Ent Seed Funding Throws $100M at AI Security Gamble

Ent exited stealth Tuesday with $100 million in seed funding, a strikingly large opening check for a workplace cybersecurity startup built around one urgent claim: AI makes attacks move too fast for old detection-first defenses. The Ent seed funding was announced Tuesday, June 16, according to PYMNTS, and puts immediate pressure on the company to prove prevention can happen before human users or AI agents trigger incidents.

Ent’s thesis is blunt. The company says AI “compresses the time between compromise and impact,” so “prevention must once again become the primary objective of security.” Its platform is designed to help companies understand and interrupt risky actions by humans and AI agents “before they become incidents.”

Ent seed funding gives builders $100 million to ship prevention-first endpoint security

The $100 million seed round gives Ent room to hire across engineering and go-to-market teams while funding work in AI governance, threat prevention, security integrations and multimodal endpoint intelligence. That is the buildout Ent now has to turn from stealth pitch into deployed product.

The builder question is direct: can Ent make real-time intervention work without slowing down employees, AI agents and business applications?

SecurityWeek reported that the round was led by Decibel, with Sequoia, Crosspoint Capital, Craft Ventures, Shield Capital, Felicis and In-Q-Tel also investing. The company was founded by cybersecurity veterans Elias Manousos and Brandon Dixon, who previously created RiskIQ, later acquired by Microsoft, according to SecurityWeek.

Ent is positioning its technology as a new layer for workspace security. Its stated target is the gap between behavior that looks legitimate and behavior that can still create risk, especially when AI agents are acting inside corporate environments.

“AI is changing both how people work and how quickly attackers can act. What once took days now happens in seconds,” Manousos said.

He added: “By the time traditional security systems detect a problem, it is too late. We believe the future of security lies in understanding intent in real time across people and AI agents and stopping risk before it becomes an incident.”

That is the core claim behind the Ent seed funding story. Ent isn’t pitching another post-incident alert machine. It is pitching intent detection at the moment an action is being taken.

Security buyers get an AI-agent pitch, not just another alert console

Ent says its platform watches for risky actions by both people and AI agents at the point of use. SecurityBrief reported that the product can be delivered as software-as-a-service or self-hosted in a customer’s cloud, and runs through a lightweight endpoint agent across Windows, macOS, Linux and browser-extension deployments.

The buyer question is sharper: will Ent reduce incidents, or just add another policy layer teams have to tune?

According to SecurityBrief, Ent says the platform is already deployed with Global 2000 customers in hospitality, financial services and defence. Those customers use it for insider risk detection, AI governance, data loss prevention, threat prevention and incident investigation.

That customer detail matters because Ent’s pitch depends on context. The company argues that many modern risks can resemble normal work, especially when autonomous agents execute workflows across devices, applications and data. A blocked action only helps if the system understands why the action is risky in that business setting.

For CISOs evaluating where a new prevention layer would fit, the integration question will be as important as the AI story. XOOMAR readers comparing adjacent stack decisions may want to revisit Your SOC Budget Hinges on SOAR vs SIEM vs XDR Choices and 60-Tool Sprawl Trap Forces Security Platform Consolidation for context on how security teams weigh overlapping tools.

Ent says it is meant to work with existing EDR, SIEM, SOAR and IAM systems. That sounds buyer-friendly, but the proof will come in deployment details: how policies are written, how interventions are explained, how false positives are handled, and whether the product gives investigators enough record of what happened.

Existing security stacks now face Ent’s prevention-first challenge

Ent is not entering a blank space. Enterprise security teams already run endpoint detection, identity controls, logging systems, automation tools and cloud security products. Ent’s argument is that those systems often see evidence after the action, while AI-speed work requires reasoning before completion.

The competitor question is practical: if existing tools already touch endpoint, identity and workflow data, what makes Ent’s intent layer hard to copy?

Ent’s answer, based on the supplied materials, is a mix of endpoint placement, AI reasoning and adaptive policy enforcement. SecurityBrief said the platform applies customer-defined policies and intervenes in real time before an incident occurs.

That creates a clear technical burden. Ent must show it can distinguish between a strange but legitimate action and a dangerous one while the user or agent is still in motion. The company also has to avoid turning every unusual workflow into a security interruption.

Its team gives the company credibility with enterprise buyers. PYMNTS reported that Ent’s team includes engineers and security operators with “deep enterprise experience,” advised by former cybersecurity executives from Google, Aetna, MassMutual and Microsoft, as well as a former NSA director.

Still, names and funding won’t settle the product question. Security teams will want proof inside messy corporate environments, where permissions, SaaS apps, local files, browser sessions and AI tools collide every day.

Investors have made Ent’s next proof point painfully clear

The Ent seed funding round gives the company a loud entrance. It also removes the excuse of moving slowly.

The market signal is not subtle: investors are willing to back security companies that can explain how AI changes the timing of risk. Ent now has to show measurable enterprise traction, not just a clean narrative about AI-powered attacks and prevention.

Several details remain open from the supplied materials. Pricing was not disclosed. Ent has not named the Global 2000 customers cited by SecurityBrief. The sources do not include major enterprise partners, contract sizes or independent performance benchmarks.

That leaves a focused watch list:

• Customer proof: Whether Ent names major enterprise deployments beyond broad industry categories.
• Product evidence: Whether it shows how real-time interventions work in practice.
• Integration depth: Whether existing EDR, SIEM, SOAR and IAM tools treat Ent as useful context or another source of noise.
• AI governance use cases: Whether buyers adopt it for AI-agent oversight as much as conventional threat prevention.

If Ent can prove that intent-aware prevention works at AI speed, it has a shot at becoming a serious workplace security player. If the product creates friction without clear incident reduction, the $100 million round will look less like validation and more like a very expensive test of a timely thesis.

The Bottom Line

• Ent's $100 million seed round signals strong investor confidence in AI-era workplace security.
• The company is betting that prevention must replace detection-first defenses as attacks accelerate.
• Ent now faces pressure to turn a high-profile stealth launch into a working product for enterprises.