websites, applications, and APIs.
150 enterprise customers
The 150th enterprise joins Invicti to scale its application security.
500 enterprise customers
Invicti grew fast, adding 350 more enterprise customers in less than 3 years, and showing that scalable application security is possible.
Invicti adds IAST
Invicti adds IAST, bringing an inside-out view alongside DAST’s outside-in scanning.
More AppSec tools in one place
What was once a DAST scanner has evolved into an AppSec platform. Now organizations can get the benefits of DAST, IAST, and SCA in one place — with more tools to come.