Frequently Asked Questions
Company Growth, Milestones & Recognition
What growth did Cymulate achieve in 2021?
In 2021, Cymulate achieved 100% revenue growth globally and 200% growth in new bookings in North America. The company also increased personnel by 150% across North America, EMEA, and APAC. (Source: Cymulate Press Release, Jan 19, 2022)
How much funding has Cymulate raised to date?
As of May 2021, Cymulate has raised a total of million, including a million Series C funding round led by One Peak, with participation from Susquehanna Growth Equity, Vertex Ventures Israel, Vertex Growth, and Dell Technologies Capital. (Source: Cymulate Press Release, Jan 19, 2022)
What awards and recognitions has Cymulate received?
Cymulate has received several industry awards, including:
- Frost & Sullivan Best Practices for Global Breach and Attack Simulation Product Leadership Award
- Cyber Defense Global InfoSec Award (Breach & Attack Simulation)
- Cybersecurity Excellence Awards – Gold (Breach and Attack Simulation)
- American Business Awards: The Stevies – Silver (Most Innovative Tech Company of the Year)
- SC Awards Europe – Winner (Breach & Attack Simulation)
- American Security Today ASTORS Awards – Platinum Winner (Breach & Attack Simulation)
(Source: Cymulate Press Release, Jan 19, 2022)
Who are some of Cymulate's investors?
Cymulate's investors include One Peak, Susquehanna Growth Equity (SGE), Vertex Ventures Israel, Vertex Growth, and Dell Technologies Capital. (Source: Cymulate Press Release, Jan 19, 2022)
What leadership appointments did Cymulate make in 2021?
In 2021, Cymulate appointed Andrew Barnett as Chief Strategy Officer and Wendy Hoey as Vice President of Alliances for the Americas to lead strategic partnerships and grow channel alliances. (Source: Cymulate Press Release, Jan 19, 2022)
What is Cymulate's mission and vision?
Cymulate's mission is to transform cybersecurity practices by providing tools for continuous threat validation and exposure management. The vision is to create a collaborative environment where organizations can achieve lasting improvements in their cybersecurity strategies. Learn more.
Where can I find Cymulate's latest news, press releases, and media coverage?
You can find all of Cymulate's latest company announcements, press releases, and media coverage in our newsroom. This includes information on partnerships, product updates, industry awards, and expert research featured in leading publications.
Where can I read about Cymulate being named a market leader by Frost & Sullivan?
You can read the press release about Frost & Sullivan naming Cymulate a market leader for automated security validation on our press release page.
What regions does Cymulate operate in?
Cymulate operates globally, with expanded operations in North America, EMEA, and APAC. In 2021, the company expanded into Asia through a partnership with Japanese telecoms giant NTT, building on existing distributor agreements with NTT entities in the USA and Europe. (Source: Cymulate Press Release, Jan 19, 2022)
Product Features & Capabilities
What is Cymulate's Extended Security Posture Management (XSPM) platform?
Cymulate's XSPM platform is a SaaS-based solution that enables security professionals to continuously challenge, validate, and optimize their cybersecurity posture end-to-end across the MITRE ATT&CK® framework. It provides out-of-the-box, expert, and threat intelligence-led risk assessments that are simple to deploy and use for all maturity levels, and are constantly updated. (Source: Cymulate Press Release, Jan 19, 2022)
What are the four pillars of Cymulate's XSPM platform?
The four pillars of Cymulate's XSPM platform are: Attack Surface Management, Continuous Automated Red Teaming, Breach and Attack Simulation, and an Advanced Purple Teaming framework. These are tied together with analytics to provide meaningful security posture insights. (Source: Cymulate Press Release, Jan 19, 2022)
How quickly can Cymulate be deployed?
Cymulate's SaaS-based XSPM platform can be deployed within an hour, enabling rapid onboarding and immediate value for security teams. (Source: Cymulate Press Release, Jan 19, 2022)
What frameworks does Cymulate support?
Cymulate supports the MITRE ATT&CK® framework, providing coverage across the attack lifecycle for comprehensive security validation. (Source: Cymulate Press Release, Jan 19, 2022)
What integrations does Cymulate offer?
Cymulate integrates with Microsoft Defender for Endpoint, EDR, and TVM, among other security technologies. For a complete list of integrations, visit our Partnerships and Integrations page.
What is Attack-Based Vulnerability Management?
Attack-Based Vulnerability Management is a Cymulate feature that reduces risk exposure time by assessing all unpatched vulnerabilities and empowering security teams to efficiently prioritize patching, resulting in shorter time to remediation and substantial savings. (Source: Cymulate Press Release, Jan 19, 2022)
What is Cymulate's Attack Surface Management?
Cymulate Attack Surface Management provides visibility and protection of digital assets located outside the enterprise information network perimeter, helping organizations manage risks associated with distributed assets. (Source: Cymulate Press Release, Jan 19, 2022)
What is the collaborative forum launched by Cymulate?
Cymulate launched a collaborative forum that enables customers, partners, and employees to share working methods, best practices, and access Cymulate’s latest products. (Source: Cymulate Press Release, Jan 19, 2022)
How does Cymulate support security service providers?
Cymulate offers a customizable, template-driven platform that enables security service providers to craft, automate, and deliver purple teaming exercises, helping enterprise customers actively protect their networks. (Source: Cymulate Press Release, Jan 19, 2022)
Pricing & Plans
What is Cymulate's pricing model?
Cymulate operates on a subscription-based pricing model tailored to each organization's requirements. Pricing is determined by the chosen package, number of assets, and scenarios selected for testing and validation. For a detailed quote, you can schedule a demo with the Cymulate team. (Source: Knowledge Base)
Security, Compliance & Trust
What security and compliance certifications does Cymulate hold?
Cymulate holds several key certifications, including SOC2 Type II (covering security, availability, confidentiality, and privacy), ISO 27001:2013 (Information Security Management), ISO 27701 (Privacy Information Management), ISO 27017 (Cloud Services Security Controls), and CSA STAR Level 1 (Cloud Controls Matrix). Learn more.
How does Cymulate ensure data security?
Cymulate ensures data security through encryption for data in transit (TLS 1.2+) and at rest (AES-256), secure AWS-hosted data centers, and a tested disaster recovery plan. The platform also includes mandatory 2-Factor Authentication (2FA), Role-Based Access Controls (RBAC), IP address restrictions, and TLS encryption for its Help Center. (Source: Knowledge Base)
Is Cymulate GDPR compliant?
Yes, Cymulate incorporates data protection by design and has a dedicated privacy and security team, including a Data Protection Officer (DPO) and Chief Information Security Officer (CISO), ensuring GDPR compliance. (Source: Knowledge Base)
Use Cases & Customer Success
Who are Cymulate's typical customers?
Cymulate serves organizations of all sizes, including Fortune 500 companies, across industries such as finance, healthcare, retail, media, transportation, and manufacturing. (Source: Cymulate Press Release, Jan 19, 2022; Knowledge Base)
What roles benefit from using Cymulate?
Cymulate is designed for CISOs and security leaders, Security Operations (SecOps) teams, Red Teams, and Vulnerability Management teams. Each role benefits from tailored features and insights to improve threat resilience and operational efficiency. Learn more.
What customer success stories are available for Cymulate?
Customer success stories include:
More case studies are available on the Cymulate Customers page.
What feedback have customers given about Cymulate's ease of use?
Customers consistently praise Cymulate for its intuitive interface and ease of use. For example, Raphael Ferreira, Cybersecurity Manager, said: "Cymulate is easy to implement and use—all you need to do is click a few buttons, and you receive a lot of practical insights into how you can improve your security posture." (Source: Knowledge Base)
Implementation & Support
How long does it take to implement Cymulate?
Cymulate is designed for rapid deployment and can be implemented within an hour. Its agentless mode eliminates the need for additional hardware or complex configurations, allowing organizations to start running simulations almost immediately. (Source: Knowledge Base)
What support options are available for Cymulate customers?
Cymulate offers comprehensive support, including email support ([email protected]), real-time chat support, a knowledge base with technical articles and videos, webinars, e-books, and an AI chatbot for quick answers. (Source: Knowledge Base)
Integrations & Partnerships
What are some of Cymulate's technology integrations?
Cymulate integrates with a wide range of security technologies, including Akamai Guardicore (Network Security), AWS GuardDuty (Cloud Security), BlackBerry Cylance OPTICS (EDR and Anti-Malware), Carbon Black EDR, Check Point CloudGuard, Cisco Secure Endpoint, CrowdStrike Falcon, Wiz, and SentinelOne. For a full list, visit our Partnerships and Integrations page. (Source: Knowledge Base)
Does Cymulate partner with other security vendors?
Yes, Cymulate partners with leading security vendors and is part of technology alliances such as the Wiz Integration Network (WIN) and collaborates with SentinelOne for continuous security optimization. (Source: Knowledge Base)
Competitive Differentiation
How does Cymulate differ from other security validation platforms?
Cymulate stands out with its unified platform that integrates Breach and Attack Simulation (BAS), Continuous Automated Red Teaming (CART), and Exposure Analytics. It offers continuous, automated attack simulations, AI-powered optimization, complete kill chain coverage, and an extensive threat library updated daily. Customers have reported measurable outcomes, such as a 52% reduction in critical exposures and an 81% reduction in cyber risk within four months. (Source: Knowledge Base)
What are the advantages of Cymulate for different user segments?
CISOs and security leaders benefit from quantifiable metrics and insights; SecOps teams gain operational efficiency and faster threat validation; Red Teams access automated offensive testing with over 100,000 attack actions; Vulnerability Management teams automate validation and prioritize vulnerabilities. (Source: Knowledge Base)
Pain Points & Solutions
What core problems does Cymulate solve?
Cymulate addresses overwhelming threat volumes, lack of visibility, unclear risk prioritization, and resource constraints by providing continuous threat validation, exposure prioritization, improved resilience, operational efficiency, and collaboration across security teams. (Source: Knowledge Base)
What pain points do Cymulate's customers commonly express?
Common pain points include fragmented security tools, resource constraints, unclear risk prioritization, cloud complexity, communication barriers, inadequate threat simulation, operational inefficiencies in vulnerability management, and post-breach recovery challenges. (Source: Knowledge Base)
How does Cymulate address the pain points of different personas?
Cymulate tailors solutions for each persona: CISOs get validated metrics for investment justification; SecOps teams benefit from automation and efficiency; Red Teams leverage automated offensive testing; Vulnerability Management teams automate validation and prioritization. (Source: Knowledge Base)
Events & Media
Where can I watch Cymulate at it-sa 2025?
You can watch Cymulate at it-sa 2025 in this video: Cymulate at it-sa 2025 video.
