Vega Security: Funding, Team & Investors | Startup Intros

Date	Round	Lead Investors	Other Investors
Sep 1, 2025	$60.0M Series A		Cyberstarts VC

Date

Round

Lead Investors

Other Investors

Sep 1, 2025

$60.0M Series A

Cyberstarts VC

Deep Dive

High-Level Overview

Vega Security (also known as Vega or Vega Cyber Solutions) is a cybersecurity startup developing an AI-native security analytics platform that enables real-time threat detection and investigation without data migration or ingestion into traditional SIEM systems.[2][3][4][5] Founded in 2024 by Unit 8200 alumni Shay Sandler (CEO) and Eli Rozen (CTO), it serves enterprises like Fortune 500 companies, financial institutions, and healthcare organizations such as UnitedHealth Group, solving the scalability issues of legacy SIEMs by querying data federated across data lakes, SIEMs, XDR platforms, and cloud storage using AI-powered analytics and normalized KQL queries.[2][3][4] The company has shown explosive growth, raising $185 million total—including a $120 million Series B in late 2025 at a $700 million valuation—while employing dozens across Tel Aviv and New York offices and delivering cost savings, faster response times, and improved MITRE coverage for SecOps teams.[4]

Note: Vega Security should not be confused with vega-security.com, a separate firm offering custom CCTV, access control, and network solutions unrelated to this cybersecurity venture.[1]

Origin Story

Vega Security emerged in 2024 from the expertise of founders Shay Sandler and Eli Rozen, both veterans of Israel's elite Unit 8200 cyber intelligence unit and early employees at Granulate (acquired by Intel), where they gained deep experience in cybersecurity, data analytics, and enterprise software under high-pressure conditions.[2][4] Recognizing the stagnation in the 20-year-old SIEM market—plagued by costly data ingestion, slow queries, and scalability limits for modern enterprises generating terabytes of logs daily—the duo built a federated platform that analyzes data in place, integrating AI for detection, automation, and contextual enrichment.[2][3][4] Early traction was rapid: within a year of meeting investors like Accel, Vega secured seed and Series A funding, followed by the massive Series B, attracting backers including Redpoint, Cyberstarts, and CRV, while proving ROI through integrations with existing stacks at major clients.[2][4]

Core Differentiators

Federated Query Engine: Vendor-agnostic AI-powered engine queries data directly at sources (SIEMs, data lakes, XDR, cloud storage) using normalized KQL, avoiding ingestion costs, migration, and duplication while enabling 100% visibility across all data types instantly.[2][3][4][5]
AI-Driven Detection and Analytics: Auto-maps MITRE coverage gaps, deploys detection-as-code or library of ready-to-use scenarios, reduces alert fatigue, incorporates threat intel into adaptive queries, and supports AI-assisted investigations for faster threat resolution.[3][4]
Frictionless Deployment and Flexibility: Supports cloud, hybrid, on-prem hosting with automated normalization, rapid onboarding, and consistent detections across disparate datasets; clients report SIEM cost reductions and analysis of previously ignored logs.[3][4]
Seamless Integration and Scalability: Enhances existing SecOps without replacement, delivering measurable ROI via efficiency gains; backed by Unit 8200-honed execution in a team challenging legacy systems.[2][5]

Role in the Broader Tech Landscape

Vega rides the wave of exploding data volumes in enterprise security, where traditional SIEMs falter amid terabyte-scale logs from multi-cloud environments, driving demand for cost-efficient, scalable alternatives amid rising cyber threats.[2][4] Its timing aligns perfectly with AI advancements in analytics and the shift to federated models, amplified by market forces like regulatory pressures for faster threat response (e.g., in healthcare and finance) and investor fervor in Israeli cybersecurity post-Unit 8200 successes.[2][4] By enabling SecOps teams to leverage all data without infrastructure overhauls, Vega influences the ecosystem through cost savings, reduced blind spots, and integrations that empower incumbents like CrowdStrike or Tenable, positioning it as a transformative force in a stagnant $10B+ SIEM market.[2][3]

Quick Take & Future Outlook

Vega's momentum—$700M valuation in under two years—signals it's primed to capture share from legacy SIEM giants, with expansion into more Fortune 500s via AI enhancements and global offices.[4] Trends like agentic AI for autonomous detection, zero-trust data access, and hybrid/multi-cloud proliferation will accelerate its growth, potentially pushing toward unicorn status or acquisition by 2027 as enterprises prioritize agile SecOps.[2][3] Its influence could evolve from disruptor to standard, redefining analytics platforms and inspiring federated approaches across cybersecurity, tying back to its core promise: making limitless security analytics finally achievable without compromise.[3][5]

Deep Dive

High-Level Overview

Note: Vega Security should not be confused with vega-security.com, a separate firm offering custom CCTV, access control, and network solutions unrelated to this cybersecurity venture.[1]

Origin Story

Core Differentiators

Federated Query Engine: Vendor-agnostic AI-powered engine queries data directly at sources (SIEMs, data lakes, XDR, cloud storage) using normalized KQL, avoiding ingestion costs, migration, and duplication while enabling 100% visibility across all data types instantly.[2][3][4][5]
AI-Driven Detection and Analytics: Auto-maps MITRE coverage gaps, deploys detection-as-code or library of ready-to-use scenarios, reduces alert fatigue, incorporates threat intel into adaptive queries, and supports AI-assisted investigations for faster threat resolution.[3][4]
Frictionless Deployment and Flexibility: Supports cloud, hybrid, on-prem hosting with automated normalization, rapid onboarding, and consistent detections across disparate datasets; clients report SIEM cost reductions and analysis of previously ignored logs.[3][4]
Seamless Integration and Scalability: Enhances existing SecOps without replacement, delivering measurable ROI via efficiency gains; backed by Unit 8200-honed execution in a team challenging legacy systems.[2][5]

Vega Security

Recent News & Mentions

Financial History

Funding Rounds Raised

Financial History

Deep Dive

High-Level Overview

Origin Story

Core Differentiators

Role in the Broader Tech Landscape

Quick Take & Future Outlook

Sources

Frequently Asked Questions

Frequently Asked Questions

Deep Dive

High-Level Overview

Origin Story

Core Differentiators

Role in the Broader Tech Landscape

Quick Take & Future Outlook

Sources

Recent News & Mentions

Frequently Asked Questions

Financial History

Funding Rounds Raised