The Start X team has been in business since 2016 and is licensed by FSTEC, while its products are registered in the Register of Domestic Software. The company is developing an ecosystem of similarly-named products for safe and efficient work in the digital environment.
Ecosystem products are used by Russian and foreign enterprises and organizations operating in different industries; help to reduce human factors risks and improve people’s productivity in key business processes, including the system and application development, support and, operation.
Start X develops in-house methodology to teaching and training skills and its classification of digital attacks on employees; conducts security-related psychological research; supplies Social Engineering TI analytics to customers.
Sergey Voldokhin is co-founder and director. With over 16 years of experience in IT, 9 of which in security, he implemented information security systems and was responsible for their compliance with PCI DSS, ISO 27001, SOC2 standards, was responsible for information security in an international company, and is a ISO/IEC 27001 Lead Auditor.
Artemy Bogdanov is co-founder and technical director. With over 10 years of experience in practical security, he was engaged in projects on auditing the security of web applications and penetration testing of various information systems, served as an instructor and developed tasks for professional penetration testing training.
He is a winner of PHDays, NeoQUEST, and other CTF competitions, a participant in public vulnerability search programs, has awards and was confirmed to find vulnerabilities in public applications and systems of Uber, Yahoo, Vkontakte, Odnoklassniki, Mail.RU, Starbucks, and more.
Start X products solve the problem of human factors in information security; help to ensure that each employee, based on their role and job duties, has the needed knowledge, skills, motivation, and beliefs, and works safely and effectively.
They reduce human factor risks and increase the efficiency of people in all key business processes, including system and application development, support, and operation.
Start AWR is a platform to teaching behavior safety skills with the help of online courses and tests, to include scenarios and templates of simulated attacks; helps to develop skills to counter all types of digital attacks on people: when using email, websites, fake access points (WiFi), social networks, and instant messengers.
Start REQ is a software security requirements management system for developers, product owners, engineers, AppSec experts, and other members of product teams. As part of the DevSecOps processes, it helps to formulate and manage information security requirements for applications depending on existing threats and establish communication between security and development teams.
Start EDU is a platform to training teams in secure development skills. Based on specific job situations and contexts, the platform explains how to implement the set security requirements in the software being developed; helps the developer to learn how to write cleaner code with no vulnerabilities in place and without being distracted from current tasks devoting itself to information security training.
Start CTF is a practical security simulator in the online banking format; allows introducing teams to the topic of secure development in 4 weeks and getting a positive result from employee engagement: developers, engineers, and other members of product teams.
