Lasso Security LLM Guardian
LLM security platform with shadow AI discovery and real-time threat protection.
Vendor Information
Lasso Security LLM Guardian Overview
Lasso Security LLM Guardian is an end-to-end GenAI security platform protecting every LLM interaction across cloud and on-premise deployments through shadow AI discovery, real-time threat detection, and policy enforcement. The platform addresses sophisticated threats including model theft, malicious code generation, prompt injection, data poisoning, supply chain attacks, and sensitive data disclosure through comprehensive monitoring of all GenAI tool usage across organizations.
LLM Guardian's Shadow AI Discovery autonomously uncovers all GenAI applications including the 55% of employees using unauthorized tools that bypass IT controls, providing continuous data-flow monitoring and observability. The platform deploys via Gateway, API, or SDK with one-line code integration, securing both internally developed LLM applications and employee use of third-party chatbots like ChatGPT, Gemini, and Claude. Advanced capabilities include Context-Based Access Control, real-time data masking, policy violation blocking, PII detection, and educational guidance for responsible AI usage.
Founded in Tel Aviv in 2023, Lasso raised $21 million from Entrée Capital, CyberArk Ventures, Singtel Innov8, and Samsung Next. Gartner named Lasso a Cool Vendor for AI Security in 2024 and representative vendor in its Market Guide for AI Gateway. The platform integrates with Cloudflare for network-level protection and is available in Microsoft Azure Marketplace, serving financial services, healthcare, government agencies (via Lasso Federal LLC), and regulated industries with HIPAA and GDPR compliance support.
Key Capabilities
Standardized capabilities mapped to this product's security niche
Detects and blocks adversarial inputs designed to override system prompts, extract training data, or redirect model behavior. Detection approaches include pattern matching, input semantic analysis, and secondary model classification.
Intercepts prompts and completions to prevent sensitive data (PII, credentials, internal IP), from being transmitted to external LLM services or returned in model responses.
Evaluates model outputs against content policy, data classification rules, and format expectations before delivery to end users, blocking responses containing sensitive data or policy violations.
Enforces IAM-style policies on LLM API access, controlling which users and applications can invoke which models and data sources, with audit logging.
Records prompts, completions, and metadata for all AI interactions with tamper-resistant storage, supporting compliance, forensics, and policy investigation.
Automatically discovers AI models, LLM API connections, ML pipelines, and AI-enabled SaaS applications in use across the organization, including those deployed without IT authorization.
Maps what data (including PII, PHI, and IP) flows into and out of AI models and APIs, identifying unintended exposure of sensitive data to external LLM services.
Maps the AI system inventory and associated controls to EU AI Act risk classification requirements and ISO 42001 AI management system controls.
Scores deployed AI models by risk level based on data sensitivity processed, deployment scope, capability classification, and applicable regulatory requirements.
Identifies AI systems processing sensitive or regulated data without appropriate controls: unencrypted PII in model inputs, PHI flowing to external APIs, IP in fine-tuning datasets.
Integrations
Compatible tools and platforms
Solution Details
Compliance & Certifications
Regulatory frameworks and security certifications
Deployment Options
Where and how this solution can be deployed
Support Channels
Available support and communication options
Pricing Model
How this solution is priced
How to buy
This profile hasn’t been claimed yet. Contact the vendor directly for pricing and purchasing options.
Is this your company?
Claim Your Profile