Merlin Ventures

Clutch Security is a cybersecurity company dedicated to managing and protecting non-human identities within digital infrastructures. Its platform provides comprehensive visibility and lifecycle management for digital credentials, allowing organizations to effectively mitigate risks associated with these identities. In addition to identity management, Clutch Security offers features such as incident response, threat detection and analysis, and asset management. These capabilities enable businesses to enhance their cybersecurity posture and respond effectively to security incidents, thereby safeguarding against various cyber threats.

Tamnoon is a company that specializes in providing a managed cloud security remediation platform. This platform is designed to enhance cloud security by simplifying the detection and response to security issues, thereby improving the overall cloud posture for businesses. Tamnoon's solution addresses misconfigurations and vulnerabilities identified by Cloud-Native Application Protection Platform (CNAPP) tools. By combining AI technology with human expertise, the company empowers organizations to effectively remediate and prevent security problems within their cloud infrastructure. This enables both security and development teams to streamline their cloud security processes from prioritization through to remediation and prevention.

Sepio is a developer of an asset risk management platform focused on protecting organizations from hardware-based attacks. The company's innovative solution operates on asset existence rather than activity, utilizing physical layer asset DNA profiling to deliver actionable visibility and policy enforcement. This platform enables security teams to gain comprehensive insights into their hardware assets and monitor their behavior in real-time. With the ability to define granular device usage rules, Sepio allows administrators to continuously oversee and safeguard their infrastructure. The solution is asset agnostic, accommodating various environments including IT, OT, and IoT, and can report on existing assets and their associated risk factors within 24 hours. Ultimately, Sepio aims to enhance clients' cybersecurity posture by providing robust control over hardware assets and mitigating the risks posed by rogue devices.

Clutch Security is a cybersecurity company dedicated to managing and protecting non-human identities within digital infrastructures. Its platform provides comprehensive visibility and lifecycle management for digital credentials, allowing organizations to effectively mitigate risks associated with these identities. In addition to identity management, Clutch Security offers features such as incident response, threat detection and analysis, and asset management. These capabilities enable businesses to enhance their cybersecurity posture and respond effectively to security incidents, thereby safeguarding against various cyber threats.

Tamnoon is a company that specializes in providing a managed cloud security remediation platform. This platform is designed to enhance cloud security by simplifying the detection and response to security issues, thereby improving the overall cloud posture for businesses. Tamnoon's solution addresses misconfigurations and vulnerabilities identified by Cloud-Native Application Protection Platform (CNAPP) tools. By combining AI technology with human expertise, the company empowers organizations to effectively remediate and prevent security problems within their cloud infrastructure. This enables both security and development teams to streamline their cloud security processes from prioritization through to remediation and prevention.

Rezonate is a cybersecurity company focused on safeguarding cloud identity access to resources and infrastructure. The company offers a platform that proactively optimizes security controls and privileges to prevent identity compromise and privilege abuse. By identifying, analyzing, profiling, and defending identities, users, and resources in real time across various cloud environments, Rezonate aims to detect and respond to identity-based threats effectively. This multi-level protection strategy allows developers and security teams to investigate and address potential attacks promptly, reducing the risk of breaches and securing vital data and information.

Veriti is a developer of a unified security posture management platform that proactively monitors and remediates exposures across the entire security stack, from OS level upward, without disrupting business operations. The platform integrates with all security layers and continuously evaluates risk posture by analyzing configurations, logs, sensor telemetry, and threat intelligence, providing actionable remediation paths for security gaps and high‑risk vulnerabilities.

Cyclops Security provides an AI-powered cybersecurity platform that strengthens an organization's defenses by collecting metadata from the security stack and applying business-contextual AI analytics to reveal how vulnerable assets impact the business. The platform builds a security-data fabric from diverse tools, enables security practitioners to gain contextual visibility on every entity, and prioritizes vulnerabilities to guide immediate remediation. By correlating data from multiple solutions and translating findings into actionable risk insights, Cyclops helps SecOps reduce mean time to detect and mean time to repair and focus on the highest-risk issues that matter most to the business.

Talon Cyber Security is a provider of innovative cybersecurity solutions tailored for the distributed workforce. The company offers a next-generation secure browser that delivers enterprise-grade security to both managed and unmanaged devices, regardless of their location, type, or operating system. By addressing the unique threats associated with remote work and increased cloud usage, Talon empowers businesses to enhance productivity and flexibility while maintaining robust cybersecurity measures. Its technology is designed to effectively mitigate risks posed by the evolving landscape of cybersecurity threats, making it a valuable partner for organizations navigating the complexities of a hybrid work environment.

Cyolo is a developer of a Zero Trust Access Solution that enables secure connectivity for both onsite and remote users to authorized assets across organizational networks, cloud environments, and IoT systems, including offline networks. The company's innovative software offers an ID-based connectivity approach that enhances visibility and provides self-calibrating insights, allowing businesses to effectively manage access to critical applications. By integrating a comprehensive operating method within a single scalable platform, Cyolo supports IT and security teams in maintaining security and productivity amidst the challenges posed by distributed workforces and evolving cyber threats.

Dig Security is a cloud data security startup that specializes in providing real-time visibility, control, and protection for data assets across multiple cloud environments. As enterprises face challenges related to data exfiltration and policy violations amidst increasingly complex database settings, Dig Security offers a cloud-native and agentless solution. Its platform enables businesses to effectively manage cloud data sprawl while ensuring the security of their data without hindering operational efficiency. By integrating Data Detection & Response (DDR) capabilities, Dig Security empowers organizations to discover, monitor, and protect their cloud data in real time, delivering comprehensive threat protection services for data stored in public cloud infrastructures.

Finite State is a cybersecurity company focused on securing Internet of Things devices, networks, and supply chains. Its platform analyzes firmware inside IoT devices to produce a risk assessment for each device, including a software bill of materials, known CVEs, zero-day vulnerabilities, potential backdoors, hard-coded keys and credentials, weak passwords, unsafe function calls, and memory-related issues. The solution combines static and dynamic analysis, reverse engineering, and machine learning to identify vulnerabilities in embedded systems. It provides vulnerability management, threat intelligence, and comprehensive security assessments to help enterprises, telecommunications, energy providers, device manufacturers, government, and healthcare organizations gain visibility into supply chain devices and defend their networks. Finite State was founded in 2017 and is based in Columbus, Ohio.

Cyolo is a developer of a Zero Trust Access Solution that enables secure connectivity for both onsite and remote users to authorized assets across organizational networks, cloud environments, and IoT systems, including offline networks. The company's innovative software offers an ID-based connectivity approach that enhances visibility and provides self-calibrating insights, allowing businesses to effectively manage access to critical applications. By integrating a comprehensive operating method within a single scalable platform, Cyolo supports IT and security teams in maintaining security and productivity amidst the challenges posed by distributed workforces and evolving cyber threats.

Sepio is a developer of an asset risk management platform focused on protecting organizations from hardware-based attacks. The company's innovative solution operates on asset existence rather than activity, utilizing physical layer asset DNA profiling to deliver actionable visibility and policy enforcement. This platform enables security teams to gain comprehensive insights into their hardware assets and monitor their behavior in real-time. With the ability to define granular device usage rules, Sepio allows administrators to continuously oversee and safeguard their infrastructure. The solution is asset agnostic, accommodating various environments including IT, OT, and IoT, and can report on existing assets and their associated risk factors within 24 hours. Ultimately, Sepio aims to enhance clients' cybersecurity posture by providing robust control over hardware assets and mitigating the risks posed by rogue devices.