Gomboc.AI

Gomboc.AI is a technology company.

Active

Website LinkedIn

Updated: Feb 17, 2026 ·

Recent News & Mentions

Feb 1, 2025FundingGomboc.AI - Seed Aug 1, 2023FundingGomboc.AI - Seed

Financial History

Gomboc.AI has raised $13.0M across 2 funding rounds. Most recently, it raised $8.0M Seed in February 2025.

Total Raised

$13.0M

Valuation

N/A

Funding Rounds Raised

Date	Round	Lead Investors	Other Investors
Feb 1, 2025	$8.0M Seed		Citi Ventures, Cyberstarts VC, Energy Impact Partners, Glilot Capital Partners, Hetz Ventures, TLV Partners, Jacques Benkoski, Matt Carbonara, Rakesh K. Loonkar, Shlomo Kramer
Aug 1, 2023	$5.0M Seed		Citi Ventures, Cyberstarts VC, Energy Impact Partners, Glilot Capital Partners, Hetz Ventures, TLV Partners, Jacques Benkoski, Matt Carbonara, Rakesh K. Loonkar, Shlomo Kramer

Financial History

Gomboc.AI has raised $13.0M across 2 funding rounds.

Total Raised

$13.0M

Valuation

N/A

Deep Dive

High-Level Overview

Gomboc.AI is a cybersecurity startup founded in 2022 that builds an AI-powered platform for automating cloud infrastructure security remediation. It serves DevOps and security teams at organizations using multi-cloud environments (AWS, Azure, GCP), solving the problem of manual vulnerability fixes and configuration drift by generating precise, policy-aligned Infrastructure as Code (IaC) fixes—such as for Terraform, CloudFormation, and Puppet—that integrate directly into CI/CD pipelines via pull requests.[1][2][3][6] This slashes remediation time from days to seconds, eliminates alert fatigue from tools like Wiz, Orca, and Prisma Cloud, and ensures compliance with standards like PCI, HIPAA, NIST, CIS, and SOC 2, with reported ROI including $100K savings per cloud workload and 11x risk reduction.[1][3][4]

The platform targets industries like financial services, government, media, healthcare, and more, with early traction shown in case studies: a leading financial data company reduced manual IaC reviews by 30% across 1,000+ repositories, saving 250+ hours quarterly.[5] Backed by a $13M seed round, Gomboc.AI has 15-19 employees across New York (HQ) and California, focusing on deterministic AI that avoids hallucinations for trustworthy, auditable fixes.[2][3][8]

Origin Story

Gomboc.AI was founded in 2022 in New York, New York, by cybersecurity experts Ian Amit and Jonathan Desrocher (with some sources noting Matt Sweeney as a co-founder).[2] The founders drew from deep industry experience—Amit is known for vulnerability research and bug bounties—to address a core pain point: cloud security teams drowning in alerts while DevOps struggles with manual IaC fixes, leading to delays, errors, and compliance risks.[1][2][7]

The idea emerged amid booming cloud adoption post-2020, where misconfigurations cause most breaches, but tools only flagged issues without fixing them. Early traction came from integrations with major CSPM vendors (Wiz, Orca, Prisma Cloud) and GitOps workflows, culminating in a $13M seed raise to scale their deterministic AI approach—engineered for precision in IaC generation rather than generic AI outputs.[1][3][8] Pivotal moments include AWS Marketplace listing and government-focused partnerships via Carahsoft, proving viability in regulated sectors.[4][6]

Core Differentiators

Deterministic AI for IaC Fixes: Unlike probabilistic LLMs that hallucinate code, Gomboc uses "the right kind of AI" to generate precise, context-aware, standards-aligned Terraform/CloudFormation/Puppet fixes with full documentation and policy links—delivered as ready-to-merge PRs.[1][3][7]
Seamless Integrations & Workflow Fit: Direct hooks into Wiz, Orca, Prisma Cloud alerts; GitHub/GitLab PRs; CI/CD pipelines—turns alerts into fixes in seconds, reducing backlogs by 80%, toil by 50+ days/year per workload, and CSPM gaps from 20 days to 2.[1][3][5]
Policy-to-Code Automation: Users define policies (e.g., NIST, HIPAA); platform auto-generates/enforces IaC, scans repos, and prevents drift—auditable for FOIA/compliance with nightly cloud provider updates.[3][4]
Proven ROI & Developer Experience: 12:1 efficiency vs. conventional tools; self-service for engineers; centralized dashboards; out-of-box support for key stacks, freeing teams for high-value work.[3][5]

Role in the Broader Tech Landscape

Gomboc.AI rides the AI-augmented GitOps and shift-left security wave in cloud-native ecosystems, where IaC (Terraform et al.) dominates but misconfigs fuel 80%+ of breaches amid exploding multi-cloud complexity.[1][3] Timing is ideal: post-2022 AI boom enables deterministic models for code-gen, while CSPM fatigue (from Wiz/Orca) demands automation—Gomboc bridges scanning-to-remediation, influencing DevSecOps by embedding security in developer workflows without friction.[1][7]

Market tailwinds include regulatory pressures (e.g., SEC cybersecurity rules, GDPR evolutions) and cloud spend growth (projected $1T+ by 2030), favoring tools that cut costs/risks for enterprises.[4][6] It shapes the ecosystem by setting a standard for auditable AI in compliance-heavy sectors like finance/government, potentially accelerating adoption of AI agents in infra security and reducing vendor lock-in via multi-cloud support.[2][4][5]

Quick Take & Future Outlook

Gomboc.AI is poised to dominate IaC security automation, expanding from seed-stage integrations to full-suite offerings like agentic remediation across more IaC tools and clouds. Upcoming trends—agentic AI, zero-trust infra, and AI governance—will amplify its edge, especially as breaches from drift rise; expect Series A funding, enterprise wins in regulated verticals, and partnerships with Big 3 clouds.[3][8]

Its influence could evolve from niche fixer to ecosystem orchestrator, powering "security-by-default" in GitOps, much like how Snyk transformed SCA—ultimately making cloud security as automated and reliable as the infra it protects.[1][7]

Sources

Frequently Asked Questions

How much funding has Gomboc.AI raised?

Gomboc.AI has raised $13.0M in total across 2 funding rounds.

Who are Gomboc.AI's investors?

Gomboc.AI's investors include Citi Ventures, Cyberstarts VC, Energy Impact Partners, Glilot Capital Partners, Hetz Ventures, TLV Partners, Jacques Benkoski, Matt Carbonara, Rakesh K. Loonkar, Shlomo Kramer.