Cybersecurity has long operated on a familiar rhythm: detect, prioritize, ticket, remediate. But as attackers increasingly leverage autonomous tools capable of scanning and exploiting vulnerabilities in seconds, that cadence is starting to look dangerously outdated. Reclaim Security believes the industry must pivot from reactive workflows to what it calls “preemptive defense,” and investors are backing that vision with $26 million in funding.
The New York- and Tel Aviv-based company announced $26 million in total funding, including a recent $20 million Series A round led by Acrew Capital, with participation from QP Ventures and Ibex Investors. The capital will be used to scale its engineering team, expand integrations, and accelerate go-to-market initiatives across North America and Europe.
When Detection Isn’t Enough
While attacker breakout times have dropped to as little as 27 seconds, enterprises still take an average of 27 days to remediate critical exposures. Over the past decade, organizations have invested heavily in detection technologies that surface vulnerabilities and misconfigurations. Yet remediation, or the act of safely closing those gaps, remains largely manual and operationally risky.
That disconnect has created a growing backlog of exposures that security teams can identify but struggle to fix without fear of disrupting the business.
“There is a massive ‘Remediation Mirage’ in the market right now. Vendors are slapping an AI label on what is essentially just Prioritization 2.0 or faster ticket management,” says Barak Klinghofer, CEO and Co-founder of Reclaim Security.
”The recent launch of Claude Code, which wiped billions from the market value of traditional security giants, is a massive wake-up call. While such tools can identify hundreds of vulnerabilities in seconds, they also hand attackers an autonomous, high-speed engine for exploit generation. We’ve seen reports of AI-orchestrated espionage campaigns where 80-90% of tactical operations were executed autonomously. In this new reality, if your ‘remediation’ strategy still ends with a human reviewing a manual Jira ticket, you aren’t just slow, you’ve lost the race.
Reclaim is the only platform providing true Agentic Remediation. Through our PIPE™ engine, we’ve removed the fear of ‘breaking the business,’ allowing our AI to move from discovery to resolution in seconds. While others are perfecting the recommendation, we are perfecting the execution.”
Introducing the AI Security Engineer
At the center of Reclaim Security’s platform is what it describes as the industry’s first AI Security Engineer, an autonomous system designed not only to identify exposures but to resolve them safely and at scale.
The core technology, PIPE™ (Productivity Impact Prediction Engine), functions as a simulation engine. Before any remediation action is deployed, PIPE™ predicts the operational and business impact of a proposed security change. It models how changes could affect applications, workloads, user productivity, and business processes, allowing enterprises to implement fixes without risking downtime or unintended disruption.
This simulation-first model enables organizations to prioritize exposures most likely to be exploited, deploy automated or semi-automated remediation safely, compress remediation timelines from weeks to minutes, and eliminate manual configuration and ticket-driven workflows. The platform analyzes how real attack techniques would traverse a specific environment, evaluates how existing defenses would respond, and forecasts the business impact of remediation before execution.
By combining attack path modeling with business-aware remediation, Reclaim aims to help enterprises move beyond reactive “assume breach” postures and toward proactively removing exploitable pathways.
Measurable Outcomes and Market Momentum
According to the company, early enterprise customers across financial services, healthcare, government, and critical infrastructure sectors report tangible results: an 80% increase in overall threat resilience, a 75% increase in ROI from existing security stacks, and a 90% reduction in manual effort when resolving critical exposures.
“Security tools are excellent at explaining why something is risky,” said Mark Kraynak, Founding Partner at Acrew Capital. “What they don’t do is make remediation safe and practical. The real breakthrough isn’t more prioritization, it’s removing risk without breaking the business. Reclaim does exactly that, and that’s why it matters.”
Reclaim Security will showcase its platform, along with its “Attacker’s Worst Day” interactive experience, at the RSA Conference 2026 Early Stage Expo. As AI continues to compress the timeline between vulnerability discovery and exploitation, the company’s thesis is straightforward: if remediation still depends on human-paced workflows, organizations are already behind.
