Sweet Security is a cloud-native security company that consolidates fragmented cloud defenses into a single runtime-powered Cloud Native Application Protection Platform (CNAPP). Founded by Dror Kashti (CEO and former CISO of the Israel Defense Forces), Eyal Fisher (CPO), and Orel Ben Ishay (VP R&D), the company set out to fix a core problem in cloud security: too many disconnected tools generating overwhelming, low-context alerts. Sweet's answer is to anchor everything in runtime — what is actually happening in production — to separate real threats from noise.
The platform spans the modern cloud security stack in one place: cloud application detection and response (CADR), runtime visibility across workloads, vulnerability management with risk-based prioritization, cloud security posture management (CSPM), identity threat detection and response, and API security. Because Sweet correlates findings with live runtime context, it can dramatically reduce false urgency — the company cites a 99% reduction in critical vulnerability noise — so teams focus on the small set of issues that are genuinely exploitable.
With its 2025 Series B, Sweet expanded explicitly into AI security, unveiling what it described as the first unified runtime CNAPP covering both traditional and AI applications. This reflects rising CISO concern about 'shadow AI' and attack vectors involving intelligent agents: as enterprises deploy AI workloads in the cloud, they need the same runtime-grounded protection, posture management, and threat detection applied to AI systems and the infrastructure around them.
Sweet reports strong commercial momentum, including a sixfold increase in ARR and a tenfold rise in enterprise customers — among them multiple Fortune 1000 organizations — over the year preceding its raise. In November 2025 it announced a $75 million Series B led by Evolution Equity Partners, with participation from Munich Re Ventures, Glilot Capital Partners, Key1 Capital, and CyberArk Ventures, bringing total funding to $120 million.
Sweet Security's positioning is that runtime is the source of truth for cloud and AI defense. By unifying detection, posture, identity, and API security on a single runtime backbone, it aims to give enterprise security teams real-time protection across applications, workloads, infrastructure, and now AI — without the alert fatigue that plagues stitched-together cloud tooling.