Onit Security Raises $11M for Continuous Exposure Management

Overview of Onit Security’s Funding and Market Strategy

Israeli cybersecurity startup Onit Security has emerged from stealth with $11 million in seed funding, according to SecurityWeek. The investment round was led by Team8 and includes participation from several prominent industry angel investors. Founded by Nir Sadeh and Lior Arbel—veterans with backgrounds at Sygnia and Akamai—Onit Security intends to use the capital to accelerate product development and expand its go-to-market operations across new sectors.

The company enters a crowded but rapidly evolving market focused on Continuous Threat Exposure Management (CTEM). As organizations transition away from static, point-in-time vulnerability assessments, there is an increasing demand for platforms that provide a dynamic view of risk. Onit Security aims to provide this by consolidating data across fragmented environments, including cloud infrastructure, identity providers, and SaaS applications, to identify the most critical security gaps that could lead to a breach.

The Technical Shift Toward Continuous Threat Exposure Management

Traditional vulnerability management programs often struggle under the sheer volume of CVE disclosures. While legacy scanners can identify unpatched software, they frequently fail to provide context regarding whether a vulnerability is actually exploitable in a specific environment. This lack of context leads to “alert fatigue” for the SOC, as security teams spend excessive time remediating low-risk flaws while critical attack paths remain open.

Onit Security addresses this by shifting the focus from individual vulnerabilities to broader “exposures.” An exposure includes not only software bugs but also misconfigurations, overly permissive identity permissions, and architectural weaknesses. By analyzing how these different elements interact, the platform can map potential attack paths that an adversary might use to achieve Lateral Movement or data exfiltration.

Onit Security Exposure Management Platform Capabilities

The platform is designed to break down the silos between different security domains. In many enterprises, cloud security, identity management, and endpoint protection are managed by separate teams using disparate tools. Onit Security integrates data from these sources to create a unified graph of the attack surface. Key Onit Security exposure management platform capabilities include the ability to simulate how an attacker might navigate the network and the prioritization of remediation efforts based on the potential business impact of a compromised asset.

How to Implement Continuous Threat Exposure Management in Modern Environments

To effectively reduce risk, defenders must move beyond the “patch everything” mentality. When considering how to implement continuous threat exposure management, organizations should prioritize visibility into the “chokepoints” of their infrastructure. These are the specific nodes or configurations—such as a misconfigured S3 bucket or a privileged service account—that act as gateways for multiple attack paths.

Implementing a CTEM framework involves several phases:

• Scoping: Identifying which business assets and processes are most critical.
• Discovery: Continuously mapping the attack surface, including shadow IT and third-party integrations.
• Prioritization: Ranking exposures based on their exploitability and the potential damage to the organization.
• Validation: Utilizing TTP simulations to confirm whether a security control is effective.

By focusing on these areas, enterprises can realize the benefits of attack path simulation for enterprises, allowing them to validate their security posture against real-world threats without the manual overhead of traditional red-teaming exercises. Onit Security’s entry into this space underscores the industry’s move toward proactive, impact-based risk management.