Artemisan AI-native protection platform that provides real-time detection and auto-response, emerged from stealth this week with a combined $70 million seed and auto-response. A Series fund, six months after inception. The Series A was led by Felicis, with First Round Capital and Brightmind returning to raise their stakes. Theory VC also participated in the tour; Two Sigma; Lock step; Cybersecurity industry leaders including Demisto, former CEO and CTO of Splunk, and founders of Abnormal AI; and senior executives from CrowdStrike, Palo Alto Networks, Microsoft and Okta.
AI-powered attacks are now executed in minutes, adapt in real time, and are never executed the same way twice. Legacy, rule-based detection was developed for human-paced attacks; Rules that take a week to write are out of date before they are sent. Security teams are forced to manually piece together context across dozens of fragmented tools spanning cloud, identity, endpoint, and network systems, under pressure and often after damage has been done. Attackers are moving faster than defenders can respond, and the gap is widening.
How does Artemis work?
Artemis was built for a world where AI fights AI on the cyber battlefield, giving defenders the same speed and adaptability that attackers have. The company works closely with some of the most advanced leading AI labs and models. At the core of Artemis is a proprietary dynamic data model that combines behavioral log data across users, machines, cloud workloads, and applications with business context, generated from each customer’s own telemetry, to understand whether an action makes sense for that organization.
Building on this foundation, Artemis creates detections tailored to each customer, investigating each signal independently and uncovering consistent attack stories rather than overwhelming security teams with noise. For example, if a privilege escalation in Okta coincides with unusual API activity in AWS, Artemis contextualizes both signals and reveals a single related narrative rather than two disconnected alerts, eliminating the need for manual review. When conditions warrant, Artemis allows customers to close the loop at machine speed with automated responses, such as isolating a compromised identity before an attacker moves sideways.
Artemis’ founding team
“We built Artemis from scratch as a defense system based on artificial intelligence” in question Shachar HirshbergCo-founder and CEO of Artemis. “The question is not whether this model will win, but who builds it best. Some of the world’s largest and fastest-growing companies are among our early customers, and we can deliver value to them from day one. That trust is important, and we aim to earn it every day.”
Before founding Artemis, Hirshberg built and scaled security operations platforms at Palo Alto Networks and Demisto, which created the SOAR category and was acquired in one of the largest pure security operations, before earning his MBA at Harvard Business School and joining AWS to lead GuardDuty, a cloud intrusion detection product.
“The basis of Artemis is a data model that I have been working on for years.” said co-founder and CTO Dan Shiebler. “The real breakthrough is not just using better AI models, but giving those models a deep, structured understanding of how an organization works, enabling reliable detection and automated response.”
Shiebler has spent the last decade building large-scale AI systems, most recently leading machine learning and AI at Abnormal AI; where he applied his PhD in machine learning at the University of Oxford to develop AI-powered detection systems that power one of the fastest-growing email security platforms on the market.
In less than six months since the company was founded, Artemis has been tasked with producing and processing billions of events per hour for enterprise clients and other leaders in technology, banking and financial services.
Artemis works with existing security tools that complement legacy SIEMs. Where traditional architectures require ingesting and storing all data up front (a cost model that scales linearly with data volume, negatively impacting visibility), Artemis uses federated queries to retrieve on-demand data from customers’ existing cloud storage and log resources, providing full visibility at one-fifth the cost.
Artemis’ initial scan of a technology company with thousands of employees revealed multimillion-dollar cloud spend savings and shadow activities invisible to existing tools: overprivileged accounts, undocumented integrations, and workflows calling APIs with elevated privileges; these are insights that can only emerge from combining behavioral log data with deep business context.
Another early customer, a highly regulated company with tens of thousands of employees, now completes investigations in less than five minutes; This represents a 96% reduction in time to resolution compared to previous averages. Using Artemis, these teams create custom detections in minutes and quickly explore their environments in natural language without the need to create complex queries.
What are investors saying about Artemis?
“Artemis has assembled a truly world-class team with rare depth at the intersection of AI and cybersecurity, solving a problem that is becoming increasingly urgent as attacks increase in frequency and complexity.” in question Jake StormGeneral partner of Felicis. “Shachar’s experience building enterprise-scale security products and Dan’s deep AI research background make them uniquely suited to solve this problem together. Just six months after founding and still in secrecy, the team found that enterprise inbound was driven solely by word of mouth and early results. This level of demand at this stage is rare and speaks to the scale of the opportunity.”
“By leading the acquisition of Humio, which forms the foundation of Next Generation SIEM at CrowdStrike, I saw exactly what it takes to disrupt major markets.” added Gur TalpazGeneral partner of Brightmind. “I have heard firsthand the demand for a modern, highly complementary protection platform from the world’s largest enterprises and have a clear view that the market is heading in this direction.
“AI-enabled attacks require a fundamentally new approach to defense with AI at the core, and that’s exactly what Artemis is building. We co-led the seed and doubled down on Series A because of our core belief that Artemis is building something others can’t.”
The new funding will allow Artemis to expand its engineering, research and go-to-market teams and deepen its platform as enterprise demand accelerates.
