Nokod Security delivers a security platform for no-code, Robotic Process Automation (RPA), and AI application development platforms. Pulse 2.0 interviewed Nokod Security co-founder and CEO Yair Finzi to learn more about the company.
Yair Finzi’s Background
Could you tell me more about your background? Finzi said:
“I have been in the cyber industry for more than 15 years, most of them as co-founder & CEO of cyber security startups. I’ve had the privilege of working across the full range of technology, from hardware security to high-level software security, first as an engineer and later as a business leader. Nokod Security is by far my most exciting career and entrepreneurship venture to date.”
Formation Of The Company
How did the idea for the company come together? Finzi shared:
“When my co-founder, Amichai Shulman, and I began exploring new and exciting areas, we quickly noticed the growing trend of no-code adoption. We couldn’t help but ask big questions about its security. As we uncovered answers, the idea naturally took shape.”
Favorite Memory
What has been your favorite memory working for the company so far? Finzi reflected:
“The first time I saw a batch with hundreds of production changes driven by our product’s insights, it was a powerful moment.”
Core Products
What are the company’s core products and features? Finzi explained:
“Nokod Security provides visibility, detection and remediation of security issues in applications created by no-code, robotic process automation (RPA) and AI platforms like Microsoft Power Platform, ServiceNow and UiPath.”
Challenges Faced
Have you faced any challenges in your work sector recently? Finzi acknowledged:
“One ongoing challenge we face is about raising awareness of the risks that are introduced when organizations adopt no-code platforms, without the right monitoring tools. A lot of enterprises assume that no-code platform providers have built-in security controls and guardrails that are effectively applied when users create applications or automations. Unfortunately, this is not the case—security in no-code environments requires a shared responsibility model between the platform and its users.”
Evolution Of The Company’s Technology
How has the company’s technology evolved since launching? Finzi noted:
“In the beginning, there was a question – whether our product could uncover meaningful security insights in production environments like Power Platform, UiPath, and ServiceNow. However, we quickly realized the challenge wasn’t a lack of security issues—it was the opposite. The sheer volume of vulnerabilities was overwhelming. To address this, we had to develop a robust set of capabilities, including sophisticated risk scoring, a prioritization system, and automated remediation, to efficiently manage and mitigate the high load of security concerns.”
Significant Milestones
What have been some of the company’s most significant milestones? Finzi cited:
“One of our most significant milestones has been successfully integrating with massive enterprise environments belonging to some of the world’s largest companies. Early on, we had the opportunity to help these organizations strengthen their security posture by identifying and mitigating risks in their no-code platforms. As our solutions proved their value, these early collaborations evolved into long-term partnerships, leading to major enterprise deals. This journey not only validated our technology but also reinforced our role as a trusted security provider in the no-code ecosystem.”
Customer Success Stories
When asking Finzi about customer success stories, he highlighted:
“Our success stories often involve securing large-scale environments with thousands of applications and automations. We not only detect security issues but also help organizations remediate them at scale. Among the many critical findings, a few stand out: In one instance, we discovered that an entire company’s salary data was inadvertently accessible to all employees. In another case, we identified that a company’s intellectual property had been mistakenly published to public URLs, leaving it exposed to anyone online. These discoveries underscore the importance of proactive security measures in no-code environments, preventing potentially severe data breaches before they occur.”
Differentiation From The Competition
What differentiates the company from its competition? Finzi affirmed:
“Nokod Security stands out for our ability to extend application security to the no-code domain—a space that has largely been overlooked. What truly sets us apart is our ability to remediate security issues at scale through automation, a capability unmatched in the market. Additionally, we address critical security challenges that arise from digital transformation, covering use cases that no other solution currently offers. Our unique approach ensures that enterprises can confidently adopt no-code platforms without compromising security.”
Additional Thoughts
Any other topics you would like to discuss? Finzi concluded:
“Nokod Security’s mission is to expand the scope of application security to cover a much broader range of enterprise assets. There’s still a disconnect in many organizations between what employees are actually doing and what security teams think they’re doing. While everyone acknowledges that Shadow Engineering is a growing challenge, it’s difficult to fully grasp its scale until you see its impact firsthand.”
“Beyond Nokod’s product, I encourage every security officer to take a closer look at the digital activities happening on the ground. These overlooked areas often create new attack surfaces—ones that threat actors are quick to exploit. Understanding and addressing these blind spots is crucial for staying ahead of emerging security risks.”
