CybSafe is a London‑based human risk management company that builds a behavioral‑science and data‑driven platform to reduce cybersecurity risk caused by people through personalized training, nudges, phishing simulation and behavioral analytics[3][2].
High‑Level Overview
- Mission: CybSafe’s stated mission is to reshape how organisations tackle human cyber risk by combining behavioral science, data and machine learning to make security “empowering, not punishing,” and to help people build safer habits[3].
- Investment philosophy / Key sectors / Impact on startup ecosystem: As a portfolio company rather than an investment firm, CybSafe itself does not have an investment mandate; instead it serves regulated and high‑risk sectors such as banking, insurance, legal and technology by improving workforce cyber behaviour and compliance, which in turn raises baseline security standards across those industries[2][3].
- Product & customers: CybSafe builds a Human Risk Management platform that delivers security awareness microlearning, phishing simulation, behavioral analytics, risk measurement and automated interventions for security teams and end users in enterprises[3][2].
- Problem solved & growth momentum: The company addresses the problem of human‑caused cyber incidents by measuring behaviours, applying evidence‑based interventions and surfacing human risk to security teams; it has raised institutional funding (including Series A and Series B rounds) and expanded internationally, reflecting growing traction for data‑driven human risk approaches[4][3].
Origin Story
- Founding and founders: CybSafe was founded in 2015 (often cited as 2015–2017 in profiles) and is led by founder and CEO Oz Alashe, who positioned the business around behavioral science rather than traditional rote awareness training[1][4].
- How the idea emerged: The company emerged from the observation that conventional security awareness—information dumps and simulated phishing—did not reliably change behaviour, so the team combined behavioral science, a security behaviour database (SebDB) and machine learning to create personalised, measurable interventions[3][4].
- Early traction / pivotal moments: Early differentiation came from building a catalogue of security behaviours and evidence‑based interventions; notable funding milestones include a $7.9M Series A and a later $28M Series B led by Evolution Equity Partners, which signalled investor conviction in the behavioural, data‑driven approach[4].
Core Differentiators
- Evidence‑based interventions: CybSafe grounds content and nudges in behavioral science and testing rather than relying solely on awareness modules or punitive metrics[3][4].
- Security behaviour database (SebDB): The company maintains a purpose‑built database of security behaviours that powers analytics and tailors interventions for measurable behaviour change[3].
- Behavioral analytics & ML: Use of machine learning to detect patterns in user behaviour and to prioritise and automate interventions for security teams differentiates it from traditional LMS or phishing‑only vendors[3][4].
- Focus on outcomes vs. activity metrics: CybSafe emphasizes human risk measurement (risk outcomes) over simple completion or click rates, giving security leaders visibility into where real risk exists[4][2].
- Enterprise sector focus & compliance suitability: Targeting regulated sectors (banking, insurance, legal, large enterprise) with analytics and reporting suitable for compliance and risk teams helps adoption in higher‑stakes environments[2].
Role in the Broader Tech Landscape
- Trend aligned: CybSafe rides the broader shift toward “human risk management”—treating people as part of the security control plane and using data/AI to manage that risk—rather than treating security solely as technology or one‑off training[3][4].
- Timing: The rise of remote/hybrid work, increasing social engineering threats, and regulatory pressure for demonstrable security culture make behaviour‑centric solutions more relevant now than conventional awareness programs[3][6].
- Market forces: Demand for measurable, auditable human risk metrics and adaptive training drives interest; growth in enterprise SaaS and AI/ML capabilities enables scale and personalization of interventions[4][3].
- Ecosystem influence: By promoting a science‑first approach and providing behavioural risk data (SebDB), CybSafe helps shift industry standards toward outcome‑oriented human risk measurement and gives security teams tools to integrate people risk into broader risk management programs[3][4].
Quick Take & Future Outlook
- What’s next: Expect continued product evolution around AI/ML personalization, deeper integrations with security operations and risk platforms, and expansion into adjacent compliance and cyber resilience use cases as customers demand consolidated human risk signals[3][5].
- Trends that will shape them: Wider adoption of human risk management, regulatory scrutiny of cyber culture and AI‑driven social engineering will increase demand for behaviorally informed, measurable solutions[4][5].
- Potential influence: If CybSafe continues to scale its behavioural dataset and maintains rigorous evidence for interventions, it could become a de facto standard for quantifying and managing human cyber risk inside enterprises and influence how vendors measure security culture[3][4].
Quick tie‑back: CybSafe positions itself not as another training vendor but as a data‑and‑science platform that treats people as a risk control to be measured and improved—an approach that has attracted customer and investor traction and that aligns with rising market demand for measurable human risk management[3][4].
(Statements above are drawn from CybSafe’s company materials and industry reporting describing its platform, behavioural approach, sector focus and funding milestones[3][4][2][1].)
