Engineering teams are shipping code faster than ever, fueled by AI. But cloud security workflows still rely on humans to triage alerts, investigate context, and decide on remediation – a model that doesn’t scale to the speed and complexity of modern cloud environments. Generic AI models can’t bridge this gap; cloud infrastructure is simply too complex, and the cost of a hallucination is too high.
This gap is only widening. AI is accelerating both development and the attack surface, shrinking the window between exposure and exploitation to near zero.
We’ve been investing in cloud security since its early days, backing companies like Aqua Security in 2015, and have seen how each new layer of cloud abstraction makes security increasingly difficult to reason about and operate at scale.
That is why we are thrilled to lead Copperhelm’s $7 million Seed round, joined by Icon, toDay Ventures and SaaS Ventures Israel, to define a new category: Agentic cloud security – systems that don’t just surface risk, but investigate and remediate it autonomously in production environments.
Copperhelm replaces the traditional human-in-the-loop model with autonomous agents that can detect, investigate, and remediate security issues end-to-end. Instead of just flagging theoretical risks, the system operates directly on cloud environments to validate what is actually exploitable and requires action.
Powered by a real-time Context Lake, Copperhelm’s AI agents do the heavy lifting. They inspect live workloads and map network topologies to determine the exact blast radius of a vulnerability. By safely simulating attacks, they prove actual exploitability and eliminate false positives. Agents then resolve validated threats by deploying zero-downtime WAF rules or generating precise context for AI coding assistants to implement permanent fixes.
Applying AI to cloud security requires deep systems and infrastructure expertise. We’ve known Shimon, Eyar, and Roman for years and have seen how they’ve led and managed large-scale cloud infrastructure and developer tooling environments. They’ve built and operated systems at scale at companies like Unity, McAfee, and RSA, and are recognized across the cloud-native ecosystem as AWS Heroes, CNCF Ambassadors, and GitHub Stars.
Rather than coming from a traditional security background, they approach the problem from the perspective of builders. They understand how developers operate and make decisions, and have identified that within the cloud security loop, developers are ultimately the ones bombarded with security-related tasks, often without the right context. They also understand what data is needed to make the right decisions.
Coming from this perspective, they have translated this knowledge into agents designed to support developers in handling cloud security issues.
As infrastructure becomes more dynamic and AI-driven, security needs to move from analysis to autonomous operation. Copperhelm is building that system. We’re excited to partner with this exceptional team as they shape the future of cloud defense.