Skip to main content

September 2024

CYBERSECURITY

Tamnoon Raises $12M Series A Fueling First Hybrid Human-AI Managed Cloud Security Remediation Service

Fusing Artificial Intelligence (AI) and Human Intelligence (HI) to deliver the only managed service that reduces critical cloud exposures by 90% under 90 days.

Tamnoon, a leader in Managed Cloud Security Remediation, today announced it has raised $12 million in Series A funding. The round was led by cybersecurity investment firm Bright Pixel Capital (formerly Sonae IM), with participation by new investors Blu Ventures and Mindset Ventures as well as existing investors Merlin Ventures, Secret Chord Ventures, Inner Loop Capital, and Elron Ventures.

Tamnoon is the first and only hybrid human-AI managed service developed from the ground up specifically for cloud security remediation. Founded by cloud security and AI/ML industry veterans, Tamnoon fuses artificial intelligence (AI) with human intelligence (HI) to provide an expert guided remediation process at scale for the cloud that does not break business operations. Tamnoon reduces cloud exposures and enhances cloud security by optimizing prioritization, triage, remediation, and prevention processes for both pre and post deployment, contributing to a more robust and mature Continuous Threat Exposure Management (CTEM) program.

โ€œNeither fully automated nor human-driven cloud remediation approaches alone can address the complexity of cloud security posture management programs. The idea of relying entirely on automation in remediation is not feasible. It is too risky to apply in critical production environments without human oversight,โ€ said Marina Segal, CEO and Co-founder of Tamnoon. โ€œTamnoon combines our powerful, purpose-built AI technology for cloud remediation, guided by cloud security experts, to safely reduce critical threat exposures to near zero in just months after deployment. We are grateful to our investors, partners, and customers for supporting us in this mission.โ€

As more organizations shift to the cloud and invest in visibility and cloud risk detection solutionsโ€”such as cloud-native application protection platforms (CNAPP) and cloud security posture management (CSPM)โ€”they demand a similarly scalable approach to the remediation process. On average, it takes 145 hours (approximately six days) for a cloud security alert to be resolved; nearly half of organizations see up to 50 misconfigurations per day; and nearly half of cyber security professionals cite a lack of qualified staff as the biggest challenge when protecting cloud workloads. While the idea of pure auto-remediation is an appealing approach, poorly implemented automation can do more harm than good; modifying complex cloud environments in production without proper oversight can cause operational outages. Thatโ€™s why studies show that only 9% of cloud misconfigurations are fixed in real time with automation today.*

Tamnoon customers report significant improvements in their cloud security operations, with 90% critical cloud threat exposure reduction within the first 90 days of service, and they invest just 10% of the resources they would typically need using traditional professional services.

โ€œAs an early investor in the high-growth MDR space, we see Tamnoon transforming cloud security in the same way MDR revolutionized the SOC. By integrating powerful AI with expert human oversight, Tamnoon ensures remediations are efficient and minimize the risk of disrupting production environments,โ€ said Marcos de Castro Osรณrio, Investment Director at Bright Pixel. โ€œAs workloads move to the cloud and infrastructure grows more complex, visibility alone can overwhelm teams with noise. Tamnoon addresses this by streamlining prioritization and remediation, positioning itself to drive significant market impact in an era where resource efficiency is paramount. Weโ€™re excited to partner with the Tamnoon team and support their next phase of growth.โ€

Tamnoon sits at a critical intersection of cloud security. โ€œGartnerยฎ forecasts spending on cloud security to grow 24% in 2024, making it the highest growth of all segments in the global security and risk management market**.โ€ Scaling security processes, accelerating the mean time to resolution (MTTR) on alerts, and decreasing attack surface, are at the top of the minds of security and risk leaders of companies that have transitioned to the cloud. Customers rely on Tamnoon to prioritize and fix critical and high CNAPP/CSPM alerts, minimize MTTR, and get the full value of their cloud security stack while enabling collaboration between security and DevOps teams.

โ€œStrengthening our cloud security posture is a key business imperative, and Tamnoonโ€™s innovative blend of hybrid human/AI managed service has delivered real, measurable results in a fast and efficient way for our organization,โ€ said Brian DiPietro, Global Chief Information Security Officer at Warner Music Group. โ€œWith Tamnoon, weโ€™ve been able to quickly fix misconfigurations and accelerate our cloud security maturity while ensuring operational continuity. This has allowed us to maintain high performance levels while meeting critical KPIs and SLAs.โ€

This new investment brings Tamnoon’s total funding to over $18 million, just under one year after completing its Seed round led by Merlin Ventures and Secret Chord Ventures. Since then, Tamnoon has more than doubled its customer base and now serves organizations across various industries throughout North America, including insurance, entertainment, healthcare, retail, and professional services. Committed to building the cloud partner ecosystem to ensure the most comprehensive and effective managed offering, Tamnoon integrates with all leading cloud CNAPP/CSPM solutions including Wiz, Orca Security, AWS Security Hub, Check Point CloudGuard, Palo Alto Networks Prisma Cloud, CrowdStrike, Microsoft Defender for Cloud, Google Cloud Security Command Center and Oracle Cloud Guard.

Tamnoon will be using the funds to accelerate the product roadmap, expand the partnership ecosystem, and continue to drive innovation in managed cloud security remediation. One of the companyโ€™s latest patent pending innovations for proactive cloud exposure management โ€” Tamnoon Prevent โ€” is the first in the industry to provide real time prevention of cloud vulnerabilities and misconfigurations by stopping non-secure configurations created in the console from being deployed.

*State of Cloud Security Risk, Compliance, and Misconfigurations
**Gartner Newsroom, The Expanding Enterprise Investment in Cloud Security, Lawrence Pingree, June 5, 2024
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and
internationally and is used herein with permission. All rights reserved.

About Tamnoon

Tamnoon is the Managed Cloud Security Remediation service focused on mitigating cloud security risks. A unique fusion of human intelligence (HI) and Artificial Intelligence (AI) technology, that helps cloud security teams to achieve 90% of exposure reduction in 10% of the time and effort, while keeping developers happy. Tamnoon was selected as an RSA Conference Launch Pad 2024 Finalist. Visit Tamnoon at https://tamnoon.io/.

About Bright Pixel Capital

Bright Pixel Capital, formerly known as Sonae IM, is the technology investment arm of the multinational group Sonae. With special focus on cybersecurity, infrastructure software, retail technologies, business applications and emerging tech, it has a portfolio of more than 50 companies, from early to growth stages. Bright Pixel Capital acts as a partner that brings specialized know-how, global footprint, and a wealth of experience in helping companies from early stage to IPO. Find out more at brpx.com.