Darktrace provides an AI-driven cybersecurity platform that learns an organisation’s normal digital patterns to detect, surface and autonomously respond to novel and known threats across network, cloud, email, endpoint and OT environments.

CrowdStrike Falcon is a cloud‑native security platform that uses AI and telemetry to deliver endpoint protection, detection, automated investigation and response, and generative/agentic AI capabilities for security operations.

SentinelOne’s Singularity platform is an AI‑powered security platform that provides prevention, detection, threat hunting, and autonomous response across endpoints, cloud, and identity, plus AI SIEM and automation capabilities.

Abnormal Security offers a behavioral AI‑native email security platform that profiles normal communication patterns to detect and block advanced email threats such as phishing, business email compromise (BEC), vendor compromise and account takeover.

Vectra AI provides AI‑based threat detection, investigation and response (NDR/XDR) across network, cloud and SaaS/identity by extracting and analyzing metadata and signaling attacker behaviors to prioritize and speed investigations.

Cylance (part of BlackBerry / Cylance product family) is a machine‑learning driven prevention and endpoint protection solution that emphasizes predictive AI to block malware, ransomware and other threats before execution.

Deep Instinct applies deep‑learning models for prevention and detection of zero‑day malware across endpoints, cloud storage (S3), NAS and applications, with a focus on pre‑emptive, low‑latency protection and explainability.

Tessian (now part of Proofpoint following acquisition) delivered AI‑powered email solutions that use behavioral and contextual machine learning to prevent misdirected emails, data exfiltration and evolving email threats, and to provide in‑moment user coaching.

Ironscales is an AI‑powered email security platform that detects and remediates phishing, business email compromise (BEC) and related threats using adaptive machine learning and human feedback to automate threat removal and user training.

SlashNext provides AI‑native phishing and human‑targeted attack defense across email, browser and mobile channels using techniques like computer vision, NLP and virtual‑browser analysis for zero‑hour threat detection.

Area 1 (acquired by Cloudflare) is a cloud‑native email security service that performs pre‑delivery phishing protection and infrastructure‑level threat hunting to block phishing, spam and targeted email attacks before they reach inboxes.

Agari (now under Fortra’s email security portfolio) focuses on email authentication, DMARC automation and brand/consumer phishing protection to stop domain spoofing and reduce brand‑based phishing attacks.

Proofpoint is an enterprise‑focused security and compliance platform that protects people and data from email‑borne threats, using AI/ML and threat intelligence for email protection, DLP, account takeover protection and broader people‑centric security.

Mimecast provides email and collaboration security with AI‑enabled detection and human‑risk management features designed to protect against phishing, impersonation, ransomware and insider risk across email and collaboration tools.

Barracuda offers cloud‑based Email Protection with multi‑layered, AI and API‑driven defenses to stop phishing, impersonation, account takeover and data loss, combining gateway and API inbox protection with automated remediation.

An enterprise AI governance platform that provides end-to-end oversight across the AI lifecycle, enabling policy, risk management, and compliance for generative AI, agents, third‑party models and traditional ML.

A full-lifecycle model evaluation and monitoring platform that provides continuous evaluations, guardrails, and observability for traditional ML, generative models, and agentic systems.

An AI observability and explainability platform focused on model monitoring, diagnostics, and governance for LLMs and ML systems, with tools to produce audit evidence and remediate issues.

A platform for AI red‑teaming, automated vulnerability detection, and testing that finds hallucinations, bias, prompt injections and other safety/security issues in text-to-text models and conversational agents.

A model and AI risk management platform designed for regulated industries that automates model testing, validation, documentation and audit workflows across traditional and GenAI models.

An enterprise AI governance platform that provides automated discovery, risk triage, regulatory alignment, continuous monitoring and audit-grade reporting across the AI lifecycle.

A model intelligence platform focused on explainability and model quality analytics that provides error analysis, explainability, monitoring, and governance support for ML models.

An AI governance platform that helps organizations define policy-to-proof governance, automate validations, continuously monitor models, and produce evidence for compliance — with a noted focus on insurance and regulated industries.

An open-source platform and framework (hosted under LF AI & Data) for building, sharing, packaging and deploying AI/ML components and applications via a marketplace and standardized infrastructure.

IBM Watson OpenScale (now surfaced via IBM’s watsonx governance offerings) provides runtime visibility into AI models, detecting and helping correct drift, bias and other issues while producing explainability and audit artifacts.

Developer-focused application security platform that provides SAST, SCA, container and IaC scanning plus developer-first remediation guidance to find and fix vulnerabilities across the SDLC. ([snyk.io](https://snyk.io/?utm_source=openai))

An application security platform (Checkmarx One) that offers SAST, DAST, SCA, IaC scanning and Application Security Posture Management (ASPM) with AI-assisted remediation guidance. ([checkmarx.com](https://checkmarx.com/?utm_source=openai))

Secrets-detection platform that scans repositories, commits, pull requests, and developer workflows to detect hardcoded secrets and help prioritize and remediate leaked credentials. ([gitguardian.com](https://www.gitguardian.com/?utm_source=openai))

Developer-first supply chain security platform that analyzes open-source packages for malicious behavior, vulnerabilities and other supply-chain risks and can block malicious dependencies in real time. ([socket.dev](https://socket.dev/?utm_source=openai))

Open-source, syntax-aware static analysis tool and commercial AppSec platform for SAST, SCA and secrets scanning that lets teams write and run custom, language-aware rules as code. ([semgrep.dev](https://semgrep.dev/blog/2020/introducing-semgrep-and-r2c/?utm_source=openai))

DeepCode AI (now integrated into Snyk's platform) is an AI-powered code-analysis capability that augments SAST with security-specific ML models to detect and suggest fixes for vulnerabilities and code issues. ([snyk.io](https://snyk.io/es/platform/deepcode-ai/?utm_source=openai))

Cloud-based application security platform offering static analysis (SAST), software composition analysis (SCA), dynamic testing (DAST) and developer-focused integrations for scanning binaries and source. ([veracode.com](https://www.veracode.com/products/binary-static-analysis-sast/?utm_source=openai))

Fortify (OpenText / Micro Focus heritage) provides enterprise SAST, DAST and Software Security Center orchestration for automating application security testing and managing scan results across the SDLC. ([microfocus.com](https://www.microfocus.com/documentation/fortify-static-code-analyzer-and-tools/2440/?utm_source=openai))

Contrast provides runtime and shift-left application security (RASP, ASPM/ASPM, SCA) via instrumentation to detect, protect and prioritize real exploitable vulnerabilities with code-level context. ([contrastsecurity.com](https://www.contrastsecurity.com/contrast-protect?utm_source=openai))

Static code analysis and developer productivity platform that provides real-time linting, security checks, automated code reviews, and shared code snippets across IDEs, CI/CD and repos. ([codiga.io](https://www.codiga.io/?utm_source=openai))

Provides APIs and products to automatically identify, redact, pseudonymize, or synthesize personally identifiable information (PII) across text, documents, images, audio and files so organizations can safely use LLMs and other data workflows without exposing sensitive data.

A privacy management platform that automates data subject request (DSR) fulfillment, data mapping, and consent management while using Risk Intelligence to discover shadow IT and surface where personal data resides across an organization’s systems.

A governance, risk and compliance (GRC) platform focused on privacy, security and AI governance that centralizes consent and preference management, data use governance, privacy automation and third‑party risk processes.

Offers privacy management and data governance software and services to automate compliance, manage privacy programs, and provide privacy certifications and assessments.

A unified Data Command Center platform that combines data discovery, classification, DSPM (Data Security Posture Management), privacy automation and AI governance to discover, protect and orchestrate controls across hybrid multicloud and SaaS environments.

A data intelligence platform that uses ML to discover, classify and correlate identity and sensitive data across an enterprise to support privacy automation, DSAR handling, DSPM and data access controls.

A data governance platform that centralizes business glossaries, policy management, data cataloging and enforcement to help organizations govern data and AI use cases while reducing compliance risk.

A metadata-first data catalog and agentic data intelligence platform that combines active metadata, natural-language search and policy enforcement to help users discover, trust and safely use data for analytics and AI.

An enterprise cloud data management vendor offering AI-powered metadata, data cataloging and data privacy/security products (including Data Privacy Management, cloud data masking and enterprise data cataloging) to discover, protect and govern sensitive data across hybrid environments.

A data security platform that discovers, classifies and protects sensitive files and accounts, provides DSPM capabilities, detects insider and external threats, and automates remediation and access control to reduce data breach risk.

Automates testing for security and safety vulnerabilities in AI models during development and provides runtime protections (guardrails) to prevent exploitation in production.

A unified AI security platform offering model scanning, automated red-teaming, and runtime protection across the AI lifecycle through products such as Guardian, Recon, and Layer.

Provides continuous red-teaming and security services focused on agentic AI, generative AI applications, and model/application robustness to adversarial attacks.

An end-to-end AI security platform that combines proactive red-teaming, real-time defenses, and observability to protect GenAI systems during testing and in production.

Provides an AI security platform that protects models and AI assets across supply chain security, runtime defense, posture & governance, and automated red teaming.

An AI-native security platform offering runtime protection (Guard) and risk-based red-teaming (Red) to prevent prompt injection, data leakage, and other runtime attacks with low-latency enforcement.

A data privacy and AI governance platform that maps data usage, discovers and protects PII, and provides code/website scanners and governance tools to manage privacy risks in AI initiatives.

Delivers tools to automatically diagnose, surface, and fix data and model blind spots (especially for computer vision) and provides technical assessments for AI governance and production readiness.

Provides AI risk assessments, third‑party verification, and affirmative AI insurance and warranties to transfer and mitigate financial and operational risks from AI deployments.

An open-source static scanner (from Protect AI) that detects model serialization attacks by scanning model files for embedded or unsafe code before loading them into environments.

Continuous security and compliance automation platform that automates evidence collection, control monitoring, and framework mapping to keep organisations audit-ready.

Automated compliance and trust-management platform that continuously monitors systems, collects audit evidence, and helps organisations prepare for certifications like SOC 2 and ISO 27001.

End-to-end compliance automation platform that uses integrations and AI-powered capabilities to automate evidence collection, continuous monitoring, and audit readiness across multiple frameworks.

Security assurance and compliance automation platform (now part of OneTrust) that automates policy creation, audit readiness, and security questionnaire responses to support certifications like SOC 2 and ISO 27001.

Technology-enabled cybersecurity compliance and audit services firm that combines accredited audit and certification services (SOC, ISO, HITRUST, FedRAMP, PCI, CMMC) with a proprietary compliance platform (A-SCEND).

A GRC (governance, risk, compliance) platform that centralises controls, evidence, risk workflows and reporting, with AI-augmented automation for questionnaires and control management.

AI-first, cloud-native platform for audit, risk, and compliance that connects audit workflows, risk and controls, and provides AI-assisted automation and analytics for enterprise GRC programs.

Risk Cloud — a no-code, modular GRC platform that automates workflows, evidence collection and reporting across governance, risk, compliance and third‑party risk use cases with optional AI features.

ZenGRC (formerly Reciprocity) is a cloud-based risk and compliance platform that centralises controls, automates evidence collection, simplifies audits, and manages vendor risk and reporting.

Enterprise governance, risk and compliance (GRC) product family built on the ServiceNow platform that connects risk, compliance, third‑party risk and business continuity with workflow automation and AI-powered insights.