Cybersecurity Add-on Acquisitions in 2025
Acquisition Volume in Cybersecurity Add-on in 2025 by Year
Last 5 years
-
December 26, 2025
- Buyer
- Complete, Heritage Holding
- Target
- Columbia Advisory Group, LLC
- Seller
- Columbia Advisory Group shareholders
- Industry
- Cybersecurity
- Location
- Texas, United States
- Type
- Addon
Complete, a Charlotte-based MSP backed by private investment firm Heritage Holding, has acquired Columbia Advisory Group (CAG), a Dallas-based cybersecurity and GRC consulting firm. The add-on expands Complete's managed IT and cybersecurity capabilities and brings CAG's expertise serving higher education, state and local government, and mid-market enterprise clients into Complete's platform.
-
December 17, 2025
- Buyer
- NuView, RFE Investment Partners, Mansfield Investment Partners
- Target
- Beyond Secure
- Industry
- Cybersecurity
- Location
- Texas, United States
- Type
- Addon
NuView, a newly formed managed IT and cybersecurity platform backed by RFE Investment Partners (majority) and Mansfield Investment Partners, has acquired Austin-based managed security provider Beyond Secure. The investment will support NuView’s organic growth and strategic add-on acquisitions to expand its managed IT, cybersecurity, compliance, and advisory capabilities for regulated industries.
-
December 10, 2025
- Buyer
- MetaCompliance, Keensight Capital
- Target
- Junglemap
- Industry
- Cybersecurity
- Location
- Norway
- Type
- Addon
MetaCompliance has acquired Junglemap, a Nordic security and compliance awareness provider, in a transaction supported by Keensight Capital. The deal brings Junglemap’s NanoLearning methodology and AI content capabilities into MetaCompliance’s human risk management platform and strengthens the company’s Nordic and broader European footprint.
-
December 4, 2025
- Buyer
- Woven Solutions
- Target
- Cystemic Security
- Industry
- Cybersecurity
- Location
- Virginia, United States
- Type
- Addon
Woven Solutions, a Reston, Virginia-based provider of AI-enabled mission software, has acquired Cystemic Security to expand its cyber forensics and managed attribution capabilities. The deal — Woven's first acquisition after a strategic investment from Falfurrias Management Partners — strengthens its ability to deliver end-to-end cyber tooling and managed attribution solutions for U.S. national security and intelligence customers.
-
November 19, 2025
- Buyer
- Amplix, Gemspring Capital
- Target
- 24By7Security
- Industry
- Cybersecurity
- Location
- Florida, United States
- Type
- Addon
Amplix, a Gemspring Capital portfolio company, has acquired 24By7Security, a Coral Springs-based cybersecurity consulting and compliance firm. The add-on expands Amplix’s cybersecurity capabilities—adding services such as program development, risk assessments, vCISO advisory, incident response planning, security testing, and managed security operations—to better support clients across regulated and non-regulated industries.
-
November 6, 2025
- Buyer
- MorganFranklin Cyber
- Target
- Lynx Technology Partners
- Industry
- Cybersecurity
- Location
- New York, United States
- Type
- Addon
MorganFranklin Cyber, a PE-backed cybersecurity advisory and managed services firm, has acquired Lynx Technology Partners to expand its cybersecurity, risk management, and business development capabilities. As part of the deal, Lynx founder Aric K. Perminter joins MorganFranklin Cyber as Managing Director, Client Relations to support integration and client growth.
-
November 6, 2025
- Buyer
- Axiom GRC
- Target
- IS Partners
- Industry
- Cybersecurity
- Location
- Pennsylvania, United States
- Type
- Addon
Axiom GRC has acquired IS Partners, a U.S. cyber assurance and compliance services provider, to accelerate its North American expansion and broaden its cyber assurance and compliance offerings. IS Partners—headquartered in the Philadelphia area—serves roughly 600 customers with recurring audits across frameworks such as SOC 1/2, ISO 27001, HITRUST, HIPAA, PCI DSS and CMMC; the deal is Axiom's first U.S.-headquartered acquisition and its fifth since partnering with Inflexion.
-
October 14, 2025
- Buyer
- Imprivata
- Target
- Verosint
- Industry
- Cybersecurity
- Location
- Texas, United States
- Type
- Addon
Imprivata has acquired Verosint to integrate Verosint’s AI-powered Identity Threat Detection and Response (ITDR) capabilities into Imprivata’s enterprise access management platform. The deal is intended to strengthen Imprivata’s advanced and passwordless access strategy by adding continuous risk signaling, real-time detection, and automated response to identity-based threats at enterprise scale.
-
October 9, 2025
- Buyer
- Nomios, Keensight Capital
- Target
- Intragen
- Seller
- FPE
- Industry
- Cybersecurity
- Location
- United Kingdom
- Type
- Addon
Nomios, a pan-European cybersecurity services provider backed by Keensight Capital, has announced the acquisition of Intragen, a European specialist in Identity and Access Management (IAM). The deal is intended to expand Nomios’s cybersecurity offering with digital identity and privileged access management capabilities, supported by Keensight Capital.
-
September 24, 2025
- Buyer
- 360 Advanced
- Target
- Security Compliance Associates
- Industry
- Cybersecurity
- Location
- Florida, United States
- Type
- Addon
Cybersecurity firm 360 Advanced has acquired Security Compliance Associates (SCA) to expand its cybersecurity and compliance advisory, audit, and certification capabilities. The deal strengthens 360 Advanced's service offering across regulatory frameworks and marks another strategic add-on to the company's recent acquisition activity.
-
August 27, 2025
- Buyer
- Red Helix, LDC
- Target
- Risk Crew
- Industry
- Cybersecurity
- Location
- England, United Kingdom
- Type
- Addon
LDC-backed cybersecurity provider Red Helix has acquired UK-based security consultancy Risk Crew to expand its cyber assurance capabilities, including GRC consulting and penetration testing. The add-on strengthens Red Helix's service offering to clients across the UK and Europe and follows LDC's 2021 investment to support the business’s growth and acquisition strategy.
-
August 25, 2025
- Buyer
- Continuous, Thoma Bravo
- Target
- Sycorr, Inc.
- Industry
- Cybersecurity
- Location
- North Dakota, United States
- Type
- Addon
Continuous, a Thoma Bravo portfolio company, has acquired Sycorr, a provider of identity and access management software for banks and credit unions. The deal adds Sycorr's Permission Assist capability to Continuous's platform to strengthen security, automate user provisioning and streamline compliance for financial institutions.
-
August 21, 2025
- Buyer
- NUBURU, Inc.
- Target
- Tekne S.p.A., Operational resilience SaaS platform (name undisclosed)
- Industry
- Cybersecurity
- Location
- Colorado, United States
- Type
- Addon
NUBURU, Inc. said it is moving forward with a phased acquisition of Tekne S.p.A. (TEKNE) under Italy’s “Golden Power” review, starting with a minority investment and progressing toward majority control. The company also plans an acquisition of a software-as-a-service platform focused on operational resilience to expand its Defense & Security Hub offering.
-
August 18, 2025
- Buyer
- The One 23 Group, Willow Creek Partners
- Target
- Integrated Computer Solutions
- Industry
- Cybersecurity
- Location
- Alabama, United States
- Type
- Addon
The One 23 Group (O23G), a Willow Creek Partners‑backed federal technology and cybersecurity platform, has acquired Integrated Computer Solutions (ICS), a provider of mission IT and cybersecurity services to U.S. federal agencies. The deal expands O23G’s mission IT, secure cloud modernization, and AI/DevSecOps capabilities for defense, homeland security, and justice customers.
-
August 18, 2025
- Buyer
- Cryptic Vector, Enlightenment Capital
- Target
- Caesar Creek Software
- Industry
- Cybersecurity
- Location
- Ohio, United States
- Type
- Addon
Cryptic Vector, a portfolio company of Enlightenment Capital, has acquired Caesar Creek Software, a Dayton-based offensive cyber R&D firm that provides vulnerability analysis, exploit development, and reverse engineering services to the U.S. Intelligence Community and Department of Defense. The add-on strengthens Cryptic Vector's offensive cyber and electronic warfare capabilities and expands its engineering talent pool supporting national security customers.
-
August 12, 2025
- Buyer
- KeyData Cyber, CIVC Partners, LP
- Target
- BeyondID
- Industry
- Cybersecurity
- Location
- California, United States
- Type
- Addon
KeyData Cyber, a CIVC Partners–backed identity and access management (IAM) provider, has acquired BeyondID, an AI-powered managed identity solutions provider with deep Okta expertise. The deal expands KeyData's advisory, implementation and managed-services capabilities, adds BeyondID's Identity Command Center platform and increases the combined company's delivery capacity and geographic reach across North America and beyond.
-
July 25, 2025
- Buyer
- Bureau Veritas
- Target
- Dornier Hinneburg, Institute For Cyber Risk (IFCR), EcoPlus
- Seller
- Dornier Group
- Industry
- Cybersecurity
- Location
- Germany
- Type
- Addon
Bureau Veritas has signed agreements to acquire three companies to strengthen its positions across cybersecurity, nuclear, and transition (sustainability) services. The deals include Dornier Hinneburg in Germany, Institute For Cyber Risk (IFCR) in Denmark, and EcoPlus in South Korea.
-
July 16, 2025
- Buyer
- Limerston Capital
- Target
- DigitalXRAID
- Industry
- Cybersecurity
- Location
- England, United Kingdom
- Type
- Addon
Limerston Capital has added DigitalXRAID, an award-winning UK managed security services provider (MSSP), to its cybersecurity platform as an add-on acquisition. The deal expands the group's SOC, managed services, digital forensics and incident response capabilities and follows Limerston's May acquisition of CyberCrowd as part of a buy-and-build strategy to create a leading UK cyber security group.
-
July 14, 2025
- Buyer
- Signicat
- Target
- Inverid
- Seller
- Main Capital, Inverid founders
- Industry
- Cybersecurity
- Location
- Overijssel, Netherlands
- Type
- Addon
Signicat has acquired Inverid, the Dutch provider of NFC-based identity verification and creator of the ReadID solution, from majority shareholder Main Capital and the founders for an undisclosed sum. The deal brings Inverid's NFC document-verification capability into Signicat's pan-European digital identity platform, accelerating product capability expansion and enabling immediate technological and commercial synergies.
-
- Buyer
- Redstor, Bregal Milestone
- Target
- TitanHQ
- Seller
- Livingbridge
- Industry
- Cybersecurity
- Location
- Ireland
- Type
- Addon
Redstor, a portfolio company of private equity firm Bregal Milestone, has acquired TitanHQ from Livingbridge and merged the businesses to form CyberSentriq, an integrated cybersecurity and data protection platform for Managed Service Providers (MSPs). The combined business aims to drive both organic and inorganic growth and target $100m ARR by 2028, leveraging complementary email/web security and cloud backup capabilities.
-
- Buyer
- Cytracom
- Target
- Tentacle
- Industry
- Cybersecurity
- Location
- Texas, United States
- Type
- Addon
Cytracom, a Sverica Capital Management portfolio company, has acquired Tentacle, a platform for cybersecurity assessments, third-party risk monitoring, and GRC program management. The acquisition bolsters Cytracom's Security Risk Management (SRM) capabilities and enables its MSP partners to deliver expanded compliance and risk-advisory services.
-
June 2, 2025
- Buyer
- General Informatics, Rosewood Private Investments
- Target
- GlobeNet
- Seller
- Kevin Gray
- Industry
- Cybersecurity
- Location
- Louisiana, United States
- Type
- Addon
Baton Rouge-based General Informatics has acquired New Orleans-based GlobeNet, bringing GlobeNet's ~10-person cybersecurity team into General Informatics to bolster security capabilities and expand healthcare and maritime verticals. The deal is an add-on for General Informatics (which is PE-backed by Rosewood Private Investments) and aims to scale security services, add vendor relationships, and enable cross-selling across cloud and AI offerings.
-
- Buyer
- Intelligent Technical Solutions, Tower Arch Capital, Justin Shanken
- Target
- Black Breach, LLC
- Industry
- Cybersecurity
- Location
- Georgia, United States
- Type
- Addon
Intelligent Technical Solutions (ITS), a Tower Arch Capital portfolio company, has acquired Atlanta-based Black Breach to expand ITS's managed cybersecurity and compliance capabilities. The deal was completed in partnership with Black Breach founder Justin Shanken and financed by Deerpath Capital; terms were not disclosed.
-
May 8, 2025
- Buyer
- Tyto Athene, LLC, Arlington Capital Partners
- Target
- stackArmor, Inc.
- Industry
- Cybersecurity
- Location
- Virginia, United States
- Type
- Addon
Tyto Athene, a federal systems integrator and portfolio company of Arlington Capital Partners, has acquired stackArmor, a provider of FedRAMP, FISMA/RMF and CMMC/DFARS compliance acceleration, cloud and security automation solutions. The acquisition will make stackArmor a wholly-owned subsidiary of Tyto and expand Tyto's cloud, cyber automation and compliance capabilities for defense, national security and other regulated federal customers.
-
April 29, 2025
- Buyer
- Allurity
- Target
- Infigo IS, Infigo
- Industry
- Cybersecurity
- Location
- Croatia
- Type
- Addon
Allurity, a European cybersecurity services group, announced its acquisition of Croatian cybersecurity company Infigo IS. Infigo, founded in 2005 and headquartered in Zagreb, employs around 100 professionals and specializes in offensive and defensive security, consulting, and managed services. The transaction is subject to customary regulatory approvals and merger control clearances, with the stated goal of strengthening Allurity’s Southern Europe footprint and expanding its cybersecurity capabilities.
-
April 16, 2025
- Buyer
- MajorKey Technologies, The Acacia Group
- Target
- Oxford Computer Group LLC US
- Industry
- Cybersecurity
- Location
- Washington, United States
- Type
- Addon
MajorKey Technologies, a U.S. identity security firm backed by The Acacia Group, has acquired Oxford Computer Group LLC US, an identity specialist with deep Microsoft and Saviynt expertise. The add-on expands MajorKey's cross-platform identity capabilities, increases scale (including federal capabilities) and integrates OCG as a MajorKey business division.
-
April 4, 2025
- Buyer
- MOXFIVE
- Target
- modePUSH
- Industry
- Cybersecurity
- Location
- United States
- Type
- Addon
MOXFIVE has acquired digital forensics and incident response firm modePUSH, building on an initial minority investment made in February 2024. The deal integrates modePUSH's DFIR expertise into the MOXFIVE Platform, with modePUSH co-founders Ben Harel and Ryan Ikeler joining MOXFIVE's executive team to expand incident response capabilities and accelerate a SaaS-first delivery model.
-
March 20, 2025
- Buyer
- Integrity360
- Target
- Holiseum
- Industry
- Cybersecurity
- Location
- Île-de-France, France
- Type
- Addon
Integrity360 has acquired Paris-headquartered cybersecurity specialist Holiseum to accelerate its expansion into France and strengthen its Operational Technology (OT) and IoT security capabilities. Holiseum — founded in 2018 with a team of 32 and about 80 customers across energy, infrastructure, manufacturing and transport — will form a new Integrity360 services practice and regional hub in France; terms were not disclosed.
-
March 20, 2025
- Buyer
- CyberMaxx, Periscope Equity
- Target
- Cybersafe Solutions, LLC
- Industry
- Cybersecurity
- Location
- New York, United States
- Type
- Addon
CyberMaxx, a portfolio company of Periscope Equity, acquired Cybersafe Solutions to expand its managed detection and response (MDR) capabilities. Comvest Credit Partners provided a senior secured credit facility to CyberMaxx to support the refinancing and fund the strategic add-on acquisition of Cybersafe.
-
February 22, 2025
- Buyer
- Drata
- Target
- SafeBase
- Industry
- Cybersecurity
- Type
- Addon
Drata, a trust management platform focused on GRC automation, entered into a definitive agreement to acquire SafeBase, a Trust Center solution for enterprise customers. The deal is expected to close later this month and is intended to integrate trust-layer capabilities to streamline security reviews and vendor risk management through AI-driven automation.
-
January 16, 2025
- Buyer
- inherent group, Keensight Capital
- Target
- devensys cybersecurity
- Industry
- Cybersecurity
- Location
- France
- Type
- Addon
inherent group has acquired devensys cybersecurity to strengthen and expand its cybersecurity capabilities, with the transaction supported by Keensight Capital. The devensys business will operate as inherent group's cybersecurity division (under the devensys cybersecurity name) and is supported by a team of more than 100 cybersecurity experts to deliver offensive and defensive services including SOC, CERT/VOC, penetration testing, incident response, training and audits.
-
January 9, 2025
- Buyer
- Quorum Cyber, Charlesbank Capital Partners, Livingbridge
- Target
- Kivu Consulting Inc.
- Industry
- Cybersecurity
- Location
- California, United States
- Type
- Addon
Quorum Cyber, a UK-based cybersecurity provider backed by Charlesbank Capital Partners and Livingbridge, has acquired Kivu Consulting Inc., a U.S.-based leader in digital forensics and incident response. The add-on strengthens Quorum Cyber’s incident response, digital forensics, business restoration, and ransom negotiation capabilities while expanding its North American operations and service coverage.
Track M&A activity that matters to you
Get real-time deal alerts, build buyer lists with AI, and access our full acquisition database. Start your free trial today.