Picus Security

Founded in 2013, we specialize in Breach and Attack Simulation (BAS) and Adversarial Exposure Validation (AEV) within the computer and network security industry. We provide the Picus Security Validation Platform, which helps organizations validate security effectiveness, prioritize real risks, and act faster with evidence.

Our platform combines exposure assessment, security control validation, and exposure validation to provide a complete view of security performance. It safely simulates real attack techniques and adversarial TTPs (Tactics, Techniques, and Procedures) across network, endpoint, and cloud environments. Its capabilities include External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), Detection Rule Validation (DRV), Attack Path Validation (APV), Cloud Security Validation (CSV), and Exposure Mitigation. The platform also has a Smart Map, Risk Dashboard, and Auto-Remediation, and is powered by Numi AI.

Our platform integrates with various security controls like SIEM, EDR, NGFW, and WAF. It identifies the small percentage of vulnerabilities that are truly exploitable. This helps organizations reduce patch backlogs by 86% and decreases the mean time to remediate (MTTR) from 74 to 14 days. Our customers have seen an 86% decrease in high/critical vulnerability backlog, an 81% decrease in MTTR, and 92% fewer SLA violations for high/critical vulnerabilities. They also report an estimated $580,000 annual labor cost reduction from optimized workloads.

We serve enterprises worldwide, including Mastercard, Vodafone, VMware, and Turkish Airlines. We have partnered with Mastercard to enhance global cybersecurity resilience through Mastercard’s Cyber Front platform, which uses our technology.

We have secured $80 million in funding across multiple rounds, including a $45 million Series C growth investment in September 2024. We have 500 customers, 35 tech alliances, and 80 channel partners.

Our mission is “to reduce cyber risk through security validation.”

We operate based on three core values:

• Innovate: We encourage our team to be innovation drivers, challenging the status quo in cyber risk management, finding solutions to real problems, and continuously pursuing innovation.
• Elevate: We aim to take everything to the next level. We don’t settle; we do what others cannot, going the extra mile to deliver value and raise the bar.
• Celebrate: We recognize and celebrate accomplishments and our collective journey, fostering a sense of pride and appreciation within the team.

We are a global team of 201-500 employees. We foster a culture where our employees are encouraged to build new things, push out of their comfort zones, and collaboratively tackle challenges. Our work environment emphasizes working together to achieve personal and collective bests.

We are committed to Diversity, Inclusion, and Equality, creating a strong sense of belonging where individual uniqueness enhances team effectiveness. We provide all employees with equal opportunities for growth and development, supporting their evolution and celebrating individuality.

We operate as a global remote team, with physical offices in Ankara, Türkiye; Wilmington, Delaware, USA; Tampa, Florida, USA; the United Kingdom; and Singapore.

We offer a range of benefits designed to support our employees, including:

• Stock Options
• Remote Work flexibility
• Annual Leave
• Work From Home Budget
• Birthday Bliss (a day off to celebrate)
• Rest & Relaxation Day (a day to recharge)
• Volunteering Time Off
• Competitive Salary

We also emphasize ongoing career development opportunities, global exposure through collaborating with customers worldwide, and the potential for increased responsibility in a rapidly growing environment. We are committed to being an equal opportunity employer.