Cyb3r Operations, a London-based cybersecurity startup focused on third-party risk management, has raised $5.4m (£4m) in fresh funding to help organisations gain continuous visibility into cyber risks that sit beyond their direct control.
The funding round was led by Octopus Ventures, with follow-on participation from Pi Labs. The latest raise brings Cyb3r Operations’ total funding to $6.75m (£5m).
Third parties are now involved in more than a third of major cyber incidents, it said, yet many organisations still depend on annual questionnaires, spreadsheets and static audits to manage these exposures.
According to the company, such approaches become outdated almost immediately, particularly as businesses rely on expanding ecosystems of SaaS tools, cloud platforms, AI applications and external suppliers.
Cyb3r Operations was founded to replace these fragmented and manual processes with continuous, automated oversight that integrates across an organisation’s technology stack. The platform enables large enterprises to identify and monitor third-party cyber risks across their supply chains in real time, addressing areas that are often missed by traditional assessments.
Rather than generating abstract risk scores or simplified grades, the platform highlights which external relationships matter most, how risks are evolving and where security teams should prioritise action. It also provides insight into vulnerabilities across third-party ecosystems, including undisclosed sanctions risks, shadow IT, fourth-party exposure and broader supply-chain weaknesses.
The newly raised capital will be used to scale the platform further, deepen its threat intelligence capabilities and support a growing number of organisations seeking to manage third-party and supply-chain cyber risk more effectively.
Cyb3r Operations founder and CEO Vincent Cook said, “One of the biggest problems in cybersecurity today isn’t just how advanced threat actors are getting. It’s that we’re stumbling over our own processes. Organisations lack basic visibility into where risk actually sits.
“Exporting vendor lists from CRM or procurement systems and manually uploading them into another siloed tool is no longer good enough. Most organisations have developed an allergic reaction to third-party risk management because the market is full of meaningless risk scores and static assessments that don’t reflect how companies actually work.
“Real risk sits in relationships, dependencies, employee exposure, and how those things change over time. Our mission is to enable organisations the ability to continuously detect, assess, and respond to threats in order to stay ahead.”
Read the daily FinTech news
Copyright © 2025 FinTech Global
Copyright © 2018 RegTech Analyst
