MSSP platform updates this week show vendors prioritizing day-to-day operations over new features. Identity and PAM are becoming core managed services, not add-ons. AI is being used to cut analyst workload and protect margins, not just improve alerts. Interest in managed SASE points to demand for platforms that combine security, networking, and access in one model. Recent launches and funding rounds reinforce this direction, from 12Port’s MSP-focused Zero Trust PAM program to Mesh Security and Rein Security targeting automation and runtime protection, and larger bets like Upwind and Memcyco emphasizing real-time, agentless security. The common thread is a market recalibrating around platforms that are easier to run, easier to scale, and more economically viable for MSSPs.
Market Pulse: Cybersecurity Deals, Funding, and Platform Shifts
12Port has launched a new Zero Trust Privileged Access Management (PAM) program: 12Port has launched a new Zero Trust Privileged Access Management (PAM) program aimed squarely at MSPs, positioning identity security as a core managed service rather than an add-on. The agentless PAM platform is built for multi-tenant MSP environments, allowing partners to vault admin credentials, eliminate standing privileges, and tightly control privileged sessions across on-prem, cloud, and hybrid systems from a single console.
Mesh Security has raised $12 million: Mesh Security has raised $12 million in Series A funding to push its cybersecurity mesh architecture (CSMA) platform further into autonomous, agentic security execution. Led by Lobby Capital, the round brings total funding to more than $16 million and will be used to expand Mesh’s cross-domain, system-level remediation capabilities while scaling sales and customer support. Mesh positions its platform as an execution layer that sits above existing security tools, unifying fragmented stacks into a single operating model without replacing current investments.
Rein Security raises $8 million in funding: Rein Security has emerged from stealth with $8 million in funding to introduce an inside-out approach to application security that focuses on protecting apps while they are running in production. The company targets what it sees as a core gap in traditional AppSec: a lack of real visibility into how applications actually behave at runtime. Rein’s platform adds a minimal code change to baseline normal application behavior in production, then detects and blocks deviations in real time, such as unexpected RCE or exploit attempts, without killing processes or disrupting users.
Upwind has raised $250 million in Series B funding: Upwind has raised $250 million in Series B funding at a $1.5 billion valuation to accelerate its runtime-native approach to cloud security as AI-driven workloads reshape cloud environments. Led by Bessemer Venture Partners, the round brings total funding to $430 million and will be used to scale Upwind’s platform across data, AI, and code while expanding global go-to-market efforts. The company positions its CNAPP offering as runtime-first, using real-time signals to cut noise and surface actual risk across networks, APIs, and data flows without slowing development.
Memcyco has raised $37 million in an oversubscribed Series A: Memcyco has raised $37 million in an oversubscribed Series A round to scale its agentless, real-time anti-impersonation platform as account takeover and AI-driven fraud accelerate. The funding brings total capital raised to $47 million and will support global expansion, with a near-term focus on Latin America, where digital fraud is rising sharply. Memcyco’s technology is designed to disrupt attacks midstream by covertly detecting both victim and attacker behavior during impersonation attempts, rather than relying on post-incident takedowns.
