Exaforce Raises $125M Series B to Build AI-Native Security Operations Platform

Cybersecurity spent the last decade turning analysts into human middleware. Too many dashboards. Too many alerts. Too many disconnected tools pretending integration meant operational clarity. Enterprise SOC teams were expected to process machine-scale threat volume using workflows that still looked suspiciously like 2014. Somewhere along the way, “visibility” became the industry’s favorite word because nobody wanted to admit the systems generating the visibility were exhausting the people operating them.

Now the market is starting to correct itself. Exaforce, the San Jose-based cybersecurity startup building an AI-native, agentic SOC platform, just raised $125M in Series B funding, bringing total funding to $200M. Investors participating in the round include HarbourVest, Peak XV, Mayfield, Khosla Ventures, Seligman Ventures, and AICONIC. The funding arrives at a moment when enterprise security teams are confronting two realities simultaneously: attackers are using AI to accelerate threat velocity, and traditional SIEM-centric security operations are struggling under their own operational weight.

Exaforce is positioning itself directly inside that gap with a platform built around autonomous AI agents called Exabots, multi-model AI reasoning, and a real-time knowledge graph designed to reduce manual SOC work. The broader signal is difficult to miss. Investors are no longer funding AI features bolted onto legacy infrastructure. They are funding companies rebuilding operational systems around the assumption that intelligent automation is becoming foundational infrastructure across enterprise security.

What Happened

Exaforce raised $125M in Series B funding to expand its AI-native security operations platform and accelerate growth across global markets, including Japan and Europe. The company develops an agentic SOC platform designed to unify detection, triage, investigation, and response workflows inside a single real-time environment. Instead of forcing analysts to bounce between fragmented products and manually correlate alerts across disconnected systems, Exaforce uses AI agents called Exabots to automate portions of the investigative and operational process.

That distinction matters more than the branding language floating around the AI market right now. A large portion of enterprise cybersecurity still operates like an overloaded airport during a thunderstorm. Alerts pile up faster than analysts can process them. Teams spend enormous amounts of time filtering false positives, tuning systems, and stitching together fragmented context from multiple tools that technically “integrate” but operationally behave like strangers trapped in an elevator.

Exaforce is betting that the next generation of SOC infrastructure will look fundamentally different. The company says its platform combines multi-model AI, natural-language investigation, and a real-time knowledge graph to improve operational speed and reduce manual workload inside security operations environments. Public reporting also notes that Exaforce reached roughly 20 customers after launching commercially in Q4 2025, including organizations such as Replit and Guardant Health.

Company-reported metrics claim the platform can reduce manual SOC work by up to 90%. Whether that number ultimately holds across broader deployments almost matters less than the market direction itself. Enterprises are clearly searching for ways to reduce analyst fatigue, operational bottlenecks, and the rising costs associated with scaling security operations manually.

Why Exaforce Matters Right Now

The timing behind Exaforce’s funding round says almost as much as the funding amount itself. Cybersecurity has entered an uncomfortable transition period where both attackers and defenders are gaining access to increasingly capable AI systems at the same time. Threat generation is accelerating. Social engineering is improving. Attack automation is becoming cheaper. Meanwhile, enterprise security teams are still attempting to defend sprawling cloud environments using workflows built around human review cycles and fragmented tooling ecosystems.

That model is reaching its limits. Ankur Singla and the Exaforce team appear to understand something many enterprise operators already feel privately: modern security operations became too operationally complex for purely human-scale management years ago. Traditional SIEM environments often evolved into ecosystems requiring constant tuning, endless correlation work, and teams stretched thin trying to process escalating alert volume.

The result was predictable. Burnout increased. Response times slowed. Security teams added more tooling hoping another dashboard or integration would somehow restore operational efficiency. Instead, complexity compounded itself. The AI-native SOC category is emerging because the market no longer views intelligent automation as optional productivity software. It increasingly views it as operational infrastructure.

That shift creates enormous opportunity for startups capable of rebuilding security operations from first principles rather than layering AI assistants onto aging architecture.

The Competitive Landscape Around AI-Native SOC Platforms

Exaforce is entering one of the most crowded and strategically important sectors inside enterprise cybersecurity. The broader market now includes companies building AI-driven SOC automation, AI-assisted detection and response, autonomous investigation systems, and modern SIEM alternatives. Traditional cybersecurity incumbents are also aggressively repositioning themselves around AI-enhanced operations as enterprise buyers demand faster response times and lower operational overhead.

But there is a difference between adding AI features and rebuilding operational architecture around AI-native assumptions. That distinction is becoming increasingly important to both investors and enterprise buyers. The companies attracting serious capital right now are generally not selling AI as cosmetic enhancement. They are attempting to redesign workflows entirely around intelligent systems capable of handling repetitive operational tasks at scale while allowing human analysts to focus on prioritization, judgment, escalation, and strategic response.

That appears to be the category Exaforce wants to own. The company’s emphasis on multi-model AI reasoning, natural-language investigation, and autonomous Exabots reflects a broader market movement away from purely rules-based security workflows toward adaptive operational systems capable of handling dynamic cloud and SaaS environments.

What This Signals for Enterprise Cybersecurity

The Exaforce funding round reflects a larger infrastructure transition happening across enterprise technology. AI is no longer being treated solely as an application-layer enhancement. Increasingly, investors and operators are viewing AI as a foundational operational layer capable of reshaping how infrastructure itself gets managed. Cybersecurity may simply be one of the earliest enterprise categories where the pressure became impossible to ignore.

SOC teams face a uniquely brutal combination of alert fatigue, staffing shortages, escalating attack complexity, and operational fragmentation. That environment creates unusually strong demand for systems capable of reducing manual workload while improving response speed. The companies winning attention right now are the ones addressing operational reality instead of presentation-layer marketing.

Because underneath all the AI branding, the enterprise problem remains brutally simple: humans cannot manually process machine-scale security environments forever.

Frequently Asked Questions

What is Exaforce?

Exaforce is a San Jose-based cybersecurity company building an AI-native, agentic SOC platform designed to automate and improve security operations workflows.

How much funding did Exaforce raise?

Exaforce raised $125M in Series B funding, bringing total funding to $200M.

Who invested in Exaforce’s Series B round?

Investors participating in the round include HarbourVest, Peak XV, Mayfield, Khosla Ventures, Seligman Ventures, and AICONIC.

What does the Exaforce platform do?

The Exaforce platform unifies detection, triage, investigation, and response workflows using AI agents called Exabots, multi-model AI, and a real-time knowledge graph.

Why does Exaforce matter in cybersecurity?

Exaforce reflects the growing shift toward AI-native SOC infrastructure as enterprises search for ways to reduce analyst fatigue, automate operations, and modernize traditional SIEM workflows.

What broader trend does this funding round represent?

The funding reflects increasing investor confidence in AI-native enterprise infrastructure, particularly platforms designed to automate operational complexity inside cybersecurity environments.