Nagomi Security

🚨 BREAKING: Nagomi Launches "The Panther" Priority Engine 🐆 Today, Nagomi is officially launching The Panther, the world’s first probabilistic triage engine. It’s an "illegal-in-nine-countries" algorithm that simply ignores the 40% of your alerts that don't fit on a single dashboard so you can focus on the 60% that "work every time." It’s a formidable scent. It stings the nostrils (mostly from the manual spreadsheet-stitching required to run it), but hey, it’s a strategy. ...Okay, April Fools. 🤡 The real joke is that most security stacks actually operate like this. You have a "75-tool arsenal," but adversaries see what those tools miss. They move in minutes. Manual triage takes weeks. That 40% gap between "finding" and "fixing" is exactly where the breaches happen. Security teams don't need more findings. They need a system that carries context forward, correlates from all sources, and drives action before risk becomes impact. Automatically. That’s Nagomi. 🔸 Detect before it escalates: Our agentic investigation correlates exposure signals from your attack surface, vulnerabilities, misconfigurations, and threat intel in a single pass. That level of context doesn't exist in any other platform—and it’s not something a team can stitch together manually. The Outcome: A verdict delivered in under 4 minutes (90% faster than manual triage). 🔸 Fix with reasoning: We deliver the fix and the rationale in one package, routed to the right team. No more "is this even real?" debates. The Outcome: 85% backlog reduction. 🔸 Verify closure: Not a "closed ticket," but a closed-loop verification that confirms exposure stays resolved as your environment changes. The Result: 2 FTEs of capacity returned, so they can focus building vs. stiching. 👉 See where your exposure gaps are hiding. Schedule a free exposure review. https://lnkd.in/eQvSuhpb. Stay classy, SecOps. 🎤 --- P.S. If you haven't seen Anchorman, please stop what you're doing and go watch it immediately (and you will get our joke - ha ha)

For a decade, the security industry has been obsessed with giving teams "better lists." Better severity scores. Smarter prioritization. More findings. Yet, exposure continues to grow. As our CPO Shai Mendel highlights in his latest deep dive, the problem is not that your tools are broken. It is that the operating model is. If you are running security at scale, you do not have a discovery problem; you have an investigation and execution bottleneck. Earlier this month, we introduced Agentic Exposure Ops. This is not a product update; it is a fundamental shift from producing lists to verified elimination. Why "Agentic Exposure Ops" is Different Most AI in security today is just a chat interface on a dashboard, a glorified search bar. Nagomi's agents do not wait for a prompt. They operate autonomously across your entire stack. For example: Traditional RBVM: Produces a list. Requires 30 to 60 minutes of manual investigation per finding. While, Agentic Exposure Ops: Produces verified elimination. It investigates, correlates against compensating controls, and validates the fix autonomously - all based on your unique business context. "This is not AI that helps you investigate faster. This is AI that investigates for you." — Shai Mendel The Secret Sauce: The Exposure Lens An agent is only as good as the context it reasons across. Without a normalized, correlated layer, AI hallucinations are inevitable. Nagomi has spent years building the Exposure Lens, a foundation that ingests signals across five categories: -> Vulnerabilities -> Misconfigurations -> Attack Surface Changes -> Identity Gaps -> Active Threat Intel By resolving these into a single asset view, our agents can distinguish between a finding and a toxic combination that creates real, exploitable exposure. The Results from the Field In our initial customer rollouts, the numbers speak for themselves: -> 1,716 CVE investigations in 14 days. -> 4 minutes average investigation time (down from 60+). -> 80% of manual triage eliminated. -> 2+ FTEs of capacity returned to the team. Read Shai Mendel's full breakdown of how we are building the autonomous execution layer for security teams. https://lnkd.in/eSs-hQqw

📁 Case File 002: The Xposure Files — LIVE The Truth is Out There (But It’s Siloed in Your Security Stack). Security teams are constantly bombarded with signals. You see the anomalies, you see the misconfigurations, you see the vulnerabilities, but the connection between them remains... unidentified. Most teams spend their lives manually stitching together data, trying to prove that a threat is real. On April 15th, we’re declassifying the process. Join Nagomi for Exposure Files Live: Agentic Investigations. We’re stepping away from the slides and moving into the field for a live look at Agentic Exposure Ops. This isn't a theory; it's a demonstration of how autonomous agents investigate the unknown and bring the full context of your environment into the light. 🔍 Field Report: What You’ll Observe 🔸 The Automatic Trigger: See agents initiate investigations the moment a condition changes, no more waiting for the weekly scan. 🔸 The Full Pass: Watch as assets, controls, and threats are correlated in a single, autonomous sweep. 🔸 The "Why" Behind the Score: Agents don't just give you a number; they provide the reasoning, proving whether a threat is exploitable or already contained. 🔸 Continuous Surveillance: How agents ensure that once a fix is applied, it doesn't vanish back into the shadows. Lead Investigators: Victor De Luca, Sales Engineering Lead and Tim Dickinson, Technical Success Manager 📅 Date: April 15, 2026 🕛 Time: 12:00 PM The answers are there, you just have to know where to look... or have an agent that finds them for you. Save your spot!

Getting on a cybersecurity “top vendors” list isn’t always meaningful. This one is. Nagomi is proud to be included in the IT-Harvest Cyber 150, alongside a diverse group of companies building across every corner of the cybersecurity market. Thank you to Richard Stiennon and the IT-Harvest team for the recognition. Their perspective has long reflected both the depth and evolution of this industry. This list highlights the level of innovation happening across the ecosystem, different approaches, different philosophies, all moving the industry forward. Proud to be included and focused on continuing to do our part.

You know what? Agentic Exposure Ops is kind of a big deal. 🥃 We’ve all seen the “75-tool arsenal.” Every gap is supposedly covered. Right up until you realize your security stack only works 60% of the time, every time. Adversaries see what your tools miss. They move in minutes. Manual triage takes weeks. That gap is where breaches happen. Security teams don’t need more findings. They need an agentic system that carries context forward, connects signals across the environment, and drives action before risk becomes impact. That’s the shift. -->From detection to investigation. -->From investigation to action. -->From action to verified closure. With Nagomi's Agentic Exposure Ops, that entire loop runs continuously. Exposure is investigated by agents in a single pass, across attack surface, vulnerabilities, misconfigurations, and threat activity. Verdict in under 4 minutes, about 97% faster than manual triage. ⚡ Remediation comes with context and ownership, routed to the right team without the back-and-forth. Backlogs shrink because work actually closes, not just moves. 📉 And closure is verified over time by our agents, so fixes don’t quietly break the next time something changes. The result: real capacity back to the team, not just more tickets processed. Stop letting exposure sit in the gap between finding and fixing. See where your exposure gaps are hiding. Get your Exposure Review today. Stay classy, SecOps. 🎤

RSAC Day 3. Let’s go. Huge thank you to everyone who’s stopped by, grabbed a matcha, and humored us while we took way too many photos (we have… a lot more coming). Where to find us today: 📍 Booth #NXT-02 | Moscone Center Come see what Exposure Ops looks like in practice. 📍 Zen Den @ Junbi Pop-Up | 11:00 AM – 1:00 PM A place to reset, grab a matcha, throw on a pair of sunglasses, and have real conversations about how to actually eliminate exposure continuously, so teams can finally see the calm at the end of the tunnel. Let’s face it. Teams aren’t struggling to find exposure, they’re struggling to drive it through to closure. More visibility without context just creates more work. Context without remediation just creates more analysis. So we connect into what’s already there, bring together vulnerabilities, controls, assets, and threats, and our agentic engine drives the work from investigation through verified fix. No theatrics. No endless dashboards. No “we’ll get to it next quarter.” Just a clear path from signal to action to closure. At RSAC? Come find Tim Dickinson, Nick Mirizzi, Victor De Luca, Colin Paterson, Alexei Rubinstein, Chris Zamora, Shai Mendel, and Emanuel Salmona. Especially Tim Dickinson <-- he is everywhere! Not here? We’ll still show you what’s exposed and how to fix it - schedule your exposure review.

Getting the Zen Den ready for a big couple of days. Reset included. Nagomi is taking over Junbi Matcha & Tea for two days. Today 📍 685 Market St, San Francisco 🕟 1:30–4:30 PM Tomorrow 📍 Same spot 🕑 11:00 AM –1:00 PM What’s inside: 🔸 Matcha that actually helps you function like a human again 🔸 Quick demos, no marathon pitches 🔸 Prizes, because we can have fun off the floor too 🔸 Real conversations about how to keep exposure grounded No dashboards thrown at you, no abstract scoring systems, no “circle back next quarter” energy. Just a better way to stay calm while your environment does what it always does, change constantly. Nagomi keeps the work moving so your team doesn’t spin. Stop by, grab a drink, reset your brain, and see how exposure stays grounded without turning your day into another investigation loop.

Tools fire. Findings land. Someone triages. Context gets rebuilt from scratch. Follow-ups sit. The same exposures stay open way longer than anyone wants to admit. The issue isn't effort. It's that nothing carries forward. We built Nagomi for that gap. Not another dashboard. Not another queue. An agentic exposure ops system that carries context across assets, controls, threats, and vulnerabilities, and keeps work moving from investigation through remediation to verified closure across SecOps, VM and IT teams. What you’re seeing here is just a glimpse: • Exposure investigated and validated before it reaches you • Cases that already answer what’s exposed, what matters, and what to do next • Decisions, not alerts • Work that doesn’t stall between teams This is what it looks like when tools, teams, and time move together. If you want to see it in your own environment, take the walkthrough and request an exposure assessment. Even better schedule a meeting with us at RSA, links in comments. No slides. No theory. Just what’s actually getting left open.

No Malware. No Zero-Day. 80,000 Devices Wiped. ❌ The March 11 attack on Stryker Corporation wasn’t a sophisticated exploit of a "broken" system. It was the weaponization of a working one. By compromising a single Intune admin credential, the Iran-linked group Handala used legitimate commands to erase an entire global fleet. Phones reset in employees' hands. Manufacturing stopped. Surgeries were delayed. As our Co-founder and CPO Shai Mendel explains in his latest deep dive, the industry-standard answer of “We have MFA” is no longer enough. The gap isn’t the tool; it’s the validation of the controls. In this post, Shai breaks down: 🔹 How "living-off-the-land" attacks bypass EDR. 🔹 Why CISA and Microsoft are now mandating phishing-resistant MFA. 🔹 How to close the "Multi Admin Approval" gap before it’s exploited. If your security posture relies on manual audits, you’re already behind the clock. https://lnkd.in/e_sYBA8n

Most "AI for exposure management" is a chatbot layered on top of a mess. We don’t need more things to talk to. We need things that do. 82% of CISOs are under pressure to automate, yet the "manual loop"- investigate, fix, re-check - is still where security goes to die. It doesn’t scale, and things get missed. That’s why we built Agentic Exposure Ops. We’ve moved past the "Dashboard Era." Our agents don't just alert you; they coordinate the response: It’s a system of agents that: 🔸 investigate exposures in context 🔸 determine what’s actually relevant 🔸 route fixes to the right owners 🔸 verify that remediation holds as environments change The best part, every investigation, every fix - makes the next one faster. You keep the control. We remove the friction. Traditional approaches give you better lists. Exposure Ops delivers verified closure. That’s the shift.