Home
Loading

aVenture is in Alpha: During this preview period, you should expect the research data to be limited and may not yet meet our exacting standards. We've made the decision to provide early access to our data to showcase the product as we build, but you should not yet rely upon it alone for your investment decisions.

aVenture is in Alpha: During this preview period, you should expect the research data to be limited and may not yet meet our exacting standards. We've made the decision to provide early access to our data to showcase the product as we build, but you should not yet rely upon it alone for your investment decisions.

Get in touch

  • Contact

  • Request a demo

  • Request data updates

  • Add a company

Research

  • Companies

  • Investors

  • People

aVenture

  • Sitemap

  • Feature requests

Member

Backed by

© aVenture Investment Company, 2026. All rights reserved.

San Francisco, CA, USA

Privacy Policy

aVenture Investment Company ("aVenture") is an independent research platform providing detailed analysis and data on startups, venture capital investments, and key industry individuals. It is not a registered investment adviser, broker-dealer, or investment advisor and does not provide investment advice or recommendations. The data provided by aVenture does not constitute recommendations or advice, whether by methodology, analysis, AI-generated content, or a statement written by a staff member of aVenture.

aVenture is not affiliated with any of the people, companies, organizations, government agencies, regulatory bodies, or investment funds we provide coverage for on this site unless explicitly stated otherwise. Users assume full responsibility for decisions made based on information obtained from this platform. Links to external websites do not imply endorsement or affiliation with aVenture. Any links that provide the ability to invest in a primary or secondary transaction in a company are for convenience only and do not constitute solicitations or offers to buy or sell an investment. Investors should exercise heightened precaution and due diligence when investing in private companies, especially those not independently audited.

While we strive to provide valuable insights with objectivity and professional diligence, we cannot guarantee the accuracy of the information provided on our platform. Before making any investment decisions, you should verify the accuracy of all pertinent details for your decision. To the fullest extent permitted by law, aVenture shall not be liable for any direct, indirect, incidental, consequential, or financial damages arising from use of this site, whether by consumers of its contents directly or by persons or organizations covered by our research, even if we are advised of the possibility. Our best-efforts processes and correction request forms do not create a warranty or duty of care.

Profiles on this platform may include content generated in part by large language models (LLMs, artificial intelligence) that aggregate publicly available sources (e.g., SEC EDGAR, public filings, press releases). Source attribution is provided where known; always verify statements and claims here against original sources before relying on any data. Content on our site may contain inaccuracies, omissions, or what are commonly called 'hallucinations' if generated in part or in full by AI / LLMs. The risk can also exist even when content is written by a human, as internal and third-party sources may also have inaccuracies for the same or different reasons. While we randomly audit a proportion of content, this is not exhaustive.

We recommend that an independent auditor be hired to verify the accuracy of the information before relying on it for any sensitive decisions. By accessing this platform, you agree not to rely solely on any information generated by AI, aggregated, or sourced or written otherwise on this site, for investment, financial, or other decisions. aVenture assumes no responsibility for inaccuracies, omissions, or hallucinations. You must independently verify all data from primary sources. Use of this platform constitutes your waiver of claims for reliance-based damages, including negligent misrepresentation. To report an error, request a correction, or dispute information about a company or individual, contact us via our request data updates form.

Loading
Loading
Home
News
Oneleet raises $33M to shake up the world of security compliance

From TechCrunch

By Dominic-Madori Davis

October 2, 2025

Oneleet raises $33M to shake up the world of security compliance

Oneleet raises $33M to shake up the world of security compliance

Bryan Onel’s father was a locksmith. As for Onel, he described himself as the digital equivalent.

Ethical hacking was Onel’s hobby growing up. He studied AI at university and then turned that hacking hobby into a profession. “I spent a decade performing penetration tests for over 150 companies across all sectors,” Onel tells TechCrunch, adding that he kept easily breaking into companies that had passed their security checks. 

Onel realized that security often fell within two brackets: Painful but effective, or painless but ineffective. Most companies were doing the bare minimum in cybersecurity and compliance, as it often takes too much work — and tools and talent — to provide effective security defenses. 

Onel’s clients kept asking if he could provide a solution to their problems, so he gave it a shot. 

In 2022, he teamed up with his wife, Ora, and college friend Erik Vogelzang and launched Oneleet, an all-in-one security compliance platform. The startup aims to help other companies get their security certifications while helping them become more secure faster. 

Onel tells TechCrunch that most existing compliance platforms are evidence-collection tools, where users import data from their various products, pay a fee, and then — voilà! — out spits a security certificate saying they are secure. 

“The result is compliance theater,” Onel tells TechCrunch. “You’re certified on paper, but still vulnerable to all kinds of attacks.” 

Oneleet is different, said Onel. The platform includes a suite of security tools: penetrating testing, code scanning, cloud data security, attack surface management, security training, and more, he said, which aims to provide a better window into a company’s security defenses.

“Because it’s integrated from the ground up, we can deploy comprehensive security with the click of a button,” Onel continued. “That saves clients hundreds of hours and eliminates the blind spots that come from managing fragmented tools.” 

Oneleet then partners with independent auditors to provide formal certification reviews. 

On Thursday, Oneleet announced it raised a $33 million Series A funding round led by Dawn Capital to help grow the business. Onel called his fundraising process “straightforward” and said he met Dawn Capital in San Francisco, where he described “immediate chemistry.”

“They already had deep knowledge of the security and compliance space and immediately understood what we were building at Oneleet, so there was instant alignment,” said Onel.

Other investors in the round include Y Combinator, Dropbox co-founder Arash Ferdowsi, and former Snowflake and ServiceNow chief executive Frank Slootman. Oneleet participated in the Summer 2022 class of Y Combinator and said two-thirds of new additions to the VC firm’s portfolio companies are now its clients. 

Competitors in this space include Vanta, Secureframe, and Sprinto. For its part, Oneleet has reached $9 million in annual recurring revenue and has raised $35 million in total to date.

The fresh cash injection will be used to expand Oneleet’s engineering team, increase its AI capabilities, and find ways to reach more customers. The goal is to end security theater in compliance, he said, at a time when defending against cyberattacks is more important than ever.

Onel said that AI is changing the scale of cyberattacks. He said, for example, advanced bad actors are automating cybercrimes, while lowering the bar for novice hackers to strike with malicious attacks. 

He said companies are also being reckless, like carelessly using “vibe coding” tools, or giving AI access to business-critical information without the right guardrails. In the world of compliance, Onel said, companies can use AI to generate fake documentation to make it seem as if the business is more secure than it is. 

Onel says his company heavily uses AI, working in the background for threat modeling and other security assessments, and also helps draft policies. But, he said, the company has a human team verifying information so the client does not see any hallucinations. “We’re responsible about it,” he said. 

“Good security should be invisible,” Onel continued. “Companies should spend less time worrying about security and more time building great products. We have a shot at helping companies defend themselves more effectively than ever before.”

This story was updated to fix errors regarding ARR.

View original article on techcrunch.com

Most Recent

Oratomic raises $300M to build a viable quantum computer that needs only 20K qubits

Oratomic raises $300M to build a viable quantum computer that needs only 20K qubits

The massive round was co-led by ARCH Venture Partners, Spark Capital, and Khosla Ventures.

Jul 10, 2026

An AI agent startup just let its agent run its $100M fundraise

An AI agent startup just let its agent run its $100M fundraise

Lyzr, a startup that builds AI agents for enterprises, used its own AI agent to raise a $100 million round — proof, evidently, that the product actually works.

Jul 9, 2026

Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

In this week’s episode of Build Mode, Isabelle Johannessen talks with Precursor Ventures' Charles Hudson about the headwinds facing early-stage founders today and the most common mistakes founders should avoid in order to get funded.

Jul 9, 2026

Mercor is in talks for a $20B valuation

Mercor is in talks for a $20B valuation

A new $20 billion valuation would be a giant step up from the $10 billion valuation it reached in October.

Jul 9, 2026

Similar Posts

Fig Security emerges from stealth with $38M to help security teams deal with change

Fig Security emerges from stealth with $38M to help security teams deal with change

Fig traces data flows in the security stack and then alerts security teams when changes at any point affect detection or response capabilities.

Mar 3, 2026

Astrix Security, which uses ML to secure app integrations, raises $25M

Astrix Security, which uses ML to secure app integrations, raises $25M

Astrix Security, a platform that helps companies manage and secure third-party app integrations, today announced that it closed a $25 million Series A funding round led by CRV with participation from Bessemer Venture Partners and F2 Venture Capital. Co-founder and CEO Alon Jackson says that the round, which brings Astrix’s total raised to $40 million, […]

Jun 28, 2023

Socket lands a fresh $40M to scan software for security flaws

Socket lands a fresh $40M to scan software for security flaws

The software supply chain, which comprises the components and processes used to develop software, has become precarious. According to one recent survey, 88% of companies believe poor software supply chain security presents an “enterprise-wide risk” to their organizations. Open source supply chain components are especially fraught, thanks to the logistical hurdles in keeping each component well-maintained. Security firm Synopsys found in its 2023 report that 89% of businesses’ codebases containe

Oct 22, 2024

Aim Security raises $10M for its GenAI security platform

Aim Security raises $10M for its GenAI security platform

Securing generative AI-based applications from prompting attacks, ensuring thatnthey don’t leak sensitive data or create malicious output or results that maynviolate privacy regulations is becoming a real business. We’ve already seen somenstartups in this space and today, Tel Aviv-based Aim Security is joining thenfray with a new GenAI security platform and […]

Jan 31, 2024

Most Recent

Oratomic raises $300M to build a viable quantum computer that needs only 20K qubits

Oratomic raises $300M to build a viable quantum computer that needs only 20K qubits

The massive round was co-led by ARCH Venture Partners, Spark Capital, and Khosla Ventures.

Jul 10, 2026

An AI agent startup just let its agent run its $100M fundraise

An AI agent startup just let its agent run its $100M fundraise

Lyzr, a startup that builds AI agents for enterprises, used its own AI agent to raise a $100 million round — proof, evidently, that the product actually works.

Jul 9, 2026

Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

In this week’s episode of Build Mode, Isabelle Johannessen talks with Precursor Ventures' Charles Hudson about the headwinds facing early-stage founders today and the most common mistakes founders should avoid in order to get funded.

Jul 9, 2026

Mercor is in talks for a $20B valuation

Mercor is in talks for a $20B valuation

A new $20 billion valuation would be a giant step up from the $10 billion valuation it reached in October.

Jul 9, 2026

Similar Posts

Fig Security emerges from stealth with $38M to help security teams deal with change

Fig Security emerges from stealth with $38M to help security teams deal with change

Fig traces data flows in the security stack and then alerts security teams when changes at any point affect detection or response capabilities.

Mar 3, 2026

Astrix Security, which uses ML to secure app integrations, raises $25M

Astrix Security, which uses ML to secure app integrations, raises $25M

Astrix Security, a platform that helps companies manage and secure third-party app integrations, today announced that it closed a $25 million Series A funding round led by CRV with participation from Bessemer Venture Partners and F2 Venture Capital. Co-founder and CEO Alon Jackson says that the round, which brings Astrix’s total raised to $40 million, […]

Jun 28, 2023

Socket lands a fresh $40M to scan software for security flaws

Socket lands a fresh $40M to scan software for security flaws

The software supply chain, which comprises the components and processes used to develop software, has become precarious. According to one recent survey, 88% of companies believe poor software supply chain security presents an “enterprise-wide risk” to their organizations. Open source supply chain components are especially fraught, thanks to the logistical hurdles in keeping each component well-maintained. Security firm Synopsys found in its 2023 report that 89% of businesses’ codebases containe

Oct 22, 2024

Aim Security raises $10M for its GenAI security platform

Aim Security raises $10M for its GenAI security platform

Securing generative AI-based applications from prompting attacks, ensuring thatnthey don’t leak sensitive data or create malicious output or results that maynviolate privacy regulations is becoming a real business. We’ve already seen somenstartups in this space and today, Tel Aviv-based Aim Security is joining thenfray with a new GenAI security platform and […]

Jan 31, 2024