Above Security has emerged from stealth with $50 million in funding to tackle insider risk in what it describes as the “agentic era,” as artificial intelligence systems increasingly operate autonomously within enterprises.
The funding round was led by Ballistic Ventures, Merlin Ventures, and Norwest, with participation from Jump Capital and QPV Ventures. The company said it has already been generating revenue for 6 months, with enterprise customers rapidly deploying its platform without the need for traditional policy configuration.
Founded in 2025 by Aviv Nahum and Amir Boldo, both veterans of Israel’s elite Unit 8200, Above Security is positioning itself as a next-generation insider threat platform built for environments where both humans and AI agents act as “insiders.” The company argues that traditional approaches, such as data loss prevention and user behavior analytics, have failed to fully address insider risk, particularly as AI agents gain access to enterprise systems and operate at machine speed.
Above’s platform uses a network of specialized AI investigators to analyze behavior across identity systems, endpoints, SaaS applications, and AI environments. Its Arbiter engine focuses on intent determination by correlating behavioral signals rather than relying on static rules or anomaly detection. The company says this reduces false positives, minimizes manual investigation, and produces clear timelines that security, legal, and HR teams can act on.
The rise of AI-driven workflows is expanding the definition of insider risk. According to the company, AI agents increasingly have access to systems, take actions, and operate autonomously, yet remain largely invisible to traditional security tools. Above’s platform is designed to treat both human users and AI systems as potential insiders, applying the same investigative framework to each.
The company also highlighted that a large portion of insider risk is not malicious. Citing industry data, it noted that nearly half of breaches stem from non-malicious human or system errors, such as employees unintentionally exposing data or creating unsafe access patterns while trying to work more efficiently. Above’s approach emphasizes early detection and behavioral context, aiming to prevent both negligent and deliberate incidents.
Above Security has already been selected as one of the top companies in the 2026 Cybersecurity Startup Accelerator backed by CrowdStrike, AWS, and NVIDIA, and has built integrations across identity, endpoint, and SaaS ecosystems. The platform is targeted at organizations with more than 1,000 employees operating in SaaS-heavy environments.
With AI adoption accelerating across enterprises, the company is betting that insider risk management must evolve from reactive monitoring to proactive, AI-driven investigation, particularly as the line between human and machine actors continues to blur.
KEY QUOTES
“We invest in companies that redefine categories, not incrementally improve them. Above Security is doing exactly that, and we are tremendously excited to partner with CEO Aviv Nahum and the Above team as they build the next generation of insider risk management.”
Phil Venables, Partner, Ballistic Ventures
“Most insider incidents we see are negligence, not malicious activity, so Above’s coaching-first approach fits perfectly. Our biggest challenge was piecing together user activity across scattered systems. Above didn’t just detect threats, it delivered complete behavioral timelines and surfaced critical incidents within five days that we would have otherwise missed.”
Matt Wilmot, CISO, Merlin Entertainments
“Today’s insider risk management requires constant investigation by humans. That model simply doesn’t scale, and AI agents extrapolate this by orders of magnitude. AI agents are becoming insiders in everything but name. They have access, they take action, and they operate at machine speed, yet they’re largely invisible to existing insider risk programs.”
Aviv Nahum, Co-Founder And CEO, Above Security
“The rapid adoption of AI over the last five years has introduced new risks that require dedicated solutions. You can’t secure tomorrow’s organization if your definition of ‘insider’ stops at employees.”
Amir Boldo, Co-Founder And CPTO, Above Security
“In a future where AI will operate most complex systems, humans will not disappear, they will level up. Those who supervise and manage automation will hold real power within organizations. But with that power also comes risk: human error or an insider threat can have a much faster and far deeper impact. Above is building a protection layer that empowers people, reduces mistakes, and prevents insider threats before they become incidents. In an AI-accelerated world, true resilience begins with people.”
Shay Michel, Managing Partner, Merlin Ventures
“Insider threats represent one of the most critical and under-addressed challenges in cybersecurity today, accounting for nearly 30% of all security incidents. Aviv, Amir and the Above Security team have built an innovative approach that transforms how organizations detect and prevent these threats through real-time behavioral analysis and user education. We’re excited to partner with Above Security as they revolutionize insider risk management for the modern enterprise.”
Dror Nahumi, General Partner, Norwest
