Maro is betting that the future lies in stopping breaches before they begin—at the human level.

The cognitive security startup announced Thursday it has raised $4.3 million in seed funding from Downing Capital Group to further develop and expand its real-time human risk mitigation platform. The platform, now officially launched, is designed to detect and intercept threats triggered by employee behavior—including missteps caused by stress, social engineering, and unregulated AI usage—before they escalate into security or compliance incidents.

Founded in late 2024 by a seasoned trio of cybersecurity entrepreneurs, Maro is emerging at a time when enterprises are racing to address the expanding human threat surface introduced by remote work, browser-based collaboration tools, and AI copilots operating outside formal IT governance.

“Attackers don’t exploit just software—they exploit how people think, decide, and act under pressure,” said Jesse Downing, CEO of Downing Capital, in an interview. “Maro’s approach brings cognitive-level controls into the workflow, where human risk originates. That’s what makes it different.”

Maro’s founding team—CEO Jadon Montero, chief experience officer Gwen Betts, and chief technology officer Jen Andre—has more than 40 years of collective experience across cybersecurity mainstays such as Rapid7, Threat Stack, Symantec, and Bitdefender. They’ve also built and exited startups before, including Komand, acquired by Rapid7 in 2017.

The company’s platform applies behavioral science and contextual analytics to what Montero describes as “the blind spot in today’s security programs”—human decisions made in real time, often inside browsers, where policies typically have no reach.

“When SOC analysts can’t talk to every employee making risky choices in the moment, organizations are flying blind,” Montero said. “The reality is that generative AI, shadow SaaS, and deceptive browser attacks are already inside the enterprise. What’s been missing is a way to govern that behavior dynamically, without slowing productivity.”

Unlike legacy tools that rely on alert triage or retrospective analysis, Maro’s software actively enforces policy-level behavior in context—such as flagging attempts to paste sensitive data into public AI tools or clicking suspicious links disguised through typosquatting. The platform also integrates with existing governance, risk, and compliance (GRC) workflows to maintain oversight without micromanaging employees.

According to the 2025 Verizon Data Breach Investigations Report, 60 percent of breaches involve some form of human error or manipulation. Maro’s backers argue that figure will continue to grow as attackers use AI to personalize phishing, clone browser sessions, and exploit decision-making during moments of fatigue or confusion.

Maro is not alone in this emerging niche. HumanLayer, a London-based behavioral security firm, was acquired by Proofpoint earlier this year. Elevate Security, which tracks user risk scores based on behavior, recently secured $8 million in new funding. And Push Security, focused on shadow SaaS governance, announced a $15 million Series A in June. These moves reflect a broader investor recognition that solving for the “last mile” of cybersecurity—human behavior—is a challenge yet to be cracked.

Yet Maro’s emphasis on intervening in the moment rather than scoring or profiling users marks a strategic divergence from competitors. “Security awareness training is fine, but it doesn’t help when someone’s in the middle of being manipulated by an AI-powered adversary,” said Montero.

To build its engine, Maro collaborated with more than 50 CISOs and CIOs across finance, health tech, and retail sectors. The feedback was consistent: Existing human risk tools are too noisy, too vague, and too slow to influence real-time decisions. Most lacked visibility into browser behavior, where knowledge workers increasingly interface with sensitive systems and data.

Andre, who previously led product at Greynoise and spent time as an analyst in a Security Operations Center, said Maro’s approach stems from hard-won experience navigating broken workflows.

“We saw up close how alerts would pile up while employees made mistakes that could’ve been avoided with the right guardrails,” she said. “Instead of focusing on blame, we wanted to focus on help—on guidance at the point of decision.”

Betts, who previously led global product design at Rapid7, emphasized the human-centered ethos behind Maro’s interface. “Security shouldn’t feel like surveillance or punishment,” she said. “It should feel like a safety net that understands context.”

The founders are especially attuned to the pressures security leaders face in justifying the ROI of new tools. Montero said early deployments of the platform have shown a 52 percent improvement in CIS benchmark coverage in just one week, a metric that resonated with early customers and investors alike.

With its fresh capital, Maro plans to grow its engineering and customer success teams, expand integrations with existing GRC and security stacks, and target mid-market and enterprise customers in highly regulated sectors.

“Security is no longer just about infrastructure,” said Downing. “It’s about cognition. About the moment a human makes a decision that changes everything.”

Whether Maro’s real-time behavioral approach will scale across diverse enterprise environments remains to be seen, but the urgency behind the problem it’s addressing is not in question. As AI capabilities accelerate and digital workforces become more distributed, the human element in cybersecurity has never been more exposed—or more exploitable.

And if Maro has its way, that human element will also become far more defensible.

The post Maro Raises $4.3 Million Seed Funding to Reduce Human Risk in Security appeared first on CISOstack.