Breaking
OX Security closes $60M Series B, May 2025 Total funding: ~$101.5M across seed and Series B Customers include eToro and SoFi Neatsun Ziv on the "Corporate Velocity Gap" OX pitches the 5% doctrine: fix what's exploitable, reachable, impactful Team: 170+ employees. Locations: New York and Israel Investors: DTCP, Microsoft, IBM Ventures, Swisscom Ventures, Evolution Equity, Team8
Person / Founder / Application Security

Neatsun Ziv

He watched SolarWinds unfold from a Check Point war room, then quit to build a company that would tell developers which of the day's ten thousand alerts they should actually read.

Neatsun Ziv, co-founder and CEO of OX Security, seated with co-founder Lior Arzi.
Ziv, right of frame in most public shots, tends to smile in a way that suggests he already knows what the interview question is going to be. Photograph via Calcalist.
The story so far

The 5% doctrine.

Neatsun Ziv runs OX Security, an application security company based in New York and Tel Aviv that raised $60 million in Series B funding in May 2025 and now has about $101.5 million in the bank. The pitch, delivered by Ziv in interviews and on stages with a certain amount of practiced weariness, is that of the alerts, tickets, and squiggly red lines a modern engineering organization generates in a typical week, roughly 95% are noise. The remaining 5% is the reason your CISO cannot sleep. OX would like to sell you a platform that separates the two piles.

This is a normal thing for an application security company to say. What is less normal is how Ziv arrived at it. He spent five years, from 2016 to 2021, as VP of Threat Prevention and Intelligence at Check Point, the Israeli cybersecurity company that has been publicly traded since roughly the time most of its current buyers were in grade school. His team, per Check Point's own materials, was among the first responders to NotPetya and SolarWinds, working with Interpol and various national CERTs during the events themselves. This is a small and specific club. Its members tend to leave with strong opinions about which parts of the security stack are broken.

Ziv's opinion, formed sometime around late 2020, was that the CI/CD pipeline had become the single most under-defended piece of infrastructure at most enterprises, and that the industry response, which was to bolt more scanners onto more places, was making the problem worse. In 2021 he left Check Point and, with co-founder Lior Arzi, another Check Point veteran, started OX Security. The company shipped what it calls an end-to-end software supply chain security platform. Sales followed. So did the customers: over 200 enterprises, mostly in finance and technology, including eToro and SoFi. Annual recurring revenue crossed $10 million. Headcount, per OX's own numbers, grew 216% in the six months leading up to the Series B and 1,470% across the prior two years, which is the kind of statistic that means something specific only if you know the denominator.

A note on his cadence in interviews: Ziv answers slowly, with pauses long enough that a nervous host will sometimes reach for the next question. This is a habit of people who used to make decisions during active incidents.
The Check Point years

Five years of other people's worst days.

Before OX, Ziv had already founded and closed a company. Vanadium Security, which he ran as CEO starting in December 2002, does not survive on the public internet in any detailed form; the company is a line on his LinkedIn and a footnote in later interviews. What matters is what came next. Check Point hired him in mid-2016 for a job that, in practical terms, meant being awake when the world's ransomware was awake.

NotPetya, in June 2017, was the loudest of these. SolarWinds, disclosed in December 2020, was the most consequential. Both events, in different ways, exposed the same architectural fact: modern attackers are patient enough to compromise the tools that build the software, not just the software itself. This is the observation OX Security was constructed around. Ziv's public framing, delivered in the Unite.AI interview and elsewhere, is that "every piece of code has a process that builds it and brings it to the cloud, CI/CD," and that reading that process, rather than only reading the code, is the honest way to know what production actually looks like.

He calls the mismatch between attacker speed and enterprise reaction speed the "Corporate Velocity Gap." This is the sort of phrase founders coin when they've watched a lot of Slack threads collapse under their own weight. He is not entirely wrong about it.

We need to help developers focus on what truly matters, and then explain to them why it matters.

Neatsun Ziv, Unite.AI interview
By the numbers
$101.5M
Total funding raised
200+
Enterprise customers
170
Employees
5%
Of alerts, per OX, that matter
Funding history

How the round stack got here.

OX Security has done two big fundraises the market noticed. A $34M seed in 2022 that got the company from prototype to product. A $60M Series B in May 2025 led by DTCP, with strategic checks from Microsoft, IBM Ventures, Swisscom Ventures, and continued support from Evolution Equity and Team8. The company describes the Series B as growth capital for product expansion and global footprint.

A useful reading of the cap table is that it is heavy on strategics. Microsoft and IBM Ventures are on it. This is what happens when the buyers of the product also want a seat at the table.

Funding by round (USD, millions)

Seed (2022)$34M
Bridge / other~$7.5M
Series B (2025)$60M
Total to date~$101.5M
Career timeline

Twenty-nine years, one throughline.

1996
Begins software work as a teenager (Motorola contest).
2002
Founds Vanadium Security. Serves as CEO.
2016
Joins Check Point Software Technologies as VP, Threat Prevention & Intelligence.
2017
Coordinates Check Point response to NotPetya alongside Interpol and national CERTs.
2020
Same team is among the first responders to the SolarWinds supply-chain campaign.
2021
Leaves Check Point. Co-founds OX Security with Lior Arzi.
2022
OX closes a $34M seed for end-to-end software supply chain security.
2025
$60M Series B led by DTCP. Total funding ~$101.5M. 200+ enterprise customers.
In his own words

Every piece of code has a process that builds it and brings it to the cloud, CI/CD. We can read the code and interpret what it means.

On OX's "Code Projection" approach

The hardest problem is transforming data into insights. Developers need clarity, bullet points, and reasoning.

On the actual technical challenge

I experienced firsthand the Corporate Velocity Gap. Traditional security enterprise moves at a slower pace.

On why OX exists

We need to help developers focus on what truly matters, and then explain to them why it matters.

On product philosophy
The bet

Agentic security, in a market that has heard this before.

Ziv's read on 2025 is that AI has, in his phrasing, "accelerated code generation" past the point where any reasonable AppSec team can keep up. This is the framing of the Series B, and it is also a fairly common framing in the market. What makes OX's version particular is where they place the agent: on the correlation and prioritization step, not on the scanning step. There is no shortage of tools that will scan your codebase. There is a shortage of tools that will tell you, with acceptable confidence, that vulnerability #4,382 is the one that reaches production, is exposed at runtime, and would matter.

This is what Ziv means when he uses the phrase "exploitable, reachable, and impactful." It is a three-word test that OX applies to every finding. If the finding fails the test, it gets demoted. If it passes, it becomes a ticket. The pitch, essentially, is that developers should trust the tool because the tool has already done the trust math.

Whether the market accepts this test as the correct one is the multi-hundred-million-dollar question. So far, per public filings and press, buyers in fintech (eToro, SoFi) and elsewhere have said yes.

Around the edges

Small facts, offered without commentary.

His Twitter handle is @neatsun, a first-name grab that suggests early adoption of the platform.

He holds an MBA from the Technion, magna cum laude, and a B.Sc. with honors from the Open University of Israel, which is Israel's distance-learning institution and, historically, a favorite of working engineers.

He is a venture partner at Team8, the Israeli company-building group, which is also an OX investor. The overlap is common in the Israeli cyber ecosystem and is generally disclosed in the fine print of announcements.

OX Security has appeared on Calcalist's list of most promising Israeli startups. This is the kind of list that founders pretend not to care about and then quote at their all-hands.

What OX actually does

Category
Application Security Posture Management (ASPM) and software supply chain security
Core idea
Correlate code, pipeline, and cloud signals into a single graph of exploitable risk
Selling point
Demote 95% of noise; escalate 5% of findings that are exploitable, reachable, impactful
Where it plugs in
SCA, SAST, secrets scanning, container security, CI/CD, and DevSecOps workflows
Frequently asked

Questions people actually ask.

Who is Neatsun Ziv?

Co-founder and CEO of OX Security, an application security posture management company he started in 2021 with fellow Check Point veteran Lior Arzi. Based between New York and Israel.

What did he do before OX?

He was VP of Threat Prevention & Intelligence at Check Point from 2016 to 2021, coordinating incident response to SolarWinds, NotPetya, and other campaigns alongside Interpol and national CERTs.

How much has OX Security raised?

About $101.5 million total. Most recently a $60M Series B in May 2025 led by DTCP, with Microsoft, IBM Ventures, Swisscom Ventures, Evolution Equity, and Team8 participating.

What does OX Security actually do?

It correlates signals from code, CI/CD pipelines, and cloud to prioritize the small subset of application risks that are exploitable, reachable, and impactful, then routes them to developers.

Where did he study?

B.Sc. with honors from the Open University of Israel, MBA magna cum laude from the Technion.

Further reading
Websiteox.security LinkedInNeatsun Ziv Twitter / X@neatsun Team8Venture partner page InterviewUnite.AI series TechCrunchSeries B coverage CalcalistSeries B, in Hebrew press Dark ReadingContributed columns SC MediaContributor page
Share
Twitter / X LinkedIn Facebook Instagram