Introducing the Mondoo Compliance Hub

About Mondoo

Mondoo was founded in 2020 by DevOps and security experts Soo Choi-Andrews, Christoph Hartmann, and Dominik Richter, who previously founded InSpec,, and OpenStack.

We've seen organizations struggle with security. It's complicated and expensive, and can be disastrous if done wrong. At Mondoo, we believe it shouldn't take you months or years to improve your security posture. We specialize in making complex processes easy to implement through automation and accessible content. We save organizations from drowning in "paper security" and let them focus on their business goals.

We're backed by Atomico, First Minute Capital, System.One and a number of angel investors including MongoDB Chairman of the Board Tom Killalea, Cisco Board Member and Intuit CTO Marianna Tessel, OneLogin (and former DocuSign) CISO Vanessa Pegueros, GitHub and Microsoft VP of Research Dr. Nicole Forsgren, Google VP of Product Bradley Horowitz, Red Hat VP of Transformation and Puppet co-founder Andrew Clay Shafer, Instana co-founder Mirko Novakovic, and SoundCloud and Dance co-founder Eric Quidenus-Wahlforss.

Mondoo team members (we call ourselves Mondoonauts) have been in the DevOps and security space for most of our careers. With our experience from Google, AWS, Salesforce, Equinix, NASA, Trend Micro, Auth0, and Chef Software, we know that hackers are getting more sophisticated. It's important that we make security automation easy and accessible for everyone.

Our Mission

Mondoo is creating a new way to help companies keep their users and data safe from hackers around the world. We want everyone to be secure, no matter their size and security expertise.


"One of the best ways to fight hackers and bad actors is to increase security expertise across the organization. Until now, the burden of keeping an organization safe has rested on the security team alone."

Soo Choi, CEO & Co-Founder
Courtesy of

We built Mondoo so DevOps, Security, and Development teams can automate their security and compliance for all types of infrastructure—cloud, OS, containers, on-premises, SaaS services—with a single, easy-to-use, policy-as-code platform.

Who we're for

Mondoo is for DevOps and Security teams who want to automate their compliance and improve their security posture. We are committed to helping everyone—from startups to the largest enterprises—automate their security and compliance.


"By empowering all infrastructure developers across the organization, Mondoo's solution dramatically improves the prospects of a company building and maintaining a robust security stance."


What makes us different?

You can start improving your security posture in minutes, not months. We do this through policy as code through our Policy Hub with official CIS certified policies out of the gate. You also have access to Mondoo curated policies or you can write your own.

You need continuous security. We want to make sure all your environments are secure from the start instead of just focusing on the production environment when it's audit time.

You can try Mondoo for free before you make any commitment. You don't have to talk to a salesperson or schedule a demo. Its hands on from the start. If you need support, come to our moderated community channel.

Copyright 2023 Mondoo, Inc. All rights reserved.
Privacy Policy | Terms of Service