Sapphire Ventures
Sapphire Ventures
Partnering with expansion-stage, enterprise software companies that we believe can become category leaders.
Sapphire Partners
Sapphire Partners
Limited partner investing in exceptional early-stage venture fund managers.
Sapphire Sport
Sapphire Sport
Partnering with early-stage companies at the nexus of technology and culture.
Menu close
Sapphire
Sapphire Ventures

State of Cybersecurity: Growth, Risk, and Resilience

Table of contents
Blog Investment Themes DevOps/Security

State of Cybersecurity: Growth, Risk, and Resilience

Written by
Published
August 14, 2025
Table of contents
Share

Cybersecurity remains one of the hottest categories in all of technology. Why do we believe that is the case?

Security is a top CIO priority, in terms of both spend intention and project defensibility. It’s the only category that has remotely kept pace with AI on both dimensions over the past few years. In fact, 87% of CIO’s plan to increase security spending in 2025, which will support further expansion of the already $270B global market.1

The cost of security failures continues to rise: Major hacks now seem to surface almost weekly, recent examples including breaches at Coinbase, Samsung, and United Natural Foods, each causing hundreds of millions in economic damage and causing significant disruptions to supplies and customers.

The attack surface continues to expand: For all of its benefits, AI is also a major risk factor and has dramatically increased the attack surface for many organizations, while also providing more sophisticated tools to cyber-criminals to optimize and scale their attacks.

Geopolitics: The current moment of fraying alliances, increased conflicts across the world, and more advanced AI-enabled offensive technology is causing nations to rethink defense strategy and increase investment in operational resiliency.

Expand VF_8.14.25_Sapphire Cybersecurity Market Map

Investment in Cybersecurity

All of these factors are leading to more investment in cybersecurity by IT departments, big tech acquirers, and venture capital investors alike. Case in point, 2024 was the fifth straight year where over $10B in venture capital was deployed into security startups, and the category accounts for the two largest enterprise software acquisitions of the past five years, including Google’s record $32B deal for Wiz earlier this year.2

At Sapphire, we have a long tradition of investing in leading cybersecurity companies, including Cyera, Huntress, Netskope, Cohesity, Auth0… and we remain as convicted as ever about the opportunity for companies building across the cybersecurity landscape. A few themes that we are currently tracking closely include:

  • AI Agents for the SOC — Security operations are strained by alert overload, fragmented tools, and a shortage of skilled analysts, creating a demand for AI agents that can autonomously triage, investigate, and defend against threats in real-time.
  • Data Security — With GenAI adoption accelerating and sensitive data flowing through SaaS, cloud, and LLM interfaces, enterprises face growing pressure to prevent exposure and maintain compliance. Modern data security platforms offer real-time classification, access control, and encryption to reduce leakage risk and enforce governance across distributed data workflows.
  • AI Model Security — AI applications are expanding the attack surface and introducing new attack vectors (e.g., prompt injections, model theft, data leakage). Many incumbents are encountering these challenges for the first time and are seeking specialized services that can help them get ahead of these new threats

There is so much more to be excited about in the security space, including themes like cloud security, non-human identity management, anti-ransomware, and next-gen security awareness training (an underrated category in an era of more advanced phishing attacks and multi-modal deepfakes). 

If you are a builder or fellow investor in cybersecurity and want to talk, please reach out to Anders, Casber, or Justin.

Legal disclaimer

(1) “2025 CIO Agenda”, Gartner (Oct. 2024)

(2) Pitchbook (pulled on May 16, 2025), Internal Sapphire Ventures analysis. Notes: PitchBook data includes only deals with a reported deal size. Final Pitchbook numbers likely to change as deals continue to be recorded in retrospect. Pitchbook data lags are most pronounced in recent data.  

DISCLAIMER: This article is for informational purposes only. Nothing presented within this article is intended to constitute investment advice, and under no circumstances should any information provided herein be used or considered as an offer to sell or a solicitation of an offer to buy an interest in any investment fund managed by Sapphire. Information provided reflects Sapphires’ views as of a time, whereby such views are subject to change at any point and Sapphire shall not be obligated to provide notice of any change. Companies mentioned in this article are a representative sample of portfolio companies in which Sapphire has invested in which the author believes such companies fit the objective criteria stated in commentary, which do not reflect all investments made by Sapphire. A complete alphabetical list of investments made by Sapphire’s Growth strategy is available here. No assumptions should be made that investments listed above were or will be profitable. Due to various risks and uncertainties, actual events, results or the actual experience may differ materially from those reflected or contemplated in these statements. Nothing contained in this virtual event may be relied upon as a guarantee or assurance as to the future success of any particular company. Past performance is not indicative of future results.