Wednesday, May 29 2024

Israeli startup Vendict has emerged, securing $9.5 million in funding from investors such as NFX, Disruptive AI, and Cardumen Capital. The company, co-founded by Udi Cohen and Michael Keslassy, aims to transform security compliance for businesses using the power of generative AI.

Traditionally, technology vendors are required to complete lengthy security questionnaires manually. Vendict seeks to change this process by utilizing generative AI to automate questionnaire responses. By doing so, Vendict saves working time, streamlines the sales process, and gives companies a competitive edge.

Vendict’s AI model is the first of its kind to master security language, addressing a crucial gap in the industry. Existing solutions focus exclusively on workflow optimization, but organizations still rely on human experts for most of their work. Vendict bridges this gap by providing an AI-driven security expert that understands the meaning of the text, drastically shortening security and vendor assessments from weeks to hours. In turn, the AI model becomes smarter and faster with each user interaction. 

Vendict recognized the potential of natural language processing (NLP) and generative AI as crucial technologies in automating security questionnaires even before these breakthroughs became widespread. Their solution combines a highly specialized area of security and vendor assessment with the innovation of AI.

Gadi Tirosh, venture partner at Disruptive AI, explained the rationale behind their investment, saying, “We recognized that Vendict effectively addresses a genuine issue related to establishing trust among buyers, sellers, and regulators. Their solution innovatively combines their unique AI technology with precise utilization of generative AI techniques.”

Vendict draws information from an organization’s compliance data, including past questionnaires, audit reports, policies, and procedures. Their generative AI stack provides accurate and professional responses to each question and questionnaire, enabling companies to improve their security compliance posture and expand into new industries and verticals.

Buyers can now benefit from quick and comprehensive vendor analysis based on industry, service criticality, and data sensitivity level. Vendict also assists with internal risk management, internal audits, and regulation tracking, providing a holistic solution for organizations.

Raul Zayat Galante, head of security at Orca Security, praised Vendict, stating, “Since we started using Vendicts, it’s been a game-changer. We’ve been able to significantly reduce the time we spend on RFIs and security questionnaire responses. We’re also more confident that our responses are accurate and complete.”

Looking ahead, Vendict plans to develop technology that eliminates the need for questionnaires. Instead, Vendict will generate security assessment reports based on vendor documents and criticality, revolutionizing the compliance process.


Critical Condition: EU Report Uncovers Growing Threat of Cyberattacks on Hospitals, Health Sector


Teleskope Data Protection Platform Raised $2.2M in Pre-seed Funding

Check Also


Don’t Miss

Best Cloud Security Posture Management (CSPM) Software

Ellie Buscemi

What is Cloud Security Posture Management and how does it work? Cloud Security Posture Management (CSPM) is a product, service or platform that allows a business to protect their cloud infrastructure through the prevention, detection and response of cyber risks. A CSPM offering uses known and effective frameworks, regulatory standards and company policies to confirm […]

Best Privileged Access Management (PAM) Products

Lara Oporto

What is Privileged Access Management and how does it work? Privileged Access Management (PAM) products stand as a crucial fortress in fortifying your company’s digital landscape. Functioning as a meticulous guardian, PAM offerings orchestrate the establishment of access protocols, meticulously determining who holds privileged access to critical data and the specific circumstances under which such […]

Best Automated Moving Target Defense (AMTD) Offerings

Ellie Buscemi

What is Automated Moving Target Defense and how does it work? Automated Moving Target Defense (AMTD) is a recent innovation in cybersecurity that focuses on flexibility, deception and attack prevention. AMTD has four main components: it provides proactive cyber defense mechanisms, contains automation to change the attack surface, utilizes deception technology and can execute preplanned […]

Third-Party Risk Management Solutions

Lara Oporto

What is Third-Party Risk Management? Third-Party Risk Management (TPRM) software assists organizations in managing risks associated with their relationships with suppliers, vendors and service providers. The products offer a range of features to automate and streamline various aspects of third-party risk management. They typically include tools for risk assessment, due diligence, contract management and ongoing […]

Best Industrial Internet of Things (IIoT) Platforms

Lara Oporto

Industrial Internet of Things (IIoT) offerings are technological solutions empowering businesses to connect, manage and analyze data from a multitude of devices and systems within industrial settings, such as manufacturing, energy, transportation, logistics and healthcare. What are Industrial Internet of Things (IIoT) platforms and how do they work? Industrial Internet of Things (IIoT) platforms are […]

The words Endpoint Detection and Response (EDR) on a green background with lines on the right side of the image

Best Endpoint Detection & Response Platforms

Lara Oporto

Endpoint Detection & Response platforms continuously monitor endpoints for signs of malicious activities, such as unauthorized access or unusual behavior, enabling rapid detection and response to potential cyber threats to safeguard organizational assets. What is Endpoint Detection and Response and how does it work? Endpoint Detection and Response (EDR) is a cornerstone in modern cybersecurity […]