There is no dearth of AI conversations, especially coming out of Pax8 this week. But one theme that consistently stood out was related to AI governance and the fact that customers are moving much faster on AI than on the governance piece of it. Now this fits in the MSSP or MSP service playbook as an opportunity that still needs to be thought through.
This gap is also getting hard to ignore.
Black Duck surveyed 831 enterprise software engineers and DevOps professionals and found that 97% are already using AI coding assistants. Only 30% said their teams have full governance in place. Nearly nine in 10 have run into problems with AI-generated code, including review bottlenecks, security testing issues, and extra rework. Now, while this research focuses on enterprise development teams, not necessarily the smaller businesses many MSSPs support, the issue is the same. Companies are rolling out AI tools and agents without always knowing who is using them, what data they can access, or what controls need to be in place. Smaller organizations are at a worse position.
Even vendors clearly see the opening. Check Point introduced AI security capabilities and multi-tenant management for service providers. Pax8 unveiled an Agent Gateway that gives partners a central place to manage AI agents across customer environments, including Microsoft agents. inforcer also expanded its Microsoft 365 platform into threat detection and response, which speaks to the broader demand for centralized security across multiple tenants.
These products do not create a complete AI governance service on their own. But they give MSSPs some of the things they need to start thinking about. That could mean discovering which AI tools customers are using, monitoring agents, protecting sensitive data, and enforcing basic policies. MSSPs should be thinking now about what that service looks like, what is included, and how it is priced. Because if they do not define the category, MSP platforms and security vendors may end up defining it for them.
Market Pulse: Cybersecurity Deals, Funding, and Platform Shifts
BlueVoyant launches BlueVoyant AI: BlueVoyant has launched BlueVoyant AI, an agentic security operations platform available as either a fully managed SOC service or a self-service product for internal security teams. Built around the company’s Microsoft security experience, the platform connects with Microsoft 365, Defender and other security tools to enrich and triage alerts, automate containment actions such as isolating devices and revoking credentials, and reduce the volume of incidents requiring analyst review. The company plans to expand the platform’s identity security capabilities, including protections for non-human identities, as enterprises deploy more AI agents and autonomous systems.
inforcer launches TDR platform for MSPs: inforcer has launched a Threat Detection and Response platform for MSPs managing Microsoft 365 environments, bringing tenant hardening, threat monitoring, incident response and reporting into the same multi-tenant workflow. The platform collects telemetry across Entra, Defender, Purview, Teams and SharePoint, then combines those signals with policy and configuration data to help technicians separate serious threats from routine alerts. It also supports PSA ticketing, automated account containment and six months of incident history, giving MSPs a clearer view of how an attack unfolded and which controls helped stop it. inforcer is positioning TDR as the foundation for a managed Microsoft 365 security service, while keeping its scope focused on Microsoft 365 rather than trying to replace broader SIEM, MDR or SOC platforms.
Check Point expands MSP security offerings:
Check Point has expanded its MSP platform with multi-tenant management, AI security tools and unified security bundles aimed at making managed security easier to deliver at scale. The platform gives partners centralized access to Check Point’s portfolio, including Workforce AI Security, PSA integrations and an MCP-enabled management layer, while the new bundles combine email, endpoint, browser, mobile, SASE, security awareness and DMARC under a single SKU aligned with Microsoft licensing.
Field Effect adds AI Detection & Response to its MDR platform: Field Effect has added AI Detection & Response to its MDR platform, giving MSPs and customers visibility into how AI tools are being used across endpoint, network, cloud and DNS environments. The capability is designed to identify AI applications, show who is using them and what data or systems they can access, while supporting governance controls and zero-trust policies for AI activity. Field Effect said 93% of organizations in its customer data had adopted AI knowingly or unknowingly, while 26% were using at least six AI applications. AIDR is available as part of Field Effect MDR, allowing MSPs to add AI usage monitoring and governance to an existing managed security service rather than deploying a separate AI security product.
Cyera raises funding: Cyera has raised $600 million at a $12 billion valuation to expand its data security and AI governance platform, bringing its total funding to more than $2 billion. Evolution Equity Partners led the round, with participation from Temasek, Cyberstarts and existing investors including Accel, Blackstone and Coatue. Cyera said it has tripled annual recurring revenue for three consecutive years, grown to more than 1,500 employees and completed five acquisitions over the past 18 months. The company plans to use the funding to build out its data security posture management, data loss prevention, identity and agentic security capabilities as enterprises look for more visibility into the data AI agents can access and the actions they can take.
A Security emerges from stealth: A Security has emerged from stealth with $37 million in funding to expand an autonomous offensive security platform that continuously finds, validates and helps remediate attack paths across enterprise environments. Lightspeed Venture Partners and Cyberstarts backed the company, alongside investors including Wiz CEO Assaf Rapaport and Cyera CEO Yotam Segev. The platform uses offensive and defensive AI agents to chain vulnerabilities, test whether weaknesses can be exploited and verify that remediation has closed the path, with scoped execution and audit trails.
Have news to share or just want to connect? Reach anytime at [email protected].
