In a bold step toward reshaping enterprise security, Koi, a Tel Aviv-based startup, has raised $48 million in Seed funding to bring visibility and control to one of the fastest-growing blind spots in modern IT: software sprawl. The round was led by Team8, with participation from Cerca Partners and Picture Capital.

Founded by Amit Assaraf, Koi enables enterprises to monitor and manage every piece of software in use across their organization  - extensions, packages, apps, and AI models. Unlike traditional tools that focus narrowly on known vulnerabilities, Koi surfaces risks that remain invisible to conventional approaches, empowering security teams to enforce policy, detect threats early, and safeguard endpoints  - without slowing down innovation.

With enterprises increasingly adopting AI-driven workflows and cloud-native architectures, Koi is entering the market at a critical inflection point.

---

Solving the Blind Spots Security Tools Miss

Traditional enterprise security often resembles a fortress with visible walls, but the unseen cracks  - browser extensions, open-source packages, internal AI model usage  - are where risks often seep in. These blind spots grow larger as businesses adopt distributed architectures, multiple SaaS platforms, and embedded AI services.

Koi aims to solve this by acting as an always-on layer of visibility and governance, giving organizations a granular map of every piece of software interacting with their environment.

The promise? Security teams can finally get ahead of the curve by eliminating shadow software risks before they become incidents  - all while keeping productivity intact.

---

Why This Problem Matters Now

Enterprises today face two competing forces: the push for rapid innovation and the pull of rising cyber threats. Teams spin up tools, install packages, and integrate APIs at unprecedented speed. What used to be an annual procurement cycle has become a daily drip of new software adoption.

But each unmonitored extension or unvetted AI model represents a potential compliance, data leakage, or exploitation risk. Gartner predicts that by 2027, over 60% of enterprises will suffer a security incident due to third-party software or extensions they failed to monitor.

This makes Koi’s mission more than a convenience  - it’s a survival strategy for organizations moving into AI-heavy and multi-cloud environments.

---

The Founder’s Approach

Amit Assaraf 🎏 is no stranger to identifying and solving emerging technology risks. With a track record of building and scaling products from scratch, Assaraf has built Koi around a simple but powerful principle: security should empower, not inhibit innovation.

By offering a solution that integrates seamlessly into workflows without creating bottlenecks, Koi strikes a delicate balance  - enabling organizations to move fast while staying protected.

---

Beyond Visibility: The Multi-Layer Sale

Here’s a dynamic that often goes unnoticed when startups tackle enterprise security: the user is not the buyer. Engineers and employees may install packages or use AI tools, but the budget sits with CISOs, CFOs, and compliance officers.

The most successful enterprise platforms are the ones that bridge these stakeholders  - making developers feel unblocked, while giving executives the risk dashboards they need to sleep at night.

For founders, this highlights a critical insight: if your product creates cross-functional alignment, you unlock a multiplier effect on adoption. Security is no longer just an IT function; it’s a board-level concern, tied to brand trust and regulatory survival. Designing for that entire spectrum of decision-makers is what transforms a security tool into mission-critical infrastructure.

---

Positioning Koi in the Security Landscape

Koi isn’t aiming to be just another endpoint detection solution. Its differentiation lies in covering the “last mile” of enterprise visibility:

• Browser extensions and SaaS sprawl: Mapping unmanaged add-ons and applications.
  
• Open-source dependencies: Tracking vulnerabilities in packages often overlooked in audits.
  
• AI model oversight: Monitoring which models are used internally, ensuring compliance with privacy and governance rules.
  
• Policy enforcement at scale: Enabling organizations to set guardrails that balance freedom and safety.
  

This holistic approach positions Koi not as a competitor to legacy endpoint or SIEM providers, but as a complementary platform filling in the critical blind spots they miss.

---

Why Investors Are Betting Big

Raising $48 million at Seed stage is not just impressive  - it signals outsized conviction from investors. The reasons are clear:

1. Category Creation Potential – Koi is building a platform for a problem every enterprise faces, but very few vendors address comprehensively.
   
2. Founder-Market Fit – Amit Assaraf’s background in product building and scaling tech solutions gives credibility to execution.
   
3. Market Timing – With AI adoption exploding, enterprises are desperate for governance tools that won’t kill momentum.
   
4. Global Footprint – Starting in Tel Aviv  - a global cybersecurity hub  - gives Koi both credibility and talent density from day one.
   

---

Market Research & Industry Outlook

The enterprise cybersecurity market is projected to hit $376 billion by 2029 (Fortune Business Insights), growing at a CAGR of over 13%. Within this, endpoint security and SaaS visibility are among the fastest-growing subcategories.

• According to IDC (2025), enterprises use an average of 371 SaaS applications  - a 32% increase from 2023.
  
• 70% of IT leaders (PwC survey) admit they lack full visibility into the AI models and extensions employees are using daily.
  
• Cybercrime damages are expected to cost the world $10.5 trillion annually by 2025 (Cybersecurity Ventures), with software-based blind spots representing a rising share.
  

The outlook is clear: enterprises will keep adopting tools at breakneck speed, but compliance and governance frameworks will lag. Platforms like Koi that bridge this gap stand to capture enormous enterprise budgets, especially as regulators impose stricter software supply chain mandates worldwide.

---

Looking Ahead

Koi’s $48 million Seed round puts the company on an aggressive trajectory to expand product capabilities, scale globally, and cement itself as the control tower for enterprise software security.

By addressing one of the most urgent and under-served problems in modern IT  - hidden software risks  - Koi has the potential to define a new category within cybersecurity. For enterprises, it’s a chance to embrace innovation without fear. For the industry, it’s a signal that security can finally move at the speed of software.