Skip to main content
Prime Security Announces $20M Series A Led by Scale Venture Partners

How ThoughtSpot Scaled Security Coverage and Confidence in a High-Velocity Engineering Environment

“As our development velocity increased, especially with AI, we needed a force multiplier we could actually trust. Prime gives us consistent, high-quality security reviews and threat models across our entire surface area, and the confidence to operate at speed.”

Al Faiella, Sr. Director of Product Security

Results with Prime

security review capacity

100%

risk area coverage

Ready to rescue your team from insecure products?

Try Prime

About the company:

Company:

ThoughtSpot

Industry:

Data & Analytics Software

Country:

United States

Employees:

600+

Stack

  • GitHub
  • Jira
  • Confluence
  • GDrive

ThoughtSpot is a leading analytics platform that enables organizations to explore, analyze, and act on data at scale. As the product and platform continue to evolve, ThoughtSpot’s engineering teams ship rapidly across complex data pipelines, APIs, and customer-facing features, operating in an environment where development velocity is accelerating, particularly with the adoption of AI-powered tooling.

The Challenge

As ThoughtSpot’s development velocity increased, the security surface area expanded just as quickly. New features, architectural changes, and integrations were being introduced at a pace that made traditional security review models difficult to sustain.

AI-assisted development further amplified this challenge. While it significantly increased engineering speed, it also increased the volume and complexity of changes that needed security scrutiny, placing additional pressure on a finite security team.

This exposed several core issues

  • Growing surface area with limited review capacity
    • As engineering output scaled, it became increasingly difficult to maintain consistent security coverage across all work
  • Inconsistent depth and quality of reviews
    • Manual reviews and threat modeling varied depending on time, context, and reviewer availability
  • Confidence gaps at high velocity
    • The biggest challenge wasn’t just finding issues - it was having confidence that security decisions were sound, consistent, and defensible as speed increased

ThoughtSpot needed a force multiplier, one that could scale security coverage without compromising quality, consistency, or trust.

Working with Prime

ThoughtSpot adopted Prime’s Agentic Security Architect to scale security reviews and threat modeling across its expanding engineering surface area, without slowing development velocity or compromising trust.

With Prime in place:

  • Comprehensive surface-area coverage
    • Prime evaluates security risk across all planned engineering work, ensuring consistent coverage as development output increases. Security teams no longer have to choose between depth and breadth
  • High-quality, consistent reviews and threat models at scale
    • Prime acts as a true force multiplier, allowing the security team to operate at 5× capacity while maintaining consistent structure, depth, and quality across reviews and threat models

Trusted security decision-making at high velocity - As AI-driven development accelerates change, Prime delivers repeatable, trustworthy security guidance. The team can move faster with confidence, knowing decisions are consistent and aligned with how they assess risk.

Looking Ahead

ThoughtSpot plans to extend automated security intelligence directly into engineering workflows, enabling developers to consume security reviews and threat modeling as a self-serve capability. At the same time, the security team maintains centralized governance across all reviews, ensuring consistency, quality, and alignment with security standards. By validating security intent as work moves from design into code, ThoughtSpot can scale development velocity while preserving confidence, control, and trust across its entire security surface.