Ermetic

Based in Tel Aviv, Israel, Ermetic develops cloud security software that helps enterprise organizations manage access and permissions across multi-cloud environments. The company provides a cloud-native application protection platform securing infrastructure across major cloud providers, generating an estimated $19.2 million in annual revenue prior to its exit. Before its acquisition, the enterprise software provider raised $100 million in total venture funding from prominent backers including Accel, Norwest Venture Partners, and Target Global. In September 2023, cybersecurity firm Tenable acquired the business for $265 million, comprising $240 million in cash and $25 million in restricted stock. At the time of the transaction, the organization maintained a global workforce of approximately 170 employees across its primary offices in Israel and the United States. Ermetic was founded in 2019 by Shai Morag, Michael Dolinsky, Sivan Krigsman, and Arick Goomanovsky.

High-Level Overview

Ermetic was a cybersecurity startup that built a comprehensive SaaS cloud security platform for AWS, Azure, and GCP environments, unifying cloud infrastructure entitlement management (CIEM) and cloud security posture management (CSPM).[1][2][3] It served enterprises and organizations managing complex multicloud setups, solving critical problems like excessive permissions, toxic access combinations, identity risks, and compliance gaps by providing asset discovery, risk prioritization, auto-remediation, anomaly detection, and zero-trust enforcement.[1][2][5] Ermetic enabled security teams to reduce attack surfaces, detect threats, and minimize breach blast radius without needing deep cloud expertise, integrating AI for vulnerability management.[1][2]

The company demonstrated strong growth momentum as a leader in CNAPP (cloud-native application protection platform), pursuing FedRAMP authorization for U.S. federal use, before being acquired by Tenable Holdings, Inc., a major exposure management provider serving 43,000 organizations including 60% of Fortune 500 firms.[3][6][7]

Origin Story

Ermetic emerged as a cybersecurity startup focused on securing cloud infrastructure, identities, and workloads amid the rapid expansion of multicloud adoption.[5] While specific founders and exact founding year details are not detailed in available sources, the company quickly gained traction by addressing core cloud security pain points like permission sprawl and least-privilege enforcement across AWS, Azure, and GCP.[1][2][8] Pivotal moments included developing its identity-first architecture for visualizing "toxic scenarios" risking data access, building a customer base, and initiating FedRAMP processes for government viability.[2][6][7] This positioned Ermetic for acquisition by Tenable in 2023, marking a key evolution from standalone innovator to integrated powerhouse in proactive security.[3][4]

Core Differentiators

• Identity-First Architecture: Provides deep visibility into effective permissions and risky access paths, unifying CIEM and CSPM to reveal and mitigate "toxic" combinations putting data at risk—unlike siloed tools.[1][2]
• Holistic Risk Management: Full-stack coverage from asset discovery and AI-prioritized remediation to real-time anomaly detection, compliance auditing, and policy enforcement, simplifying multicloud security.[1][2][3]
• Proactive and Guided Remediation: Auto-remediation, blast radius reduction, and contextual prioritization make it accessible for non-experts, integrating with existing stacks for centralized control.[1][2][4]
• Enterprise-Grade Scalability: SaaS model supports complex environments, with FedRAMP pursuit for regulated sectors, setting it apart in speed, ease, and zero-trust implementation.[6][7]

Role in the Broader Tech Landscape

Ermetic rode the explosive growth of multicloud adoption, where organizations face ballooning identities, infrastructure complexity, and breach risks from over-privileged access—trends amplified by hybrid work and AI-driven threats.[3][4][5] Its timing was ideal post-2020 cloud migrations, when fragmented tools overwhelmed CISOs, making unified CNAPP/CIEM solutions essential amid rising ransomware and compliance mandates like FedRAMP.[1][6][7] Market forces favoring Ermetic included demand for exposure management over reactive vulnerability scanning, influencing the ecosystem by accelerating Tenable's shift to contextual, preventive security across on-prem and cloud.[3][4] Post-acquisition, it bolsters industry standards for prioritizing business-risk-aligned remediation, reducing silos in a $100B+ cybersecurity market.

Quick Take & Future Outlook

Now integrated into Tenable's One Exposure Management Platform and Cloud Security offerings, Ermetic's technology enhances AI-driven risk insights, unified CNAPP, and remediation for 43,000+ customers, solidifying Tenable's cloud leadership.[3][4] Trends like identity explosion, zero-trust mandates, and regulated cloud adoption (e.g., FedRAMP) will amplify its impact, potentially expanding to more hyperscalers and AI workloads. Expect deeper ExposureAI integration and broader ecosystem influence, evolving from a standalone platform to a foundational layer in proactive, business-contextual security—proving how targeted cloud innovators scale through strategic acquisitions.