Technology

>

Legal, Compliance, Privacy, and Regulated Ops

Horizon3.ai

Roadmap & Position in Offensive Security

Autonomous penetration testing platform that finds and verifies exploitable attack paths

Offensive Security

|

Series D+

|

Valuation:

~$750M

Company Overview

Horizon3.ai is a security validation platform that runs autonomous pentests against production environments through its NodeZero product. Customers include North Carolina Electric Cooperatives (energy), Jerome's Furniture (retail), Komori (manufacturing), and federal agencies.

What They're Building

The company's public product roadmap & what they're committed to building.

NodeZero

An autonomous pentesting platform that discovers, exploits, and verifies fixes for real attack paths in production.

NodeZero Federal

A FedRAMP High authorized instance for DoD and federal agencies, distributed via Platform One.

Web App Pentesting

An early-access expansion of NodeZero coverage into web application attack surfaces.

Kubernetes Pentesting

Attack path discovery for containerized workloads and cloud-native infrastructure.

Managed Control Plane

A hosted multi-tenant control layer with OAuth 2.1 for enterprise and MSP scalability.

Latest Intelligence

Zeitgeist tracks private signals to determine where the company is heading strategically.

The Revenue Machine Is Being Wired For Scale
May 13, 2026
|
Confidence:
Medium

New Intel: Horizon3 is wiring global sales ops, partner accreditation, and regional GTM across ANZ, LATAM, EMEA, and Canada. After the $100M Series D and new CFO, this looks like pre-liquidity infrastructure rather than routine expansion.

EDR Effectiveness Becomes A Second Product
May 13, 2026
|
Confidence:
High

New Intel: Horizon3 is building an EDR effectiveness and tuning product on top of NodeZero, measuring which attacks CrowdStrike, SentinelOne, and Defender catch or miss. That puts them head-to-head with AttackIQ and Cymulate, and bundles BAS into the pentesting contract.

Offensive AI Becomes The Next Attack Surface
May 13, 2026
|
Confidence:
High

New Intel: Horizon3 is building automated attack modules for LLMs, agentic systems, and AI infrastructure inside NodeZero. AI red teaming becomes a productized SKU, putting Pentera and AttackIQ on the defensive before they have packaged the category.

Add To Your Portfolio

Founder and Key Execs

Snehal Antani

CEO and Co-founder (ex-CTO JSOC, ex-CTO/SVP Splunk, ex-CIO GE Capital, 18 patents)

Anthony Pillitiere

CTO and Co-founder (20+ years USAF, cybersecurity program leadership)

Holly Grey

CFO (ex-Exabeam, ex-Forescout, joined June 2025)

Andres Botero

CMO (ex-Rubrik, ex-BlackLine)

Founder Force Multiplier

Snehal Antani ran offensive cyber operations at JSOC and scaled data infrastructure at Splunk, which means he understands both the attacker mindset and enterprise security buying behavior. Anthony Pillitiere brings two decades of USAF network defense leadership, giving the team rare credibility with federal and critical infrastructure buyers who are now writing the checks.

Funding History

2020 | $3.5M Seed led by SignalFire
2021 | $30M Series B led by SignalFire
2023 | $40M Series C led by Craft Ventures
2025 | $100M Series D led by NEA
2025 | Strategic investment from Prosperity7 Ventures

Notable Open Roles

Staff Attack Engineer, AI/LLM

Engineering role tied to Staff attack engineer, ai/llm.

Director, North America Channels

Sales role tied to Regulated vertical expansion: sales + government.

Director, Engineering, Proactive Offense

Engineering role tied to Director, engineering.

Competitors

Pentera:

Competes directly in autonomous pentesting but with less federal traction and no comparable FedRAMP posture.

Cymulate:

Focuses on breach and attack simulation with pre-built scenarios rather than true autonomous exploitation.

AttackIQ:

MITRE ATT&CK aligned BAS platform, more control-validation oriented than attack-path driven.

Horizon3.ai

's Moat:

AI-driven attack path discovery (Anthropic's Mythos model under the hood), production-safe execution, and FedRAMP High authorization create regulated-market lock-in competitors cannot easily replicate. The federal certification alone takes years.

How They're Leveraging AI

Autonomous Attack Path Validation

Runs production-safe penetration tests that discover, exploit, and verify real attack paths, turning security validation into a repeatable control loop rather than a manual consulting exercise.

AI Use Overview:

Horizon3 runs AI-driven attack path discovery (powered by Anthropic's Mythos model) with production-safe execution against real environments, plus a managed control plane and FedRAMP High authorization that the rest of the pentesting category does not match.

More Similar Companies

Harvey AI

Generative AI platform automating legal workflows for law firms and in-house counsel

A category-defining wedge into a $1T legal services market with deep enterprise penetration, OpenAI alignment, and workflow lock-in that incumbents cannot easily replicate.

XBOW

Autonomous AI agents that continuously pentest web apps and validate exploits end to end.

Agentic pentesting is one of the few security categories where LLMs plausibly replace expensive human labor, and XBOW has the team and early proof points to own it.

SolveAI

Natural-language platform for building production-grade enterprise apps without code.

Forward-deployed delivery produces proprietary pattern libraries that feed back into the product, a data advantage pure self-serve competitors cannot replicate without the same embedded model.

Upwind Security

Runtime-powered cloud security platform using eBPF sensors and AI agents for detection and response.

Runtime context is the wedge against agentless-only CNAPP incumbents like Wiz and Orca, and Upwind is extending into AI-driven response and SAST before the category consolidates.

Back To All Companies >