London-based cybersecurity company Cyb3r Operations has secured $5.4m (£4m) in new funding to help organisations identify and manage third-party cyber risk in real time. The round was led by Octopus Ventures, with follow-on investment from Pi Labs, bringing the company’s total funding to $6.75m (£5m).
The investment follows rising concern across the cybersecurity sector that traditional approaches to third-party risk — such as annual questionnaires, spreadsheets, and static audits — fail to capture how fast threats evolve across supply chains. More than a third of major cyber incidents now involve third parties, yet most organisations still depend on processes that become outdated almost immediately after completion.
Founded in London, Cyb3r Operations aims to replace those fragmented, manual systems with continuous, automated oversight built directly into an organisation’s technology stack. Its platform integrates across cloud services, SaaS tools, AI applications, and supplier networks to map and monitor third-party vulnerabilities in real time.
Rather than assigning numerical scores or letter grades, the company’s platform provides actionable intelligence on which external relationships pose the greatest risk, how those risks are changing, and where security teams should prioritise mitigation. It also surfaces vulnerabilities in supplier ecosystems that are often missed by conventional assessments, including undisclosed sanctions exposure, fourth-party dependencies, and shadow IT.
Vincent Cook, founder and CEO of Cyb3r Operations, said the biggest challenge facing modern cybersecurity teams is not the sophistication of attackers, but the inefficiency of their own processes. “One of the biggest problems in cybersecurity today isn’t just how advanced threat actors are getting,” he said. “It’s that we’re stumbling over our own processes. Organisations lack basic visibility into where risk actually sits.”
He added that many companies have developed an “allergic reaction” to third-party risk management tools that offer “meaningless risk scores” without context. “Real risk sits in relationships, dependencies, employee exposure, and how those things change over time,” Cook said. “Our mission is to enable organisations to continuously detect, assess, and respond to threats in order to stay ahead.”
Constanza Diaz, investor at Octopus Ventures, said Cyb3r Operations is addressing a critical gap in the cybersecurity market. “We invested in Cyb3r Operations because they’re tackling a critical blind spot in cybersecurity: the growing gap between perceived third-party risk and real exposure,” she said. “As organisations scale their digital ecosystems, risk now flows through suppliers, SaaS tools, and hidden dependencies, but most teams are still operating reactively.”
The funding will enable Cyb3r Operations to expand its engineering and intelligence teams, deepen its data integration capabilities, and support a broader customer base as enterprises seek more proactive, continuous ways to manage cyber risk across their supply chains.
