Bot Memo’s dataset tracks 664 AI cybersecurity deals from January 2024 through March 2026, totaling $28.9B in funding. The 15 AI cybersecurity startups on this list account for $12.49B of that total, and the capital keeps accelerating.
The global cybersecurity market hit $218.98 billion in 2025 and is projected to reach $699.39 billion by 2034. AI-powered security is the top investment priority for 36% of enterprise security leaders.
On this page
- What Is AI Cybersecurity? How Startups Are Using AI to Stop Threats
- Top 15 AI Cybersecurity Startups by Total Funding (2024–2026)
- How These Startups Raised $28.9B: Funding Breakdown by Stage
- AI Cybersecurity Sub-Verticals: Cloud, Endpoint, Identity, and Beyond
- Where AI Cybersecurity Startups Are Concentrated: Geography and Investor Hubs
- What to Look for When Evaluating AI Cybersecurity Companies
- FAQ: AI Cybersecurity Startups
- Methodology
What Is AI Cybersecurity? How Startups Are Using AI to Stop Threats
AI cybersecurity refers to security products that use machine learning, natural language processing, or large language models to identify and neutralize threats faster than rule-based systems. Traditional security tools rely on known signatures. AI-powered platforms analyze behavioral patterns across millions of endpoints in real time, flagging anomalies that signature-based tools miss entirely.
The urgency is quantifiable. Ransomware was involved in 44% of breaches in 2025, up from 32% in 2024, and 30% of breaches now involve third-party vendors, double the prior year’s rate. The average cost of a data breach reached $4.44 million globally in 2025.
AI cybersecurity startups attack these problems across multiple vectors. Abnormal Security uses behavioral AI to detect email threats that bypass traditional filters. Cyera applies AI natively to data security posture management, protecting sensitive data across cloud environments. SandboxAQ combines AI with post-quantum cryptography, securing networks against both current and future threats. It recently signed a five-year Pentagon contract to protect U.S. defense systems.
The common thread: these companies use AI to automate detection and response at speeds no human security team can match, processing billions of signals to surface real threats from noise.
Top 15 AI Cybersecurity Startups by Total Funding (2024–2026)
The following ranking is based on total funding tracked in the Bot Memo database across 664 AI cybersecurity deals from January 2024 through March 2026. Companies span AI Native (AI is foundational), AI Augmented (existing products enhanced with AI), and AI Application (established platforms with AI features) categories.
| Rank | Company | Total Funding | Stage | HQ | AI Type |
|---|---|---|---|---|---|
| 1 | Black Duck Software (formerly Synopsys SIG) | $2.1B | Growth | Burlington, MA | AI Augmented |
| 2 | Veeam | $2.0B | Growth | Seattle | AI Application |
| 3 | Venafi | $1.54B | Acquired (CyberArk) | Salt Lake City | AI Augmented |
| 4 | Cyera | $1.54B | Series C–F | NYC / Tel Aviv | AI Native |
| 5 | Wiz | $1.0B | Series E | NYC | AI Application |
| 6 | Saviynt | $700M | Series B | El Segundo | AI Augmented |
| 7 | ReliaQuest | $500M | Growth | Tampa | AI Augmented |
| 8 | NinjaOne | $500M | Series C | Austin | AI Augmented |
| 9 | Kiteworks | $456M | Growth | San Mateo | AI Application |
| 10 | SandboxAQ | $450M | Series E | Palo Alto | AI Native |
| 11 | Armis | $435M | Pending Acquisition | San Francisco | AI Augmented |
| 12 | Cato Networks | $359M | Series G | Tel Aviv | AI Augmented |
| 13 | ID.me | $340M | Series E | McLean, VA | AI Augmented |
| 14 | Cribl | $319M | Series E | San Francisco | AI Application |
| 15 | Abnormal Security | $250M | Series D | San Francisco | AI Application |
Source: Bot Memo analysis of 664 AI cybersecurity deals, January 2024 – March 2026
Company Highlights
Cyera stands out for velocity. The data security platform raised $1.54B across four rounds, reaching a $9 billion valuation in January 2026, up from $6B just six months earlier. Cyera reports securing data for 20% of the Fortune 500.
Wiz made the biggest headline in cybersecurity M&A history. Google completed its $32B acquisition of Wiz on March 11, 2026, the largest cybersecurity acquisition ever. Wiz raised $1.0B in its Series E before the deal closed, validating cloud security as a category worth tens of billions.
Saviynt brings AI-powered identity governance to the enterprise. With a KKR-led $700M Series B round, the El Segundo-based company automates identity access decisions, a critical compliance requirement as enterprises manage thousands of cloud-native applications.
SandboxAQ occupies a unique position at the intersection of AI and quantum computing. Its AQtive Guard platform helps organizations inventory cryptographic assets and prepare for post-quantum threats, a concern that drove a five-year Pentagon partnership in late 2025.
Armis focuses on agentless asset intelligence, protecting IoT and OT devices that traditional endpoint security solutions cannot reach. Its Goldman Sachs-led $435M round valued it at $6.1B before ServiceNow announced a $7.75B acquisition in December 2025, expected to close in H2 2026.
How These Startups Raised $28.9B: Funding Breakdown by Stage
The 664 AI cybersecurity deals in Bot Memo’s dataset distribute unevenly across funding stages, revealing where investor conviction is strongest.
| Funding Stage | Deal Count | Share of Total Deals |
|---|---|---|
| Seed | 237 | 35.7% |
| Series A | 175 | 26.4% |
| Series B | 80 | 12.0% |
| Series C | 36 | 5.4% |
| Growth | 33 | 5.0% |
| Other stages | 103 | 15.5% |
Source: Bot Memo analysis of 664 AI cybersecurity deals
Seed and Series A together account for 62.1% of all deals in the 2024–2026 period. The cybersecurity startup pipeline remains active, with new companies entering at an aggressive rate. The $12.0M median deal size across the 664 deals tracked from January 2024 through March 2026 reflects the capital-intensive nature of building security platforms that must process data at enterprise scale. For how cybersecurity stacks up against every other sector, see our AI startup funding statistics.
The concentration narrows sharply at later stages. Only 36 deals reached Series C, and 33 received growth-stage capital. This funnel suggests that while cybersecurity attracts early-stage enthusiasm, the path to scale separates a small group of winners, the 15 companies above among them.
Growth-stage deals command outsized capital. Black Duck Software (formerly Synopsys Software Integrity Group) was acquired by Clearlake Capital and Francisco Partners for $2.1B, and Veeam completed a $2.0B TPG-led secondary sale. These rounds reflect private equity and growth investors betting that AI-augmented security platforms can compound revenue before an IPO or strategic exit.
AI Cybersecurity Sub-Verticals: Cloud, Endpoint, Identity, and Beyond
AI security companies cluster into distinct sub-verticals, each addressing a different attack surface.
Cloud Security
Cloud security draws more funding than any other cybersecurity sub-vertical in Bot Memo’s dataset. Wiz built a cloud-native security platform that scans entire cloud environments without agents. Cato Networks in Tel Aviv combines SD-WAN with cloud security into a single SASE (Secure Access Service Edge) platform, raising $359M through Series G. As enterprises run more workloads in multi-cloud environments, that lead keeps widening.
Data Security and Privacy
Cyera leads this sub-vertical with its AI-native data security posture management platform. Kiteworks takes a different angle, securing sensitive content communications (email, file sharing, managed file transfer) with $456M in growth-stage funding. Content-level security is growing as compliance requirements like GDPR, HIPAA, and CMMC tighten.
Identity and Access Management
Saviynt and ID.me represent two sides of identity security. Saviynt automates enterprise identity governance and compliance workflows. ID.me provides identity verification for government and commercial use cases, having raised $340M to scale its platform across federal agencies and enterprise customers.
Endpoint and IoT Security
Armis secures unmanaged devices, industrial IoT, medical devices, OT systems, that traditional endpoint security solutions cannot protect. NinjaOne takes the IT management angle, unifying endpoint management, patching, and backup with security features, including drive encryption and antivirus management, for IT teams overseeing thousands of devices across distributed environments.
Observability and Threat Intelligence
Cribl does not detect threats directly. Instead, it routes and processes security data at scale, giving security teams control over the observability pipeline. ReliaQuest provides an AI-powered security operations platform that unifies detection and response across an enterprise’s existing security stack. Both companies solve the data overload problem, turning raw signals into findings security teams can act on.
Where AI Cybersecurity Startups Are Concentrated: Geography and Investor Hubs
The geographic distribution of AI cybersecurity deals is heavily skewed. 72.9% of all deals in the dataset are US-based. The top five metro areas tell the story.
| Metro Area | Concentration |
|---|---|
| San Francisco | Highest (Armis, Cribl, Abnormal Security) |
| New York | High (Wiz, Cyera US HQ) |
| Tel Aviv | High (Cyera R&D, Cato Networks) |
| London | Moderate |
| Palo Alto | Moderate (SandboxAQ) |
Source: Bot Memo analysis of 664 AI cybersecurity deals
San Francisco remains the densest cluster. Three of the top 15, Armis, Cribl, and Abnormal Security, are headquartered there. The city benefits from proximity to enterprise customers, cloud infrastructure providers, and a deep pool of security engineering talent. Its lead here tracks the broader concentration of AI startups across San Francisco.
Tel Aviv punches above its weight. Israel’s concentration of military cybersecurity expertise (Unit 8200 alumni) feeds directly into its startup pipeline. Cato Networks and Cyera both maintain R&D centers in Tel Aviv while serving global enterprise customers.
New York’s presence reflects the demand side. Financial services firms, the heaviest spenders on cybersecurity, cluster in New York, pulling security startups closer to their largest customers. Wiz chose NYC as its US headquarters for this reason, and it paid off with a $32B exit to Google.
Growth-stage specialists drive the investor side of this market. KKR backed both Saviynt and ReliaQuest. Andreessen Horowitz led Wiz’s Series E. Goldman Sachs Alternatives led Armis‘s $435M round before ServiceNow’s $7.75B acquisition bid. These firms are making concentrated bets that AI security companies will be the next generation of public cybersecurity platforms.
What to Look for When Evaluating AI Cybersecurity Companies
Not every company calling itself an “AI cybersecurity startup” uses AI meaningfully. Bot Memo classifies companies into AI Native, AI Augmented, and AI Application categories based on how central AI is to the product.
AI Native vs. AI Augmented matters. AI Native companies like Cyera and SandboxAQ built their platforms on AI from day one; the product would not exist without machine learning. AI Application companies like Veeam (founded 2006) and AI Augmented companies like Venafi (founded 2004) added AI capabilities to established products. Both models work, but they carry different risk and growth profiles. Teams building security tooling often overlap with the top AI developer tools.
Real-time detection speed. The best AI cybersecurity platforms process threats in milliseconds, not minutes. Ask whether the company’s automation replaces manual triage or merely surfaces alerts for human review. Abnormal Security blocks email threats autonomously; that is a different proposition than a tool that flags suspicious emails for a security analyst.
Data moat depth. AI models improve with more training data. Companies protecting thousands of enterprise environments, like Cyera’s 20% Fortune 500 penetration, accumulate proprietary threat data that new entrants cannot replicate quickly. This compounds over time.
Compliance coverage. Enterprise buyers increasingly require vendors to meet FedRAMP, SOC 2, ISO 27001, and industry-specific frameworks. SandboxAQ achieved FedRAMP Ready status in December 2025, opening the federal procurement channel. Compliance readiness separates enterprise-grade security solutions from early-stage products.
Funding trajectory. Rapid valuation growth signals market validation. Cyera’s valuation grew from $6B to $9B in six months. Conversely, companies still at Seed after several years may face product-market fit challenges.
FAQ: AI Cybersecurity Startups
Who are the top AI cybersecurity companies?
Based on Bot Memo’s analysis of 664 deals, the top AI cybersecurity companies by total funding are Black Duck Software (formerly Synopsys SIG, $2.1B), Veeam ($2.0B), Venafi ($1.54B), Cyera ($1.54B), and Wiz ($1.0B). These five companies alone account for $8.18B in tracked funding. The full ranking of 15 companies is detailed in the table above.
Who is the leader in AI cybersecurity?
Leadership depends on the metric. By funding velocity, Cyera leads, raising $1.54B across four rounds and reaching a $9B valuation by January 2026. By exit value, Wiz holds the record with Google’s $32B acquisition. By defense sector penetration, SandboxAQ leads with its Pentagon cryptography contract. No single company dominates every sub-vertical.
Can you make $500,000 a year in cybersecurity?
Senior cybersecurity roles at AI security companies regularly exceed $500,000 in total compensation. CISOs at enterprise security companies, VP-level engineering leaders, and founding team members at well-funded startups like those on this list command packages in that range. The talent shortage drives compensation upward, particularly for professionals with AI and machine learning expertise, with an estimated 4.8 million cybersecurity positions unfilled globally.
What is the 80/20 rule in cybersecurity?
The 80/20 rule (Pareto principle) applied to cybersecurity holds that 80% of security incidents stem from 20% of vulnerability types. In practice, this means patching the most commonly exploited vulnerabilities and enforcing basic hygiene (MFA, endpoint protection, email security) prevents the majority of breaches. AI cybersecurity startups like Abnormal Security apply this principle by focusing automation on the highest-volume attack vector, email, which accounts for a disproportionate share of initial compromise.
Methodology
This analysis is based on 664 AI cybersecurity deals tracked in the Bot Memo database from January 2024 through March 2026.
Data sources: Company announcements, press releases, regulatory filings, and newsletter monitoring across 900+ sources per week.
Filters applied: Companies classified as AI Native, AI Augmented, or AI Application with Industry Vertical containing ‘Cyber’, January 2024 through March 2026.
Currency: All amounts in USD.
Limitations: Valuation data is available for a subset of deals. Private company financials may not reflect the most recent round terms. Deals announced but not closed are excluded.


