Security doesn’t have to lag behind innovation
With Levo, it leads

As Engineering Leader at AppDynamics, Buchi helped unlock $100M+ in quarterly revenue by scaling the platform for enterprise demand.

He led the migration from a monolith to a micro services architecture, making enterprise adoption possible.

To manage this complexity, he led Kubernetes adoption years before it became mainstream.

This exposed him to how APIs, by modularizing functionality and enabling autonomous service scaling, accelerated deployments, integrations, and ultimately revenue growth.

Following the revenue surge driven by platform scalability, AppDynamics was acquired by Cisco.

And what surfaced during Cisco’s security review wasn’t surprising, but it was sobering: missing documentation, untracked APIs, and configuration risks that hadn’t been prioritized.

It was then that Buchi realized how unchecked velocity, while great for business, can damage customer trust and derail business growth.

At Traceable, Buchi began building API specific production tooling but realized that production guardrails were too little too late.

Every vulnerability found post release triggered manual triage, broken SLAs, and customer risk problems that could’ve been avoided with early detection.

What the industry lacked was a scalable and proactive system that could automate all shift left practices so only exploit-proof code reached production.

So he left with one conviction: security must be architected inside the SDLC, not bolted in at the end.

Buchi founded Levo to fix what security had gotten wrong for decades about Software not just for APIs.

He built a security engine that embeds all best practices directly into the SDLC automatically, proactively, continuously, and contextually.

Thereby shattering the assumptions that held AppSec back for decades:
That velocity and security can’t co-exist.
That shift left depends on devs maintaining docs.
That posture improvement requires cloud bloat and manual triage.

Levo was designed not to keep up with Software, but to stay ahead of it.

By 2023, Levo completed the core build of its runtime security platform, laying a strong technical foundation across discovery, visibility, and protection for modern API driven systems. With the platform production ready, Levo initiated its first formal go to market efforts, focusing on real customer environments rather than theoretical use cases.

Early engagement quickly validated strong market pull. Within the first few quarters of launching GTM, Levo.ai closed its first set of customers across North America and India, including large enterprises such as Square and leading fintechs like AngelOne. These early wins confirmed that the market is actively looking for a modern, runtime focused approach to API security that traditional tools were failing to deliver.

In 2024, LEVO moved from early traction to deeper market validation. The first cohort of customers successfully renewed, with product usage and adoption increasing multiple times over as Levo expanded its footprint across production environments. This reinforced confidence not only in the technology, but also in Levo’s ability to deliver sustained value at scale.

During this period, LEVO broadened its customer base to include regulators and large enterprises. The platform was adopted by institutions such as the Insurance Information Bureau of India, along with established organizations including Axis Finance, Axis Bank, and Five9. These deployments further validated LEVO’s relevance across highly regulated industries and complex enterprise environments, marking a clear transition from early adoption to proven enterprise readiness.

In 2025, Levo extended its proven runtime security to AI applications.

As enterprises adopted agents, LLMs, MCP servers, and autonomous toolchains, traditional edge controls could not see or explain their behavior.

This created a new risk surface machine-to-machine calls, prompt injection, data leakage, and privilege misuse.

By applying our runtime DNA of kernel level visibility, passive observability, and dynamic security testing, Levo became the first to unify API and AI Security Posture Management.

For enterprises, this meant full coverage and the confidence to scale AI safely, without slowing down the innovation