Onit Security has raised $11m in seed funding to tackle one of cybersecurity’s most persistent failings: the yawning gap between discovering a vulnerability and actually fixing it.
The round was led by Hetz Ventures and Brightmind Partners, with additional participation from a group of angel investors.
The company’s platform is designed to close the remediation bottleneck that has plagued security teams for decades. Rather than simply flagging vulnerabilities and generating tickets, Onit’s artificial intelligence agents prioritise exposures based on real business context, automatically identify asset ownership by drawing on institutional knowledge spread across fragmented data sources, and execute fixes without the manual hand-offs that typically slow response times to a crawl.
Once a security team defines a resolution strategy, the platform applies it to every similar exposure going forward, meaning progress compounds and remediation can occur at machine speed.
The urgency behind the company’s founding is stark. Security teams currently take an average of 32 days to remediate vulnerabilities, while attackers can exploit them in minutes. Nearly half of all vulnerabilities remain unresolved after 12 months, and with the number of Common Vulnerabilities and Exposures (CVEs) projected to exceed one million by 2030 — a 300% increase from 2025 — the backlog is only set to worsen.
The inspiration for Onit Security
The company was co-founded in part as a direct response to a real-world incident. A state-sponsored Iranian cyberattack on co-founder Ofer Amitai’s previous company exploited a known vulnerability that had been buried in an unmanageable backlog, illustrating precisely how broken prioritisation systems leave critical weaknesses exposed for months while threat actors move in within minutes.
The new capital will be used to accelerate product development and expand the company’s go-to-market efforts across additional sectors. Onit Security is currently working with Fortune 1000 customers and says it has helped reduce mean time to remediation by up to 87%.
The founding team brings considerable pedigree to the venture, having previously built and exited three companies: SCADAfence, acquired by Honeywell; Portnox, sold to private equity; and For-Each, acquired by Autodesk.
Onit Security CEO and co-founder Elad Ben Meir said, “Vulnerability management has been broken for 30 years. Security teams are weighed down by countless alerts, while attackers exploit the smallest window of inaction.
“Combining a deep understanding of business context alongside the agility to rapidly respond to and remediate emerging threats, Onit brings a potent mix of intelligence with speed, currently unmatched. We are automating remediation at pace, at scale and future-proofing enterprises as they grow and as the cyber landscape around them evolves.”
Copyright © 2026 RegTech Analyst
Copyright © 2018 RegTech Analyst
