Cyber security continues to evolve at an extraordinary rate as organisations balance accelerating AI adoption with growing concerns around identity, governance, infrastructure resilience and data exposure.

Each quarter, our team at neuco takes a step back to look at the businesses creating the most interesting momentum across the cyber landscape. That can come through funding activity, product launches, customer traction, technical innovation or simply the conversations dominating boardrooms and security teams globally.

This quarter, many of the themes centre around agentic AI, runtime security, privacy, machine identity and secure AI deployment. As enterprises move from experimentation towards operational AI at scale, the security challenges are becoming far more complex and the companies responding to those challenges are becoming increasingly important.

The businesses below are some of the companies that have particularly caught our attention heading into Q2 2026 based on market activity, industry conversations and the wider direction of travel across cyber security.

The Q2 2026 Companies to Watch

• Cloaked
• Fiddler
• RapidFort
• Fortanix
• HiddenLayer
• SandboxAQ
• Immuta
• DeleteMe
• Akeyless

As AI adoption accelerates and identity, governance and infrastructure security become increasingly critical, these are the companies we feel are worth watching closely this quarter.

---

Cloaked

Built around people-first privacy, Cloaked helps users generate, protect and reclaim their digital identity online.

Its March 2026 $375 million Series B and growth financing round marked a significant vote of confidence in consumer privacy as a scalable business model, with backing led by General Catalyst and Liberty City Ventures.

The funding gives Cloaked room to accelerate AI-powered threat detection, expand enterprise tooling and continue building on its growing subscriber base. In a market increasingly shaped by identity fraud and data exposure, that momentum feels particularly notable.

---

Fiddler

As enterprises push AI agents further into critical workflows, Fiddler is positioning itself as a control layer for that next phase of adoption.

The company closed a $30 million Series C in January 2026 to advance its vision for a neutral control plane spanning telemetry, evaluation, monitoring, policy enforcement and governance across the AI lifecycle.

With revenue reportedly growing more than fourfold over the previous 18 months and growing traction across regulated industries, Fiddler is tapping directly into one of cyber security’s fastest-emerging priorities: making agentic AI observable, governable and commercially safe at scale.

---

RapidFort

RapidFort is addressing one of infrastructure security’s most pressing challenges: reducing software supply-chain risk before exploitation catches up.

Its $42 million Series A funding round announced in February 2026 is supporting further development of a platform focused on runtime-aware remediation, automated hardening and continuous vulnerability reduction.

By combining execution-path analysis with curated near-zero CVE images and container optimisation, RapidFort is moving beyond static scanning towards a more operational approach to remediation. That feels particularly timely as AI-driven development continues to increase code volume and complexity.

---

Fortanix

Data sovereignty is quickly becoming a defining issue in enterprise AI, and Fortanix is leaning directly into that challenge.

In February 2026, the company partnered with NTT DATA on a service powered by NVIDIA Confidential Computing to help organisations build secure and compliant AI factories, particularly across highly regulated sectors in India.

The proposition is compelling: protecting data and models not only at rest and in transit, but also while actively in use. As demand grows for auditable AI infrastructure, Fortanix appears to be extending its relevance well beyond traditional encryption and key management.

---

HiddenLayer

HiddenLayer has built much of its reputation around securing AI systems, and its March 2026 threat report reinforced that positioning.

The research highlighted that more than one in eight reported AI breaches now involve agentic systems, while shadow AI, supply-chain exposure and unclear ownership continue to widen the enterprise risk gap.

As organisations shift from experimental AI usage towards autonomous workflows with real-world permissions, HiddenLayer is helping frame agentic AI as an operational security challenge rather than simply a model issue.

---

SandboxAQ

SandboxAQ is continuing to expand its cyber security proposition as AI becomes increasingly embedded within enterprise environments.

In March 2026, the company enhanced AQtive Guard with new AI security posture management capabilities, including runtime guardrails, broader discovery, MCP risk analysis and posture reporting aligned to frameworks such as the EU AI Act.

The release directly addresses a growing challenge for security leaders: AI adoption is spreading faster than visibility and governance controls. By focusing on oversight and operational guardrails, SandboxAQ is aligning closely with the realities of enterprise AI deployment.

---

Immuta

Immuta is reframing data governance for a world where non-human identities increasingly request access to sensitive information.

In March 2026, the company launched what it describes as the first data provisioning platform for managing agentic data access, treating AI agents as first-class identities with their own attributes, intent, temporary permissions and audit trails.

Traditional role-based models are often too slow for machine-speed workflows, and as enterprises operationalise AI agents across analytics and decision-making, Immuta is positioning itself at the intersection of governance, automation and secure access.

---

DeleteMe

DeleteMe is broadening its privacy protection strategy as social engineering and AI-enabled impersonation attacks continue to increase.

Its March 2026 acquisition of Block Party adds social media privacy controls to DeleteMe’s established data broker removal offering, creating a more comprehensive response to the personal exposure fuelling many modern cyber attacks.

The strategic logic feels clear: attackers increasingly target people rather than software, using publicly available information to build trust and exploit it. By connecting these areas of exposure, DeleteMe is building a stronger personal and organisational privacy narrative.

---

Akeyless

Akeyless is pushing identity security further into the era of agentic AI.

In March 2026, the company introduced Agentic Runtime Authority and Agentic Identity Intelligence, extending its platform to discover AI agents, authorise by intent and control actions in real time.

That matters because autonomous systems are no longer limited to reading data. They are now triggering workflows and modifying production environments. Akeyless is responding with runtime enforcement, zero standing privileges and forensic traceability tied directly back to prompts.

For enterprises scaling AI agents, that combination of visibility and control could prove increasingly valuable.

---

Final Thoughts

AI is rapidly reshaping the cyber security conversation, not only from a threat perspective but also in how organisations approach governance, observability, compliance and trust across digital infrastructure.

Many of the companies featured here are addressing the operational realities that come with AI adoption at scale, whether that’s securing autonomous agents, reducing software supply-chain exposure, protecting sensitive data or improving visibility across increasingly distributed environments.

As always, this is not intended to be a definitive list. There are many organisations doing exceptional work across cyber security, and these are simply the companies that have stood out most to our team during Q2 2026.

If your organisation is building innovative technology or tackling some of the industry’s biggest security challenges, we’d love to hear from you. Feel free to contact the team at hello@neuco-group.com.

Article brought to you by neuco, global specialists in recruitment and executive search across Cyber Security.