Cybersecurity

The agentic SOC is replacing the human analyst tier

A new class of AI-native security operations platforms is rendering the traditional human-staffed SOC economically obsolete. 7AI raised $130M from Index Ventures, Blackstone, Greylock, CRV, and Spark to deploy autonomous, reasoning-based agents that cut mean time to resolution from hours to minutes. Legion Security (backed by Coatue and Accel) and Prophet Security are automating entire threat investigation and resolution workflows. Exaforce is building an agentic SOC platform from scratch, while Artemis Global Technologies is positioning as a SIEM replacement — signaling that incumbents like Splunk and IBM QRadar face structural displacement, not just competition.

Anthropic's Mythos model generated a working Windows kernel exploit in 31 minutes, and Palo Alto Networks used the same tool to discover in 6 weeks vulnerabilities that would have taken 5–7 years of manual discovery. Wiz independently demonstrated AI-powered offensive research by discovering a critical GitHub vulnerability — a single Git push granting access to every repository. This collapses the patch window from weeks to minutes, making point-in-time penetration testing structurally inadequate and driving demand for platforms like Astra Security (autonomous pentesting, 266 Product Hunt votes), XBOW, Tenzai, and Terra Security.

Why it matters · Any enterprise still relying on annual red-team engagements is operating with a multi-month blind spot; continuous AI-native offensive testing is becoming a baseline security requirement, not a premium.

As AI agents multiply inside enterprise stacks, the permissions and access rights assigned to non-human identities are becoming the primary attack surface. Opal Security (AI-native access governance, $23M Seed) and Astrix Security (monitoring AI agents and API keys) are building purpose-built tooling for this gap. Zscaler's acquisition of Symmetry Systems and the sponsor prominence of Opal in newsletters — citing 80% of enterprise systems exposed through stale access — signal that legacy IAM vendors like Okta face a structural blind spot in the agentic era. Onyx Security (Israel) is further extending this to AI agent oversight and governance.

Why it matters · Identity is the new perimeter for the agentic enterprise, and the first platform to own non-human identity governance at scale will capture a category that existing IAM vendors are structurally ill-positioned to address.

The NATO Innovation Fund has become a direct venture investor — backing RevEng.AI's raise — marking a structural shift from Western defense alliances procuring cybersecurity to seeding it. CrowdStrike data shows China-linked actors account for over 58% of state-sponsored cyberattacks on tech firms, with AI intellectual property as the primary target. The U.S. national security presidential memorandum now explicitly addresses protecting AI models from espionage and distillation attacks, while Quantum Bridge Technologies and Lastwall (C$16M) are raising capital specifically for post-quantum cryptographic infrastructure.

Why it matters · Dual-use cybersecurity companies with defensible government distribution channels will command strategic premiums from both commercial VCs and sovereign/defense-linked capital pools.

Series B rounds are commanding disproportionate capital: $810M of the $1.9B deployed in 28 days sits in just 5 Series B deals, including Dragos's $600M growth round at a $12B valuation backed by Evolution Equity Partners, Temasek, Blackstone, and Coatue. Tenex.AI became a unicorn at Series B — described as structurally unusual and attributed to AI premium pricing in cybersecurity. Socket closed a $60M Series C at a $1B valuation. Meanwhile, seed rounds (13 deals, $286M) remain active, creating a barbell structure where brand-name platforms and very-early AI bets attract capital while mid-stage companies face a harder fundraising environment.

Why it matters · The barbell capital structure rewards category leaders and experimental seed bets disproportionately, compressing available funding for Series A/B companies that have not yet established dominant market position.