Private Equity-Backed Cybersecurity Acquisitions

Markon, a Sterling Investment Partners portfolio company, has acquired Millennium Corporation to expand full‑spectrum cyber capabilities across defense, intelligence, and federal civilian markets. The deal combines Markon’s enterprise delivery and program execution strengths with Millennium’s adversarial threat emulation, cyber operations, testing, training, and software capabilities as an add‑on to Markon’s platform.

Proofpoint, Inc. has acquired Acuvity, an AI security and governance platform provider, to enhance its capabilities for securing AI agents, copilots, and model-connected applications across the enterprise. The acquisition adds AI-native visibility, governance and runtime protection to Proofpoint’s human- and agent-centric cybersecurity platform, enabling broader protection of people, data and AI-driven workflows.

Entech, a Prospect Partners–backed Florida managed technology and cybersecurity platform, has acquired Coral Springs–based C2 Computer Services, Inc., a managed cybersecurity and IT services provider serving South Florida. The deal deepens Entech’s East Coast presence, broadens its cybersecurity capabilities, and brings additional local support resources to clients across Florida.

Woven Solutions, a Reston, Virginia-based provider of AI-enabled mission software for national security customers, has acquired Apira Technologies, a developer of AI, computer vision and synthetic media detection tools used in sensitive cyber and information operations. The deal expands Woven’s cyber and information operations capabilities, adds engineering and R&D talent, and increases access to end customers and prime contracts; it is Woven’s second acquisition since receiving a strategic investment from Falfurrias Management Partners in August 2025.

Integrity360 has acquired Calgary-based cybersecurity services provider Advantus360 to establish the group’s first North American hub. The deal — terms undisclosed — gives Integrity360 an operating base in Canada and will be used to develop a Calgary Security Operations Centre and expand the group’s managed and professional cyber services across Canada and the US.

Sole Source Capital LLC has acquired Brite, a cybersecurity and managed IT services provider headquartered in Victor, New York, marking Sole Source's first platform investment from SSC Partners Fund III. The deal positions Brite as a buy-and-build platform to pursue consolidation in the fragmented cybersecurity managed services market; financial terms were not disclosed and Brite's existing management team will remain in place.

Ping Identity has completed its acquisition of Keyless, integrating Keyless' zero-knowledge biometric authentication technology into Ping's identity platform to strengthen defenses against AI-driven identity attacks and enable device-independent, privacy-preserving biometric verification. The acquisition expands Ping's capabilities for customer, workforce and B2B identity use cases; financial terms were not disclosed.

ThreatModeler has acquired IriusRisk to combine two enterprise threat-modeling platforms, broaden global scale, and accelerate product development. The combined business — majority owned by Invictus Growth Partners, with Paladin Capital Group remaining a shareholder — aims to create the industry’s largest proprietary threat-model dataset and deepen secure-by-design support for security and development teams.

Gryphon Investors has completed a majority growth recapitalization of Fortreum, a Lansdowne, Virginia-based cybersecurity services firm specializing in compliance, audit, and technical testing including FedRAMP, CMMC, ISO, PCI, and SOC. The investment will fund expansion of Fortreum's offerings and accelerate development and adoption of its XRAMP continuous validation platform and AI-enabled capabilities; company founders will retain a significant equity stake. Financial terms were not disclosed.

Complete, a Charlotte-based MSP backed by private investment firm Heritage Holding, has acquired Columbia Advisory Group (CAG), a Dallas-based cybersecurity and GRC consulting firm. The add-on expands Complete's managed IT and cybersecurity capabilities and brings CAG's expertise serving higher education, state and local government, and mid-market enterprise clients into Complete's platform.

NuView, a newly formed managed IT and cybersecurity platform backed by RFE Investment Partners (majority) and Mansfield Investment Partners, has acquired Austin-based managed security provider Beyond Secure. The investment will support NuView’s organic growth and strategic add-on acquisitions to expand its managed IT, cybersecurity, compliance, and advisory capabilities for regulated industries.

Veeam Software completed its $1.725 billion acquisition of Securiti AI to create a unified Data Platform that combines Veeam's data resilience capabilities with Securiti AI's DSPM, privacy, governance and AI trust functionality. The deal brings roughly 600 Securiti AI employees into Veeam and names Securiti AI founder Rehan Jalil as Veeam's President of Security and AI to accelerate safe AI adoption at scale.

RKON Technologies has acquired cloud security and consulting firm ScaleSec, integrating ScaleSec’s cloud security, compliance, and managed services capabilities into RKON’s offerings. The seller was Vixul (ScaleSec’s accelerator/portfolio backer), and the transaction strengthens RKON’s multicloud security and managed services capabilities; financial terms were not disclosed.

MetaCompliance has acquired Junglemap, a Nordic security and compliance awareness provider, in a transaction supported by Keensight Capital. The deal brings Junglemap’s NanoLearning methodology and AI content capabilities into MetaCompliance’s human risk management platform and strengthens the company’s Nordic and broader European footprint.

Checkmarx has acquired Tromzo, an AI-native startup that builds autonomous triage and remediation agents for application security, and will integrate Tromzo's reasoning engine and engineering team into the Checkmarx One platform. The acquisition brings Tromzo's founders and AI engineers into Checkmarx to power new Checkmarx Assist agents and accelerate enterprise-grade autonomous AppSec capabilities starting in early 2026.

Woven Solutions, a Reston, Virginia-based provider of AI-enabled mission software, has acquired Cystemic Security to expand its cyber forensics and managed attribution capabilities. The deal — Woven's first acquisition after a strategic investment from Falfurrias Management Partners — strengthens its ability to deliver end-to-end cyber tooling and managed attribution solutions for U.S. national security and intelligence customers.

LevelBlue has completed its acquisition of Cybereason, integrating Cybereason’s XDR platform, threat intelligence, and DFIR capabilities into LevelBlue’s managed security services. As part of the transaction, SoftBank Corp., SoftBank Vision Fund 2, and Liberty Strategic Capital took equity stakes in LevelBlue and Steven T. Mnuchin joined LevelBlue’s board, supporting the company’s capability and geographic expansion.

Allurity, a Stockholm-based European cybersecurity group supported by investor Trill Impact, has acquired MSF Partners (Monti Stampa Furrer & Partners), an OT/ICS security specialist headquartered in Zurich, Switzerland. The deal expands Allurity’s operational technology and critical-infrastructure security capabilities, strengthening its offering across energy, manufacturing, mining and other high-risk sectors.

Amplix, a Gemspring Capital portfolio company, has acquired 24By7Security, a Coral Springs-based cybersecurity consulting and compliance firm. The add-on expands Amplix’s cybersecurity capabilities—adding services such as program development, risk assessments, vCISO advisory, incident response planning, security testing, and managed security operations—to better support clients across regulated and non-regulated industries.

Axiom GRC has acquired IS Partners, a U.S. cyber assurance and compliance services provider, to accelerate its North American expansion and broaden its cyber assurance and compliance offerings. IS Partners—headquartered in the Philadelphia area—serves roughly 600 customers with recurring audits across frameworks such as SOC 1/2, ISO 27001, HITRUST, HIPAA, PCI DSS and CMMC; the deal is Axiom's first U.S.-headquartered acquisition and its fifth since partnering with Inflexion.

MorganFranklin Cyber, a PE-backed cybersecurity advisory and managed services firm, has acquired Lynx Technology Partners to expand its cybersecurity, risk management, and business development capabilities. As part of the deal, Lynx founder Aric K. Perminter joins MorganFranklin Cyber as Managing Director, Client Relations to support integration and client growth.

San Francisco-based private equity firm Ponte Partners has acquired a portfolio of three technology companies — Fandom, Exabeam and ExteNet — from an unnamed private equity investor seeking liquidity. The acquisition expands Ponte Partners' technology portfolio across media, cybersecurity, and digital infrastructure and coincides with the appointment of Howard Lee as Managing Partner to support the firm's secondary-investment strategy.

Noventiq, a London-headquartered provider of digital transformation and cybersecurity solutions, has received a strategic equity investment from U.S.-based private equity firm Niobrara Capital. The investment deepens Noventiq's relationship with existing investor Da Vinci Capital and is intended to accelerate the company’s global growth and expand service offerings in cybersecurity and digital transformation.

Riveron has acquired Eden Data, an Austin-based cybersecurity, GRC, and AI advisory firm with nearly 60 professionals, to expand its Risk Advisory capabilities. The acquisition broadens Riveron's offerings in cybersecurity, compliance, and AI risk management, integrating Eden Data's expertise into Riveron's finance- and CFO-focused advisory platform.

Imprivata has acquired Verosint to integrate Verosint’s AI-powered Identity Threat Detection and Response (ITDR) capabilities into Imprivata’s enterprise access management platform. The deal is intended to strengthen Imprivata’s advanced and passwordless access strategy by adding continuous risk signaling, real-time detection, and automated response to identity-based threats at enterprise scale.

Nomios, a Keensight Capital‑backed cybersecurity integrator, has acquired Intragen, a leading European Identity and Access Management (IAM) services provider, from private equity owner FPE Capital. The deal expands Nomios's IAM capabilities and European footprint while delivering an exit for FPE's Fund II after significant growth and multiple bolt-on acquisitions at Intragen.

Epiq has acquired First Watch Data Breach Solutions, LLC from First Watch Technologies to expand its cyber incident response and notification capabilities. The acquisition brings roughly 100 First Watch Data Breach Solutions employees into Epiq and broadens Epiq’s breach response, credit monitoring, call center, and notification services across North America, UK/EMEA, Australia and APAC.

Swiss investor INVISION and German private equity firm PINOVA have acquired Utimaco’s Telecom Solutions division (Utimaco TS), a carve-out focused on Lawful Interception Management Systems. The transaction closed on September 30, 2025 and the newly independent company began operating on October 1, 2025, enabling the unit to pursue a dedicated growth strategy under its new owners.

Sunstone Partners, a growth-oriented private equity firm, has acquired majority ownership of Clearwater from Altaris, LLC and other existing shareholders. The investment will support Clearwater’s expansion of managed security, consulting, and software capabilities across the healthcare ecosystem and the defense industrial base (via its Redspin division).

Cybersecurity firm 360 Advanced has acquired Security Compliance Associates (SCA) to expand its cybersecurity and compliance advisory, audit, and certification capabilities. The deal strengthens 360 Advanced's service offering across regulatory frameworks and marks another strategic add-on to the company's recent acquisition activity.

Cyberbit has acquired RangeForce, combining two leading cyber range and training platforms to create an AI-powered operational cyber readiness offering for enterprises and governments. The deal is backed by Cyberbit's financial sponsors, Charlesbank Capital Partners and Claridge, and RangeForce will operate as a wholly owned subsidiary of Cyberbit.

DigiCert, backed by Clearlake Capital, Crosspoint Capital and TA Associates, has acquired Valimail, a leading provider of zero trust email authentication and DMARC-as-a-service. The deal adds email authentication capabilities to the DigiCert ONE platform, expands DigiCert into the $4B+ paid DMARC market, and brings Valimail's FedRAMP-authorized, cloud-native solutions and ~92,000 clients under DigiCert's digital trust portfolio.

Chicago-based private equity firm ParkerGale has made a growth investment in RedZone Technologies, an Annapolis-headquartered managed security service provider (MSSP). The investment will support RedZone's organic and inorganic growth plans, expand partner relationships, and accelerate sales and marketing while RedZone focuses on security, compliance, and service delivery for highly regulated industries.

SDG Corporation has acquired Hub City Media, Inc., a consultancy specializing in identity and access management (IAM), to expand its end-to-end IAM capabilities across advisory, integration, and managed services. The deal strengthens SDG's identity-first security offering and deepens partnerships with leading identity technology providers while integrating Hub City Media's technical expertise into SDG's global managed services.

Funds managed by global investment firm Carlyle completed a growth investment in Quantum Leap, a Leesburg, Virginia-based provider of cybersecurity and intelligence solutions for U.S. government customers. Management (including founder and CEO Jim Miller), Razor's Edge, and other existing shareholders reinvested alongside Carlyle to support the company's continued growth and capability expansion in national security markets.

UltraViolet Cyber acquired Black Duck's Application Security Testing (AST) services business, integrating penetration testing, red teaming, threat modeling, cloud/container risk assessments, and secure development consulting into its unified security operations portfolio. Achieve Partners served as the equity sponsor for the transaction; Black Duck will retain its core software and SaaS offerings while its professional and managed AST services join UltraViolet to expand capability for commercial and federal clients.

LDC-backed cybersecurity provider Red Helix has acquired UK-based security consultancy Risk Crew to expand its cyber assurance capabilities, including GRC consulting and penetration testing. The add-on strengthens Red Helix's service offering to clients across the UK and Europe and follows LDC's 2021 investment to support the business’s growth and acquisition strategy.

Continuous, a Thoma Bravo portfolio company, has acquired Sycorr, a provider of identity and access management software for banks and credit unions. The deal adds Sycorr's Permission Assist capability to Continuous's platform to strengthen security, automate user provisioning and streamline compliance for financial institutions.

Cryptic Vector, a portfolio company of Enlightenment Capital, has acquired Caesar Creek Software, a Dayton-based offensive cyber R&D firm that provides vulnerability analysis, exploit development, and reverse engineering services to the U.S. Intelligence Community and Department of Defense. The add-on strengthens Cryptic Vector's offensive cyber and electronic warfare capabilities and expands its engineering talent pool supporting national security customers.

The One 23 Group (O23G), a Willow Creek Partners‑backed federal technology and cybersecurity platform, has acquired Integrated Computer Solutions (ICS), a provider of mission IT and cybersecurity services to U.S. federal agencies. The deal expands O23G’s mission IT, secure cloud modernization, and AI/DevSecOps capabilities for defense, homeland security, and justice customers.

Invicti Security has acquired Kondukto, an Application Security Posture Management (ASPM) pioneer, to integrate proof-based DAST findings with ASPM capabilities and deliver unified AppSec posture management. The acquisition strengthens Invicti's platform with centralized orchestration, AI-assisted remediation, and automation to improve vulnerability prioritization and developer-centric remediation workflows.

KeyData Cyber, a CIVC Partners–backed identity and access management (IAM) provider, has acquired BeyondID, an AI-powered managed identity solutions provider with deep Okta expertise. The deal expands KeyData's advisory, implementation and managed-services capabilities, adds BeyondID's Identity Command Center platform and increases the combined company's delivery capacity and geographic reach across North America and beyond.

Maven (via SWIF Maven Equity Finance) has invested £1.5 million in Bath-based cybersecurity hardware specialist Blueskytec through the British Business Bank’s South West Investment Fund. The growth capital will support full-scale deployment with industrial partners, recruitment, and expansion of manufacturing capacity and business development as Blueskytec targets defence, civil nuclear and energy infrastructure markets.

HeroDevs raised $125 million in a strategic growth investment led by PSG with participation from existing investor Album. The funding will be used to expand HeroDevs' Never-Ending Support solutions and includes a $20 million commitment to an Open Source Sustainability Fund to support end-of-life open-source projects.

Lansweeper has acquired Redjack to integrate Redjack's passive, traffic-based asset discovery and application dependency mapping into Lansweeper's Technology Asset Intelligence platform. The deal expands Lansweeper's visibility and attack-surface management capabilities, bringing Redjack's customers, technology, partners, and workforce into Lansweeper's product roadmap.

Limerston Capital has added DigitalXRAID, an award-winning UK managed security services provider (MSSP), to its cybersecurity platform as an add-on acquisition. The deal expands the group's SOC, managed services, digital forensics and incident response capabilities and follows Limerston's May acquisition of CyberCrowd as part of a buy-and-build strategy to create a leading UK cyber security group.

Signicat has acquired Inverid, the Dutch provider of NFC-based identity verification and creator of the ReadID solution, from majority shareholder Main Capital and the founders for an undisclosed sum. The deal brings Inverid's NFC document-verification capability into Signicat's pan-European digital identity platform, accelerating product capability expansion and enabling immediate technological and commercial synergies.

Hg has acquired a majority stake in A-LIGN from Warburg Pincus to support the cybersecurity compliance firm's next phase of global expansion. HgCapital Trust plc and other institutional clients of Hg (via the Hg Genesis Fund) are investing alongside Hg; terms were not disclosed. A-LIGN, headquartered in Tampa, Florida, is a tech-enabled cyber compliance and audit provider serving over 5,700 clients and will leverage Hg's resources to scale internationally and expand services.

Nautic Partners has completed the acquisition of AccessIT Group as a new platform investment, closing on July 8, 2025. AccessIT Group, a King of Prussia, Pennsylvania–based cybersecurity solutions provider, will remain led by CEO Joe Luciano while co-founder David Hark retires; Nautic will support expansion of the firm's capabilities and geographic reach.

Thrive, a global managed services and cybersecurity provider, has acquired Abacode, a Tampa-based managed cybersecurity and compliance provider (MCCP). The acquisition strengthens Thrive's governance, risk, and compliance (GRC) capabilities and expands its footprint in the Southeast U.S., enhancing compliance offerings for mid-market clients across regulated industries.