Tidal Cyber: Pioneering Threat-Led Defense in Cybersecurity

In an era where cyber threats are becoming increasingly sophisticated and targeted, Tidal Cyber, a Virginia-based cybersecurity company, is making waves with its innovative approach to defense. Recently, the company announced the successful closure of a $10 million Series A funding round, led by Bright Pixel Capital, with continued backing from notable investors such as USAA, Squadra, Capital One, Veteran Ventures, Task Force X, and Ultratech. This funding marks a pivotal milestone for Tidal Cyber, providing the necessary resources to accelerate product development, expand its team, and enhance its impact on the cybersecurity landscape.

Foundational Expertise

Tidal Cyber was founded by three veterans of MITRE, an organization renowned for its contributions to cybersecurity frameworks and initiatives. The leadership team—Rick Gordon, Richard Struse, and Frank Duff—brings decades of experience in threat-informed defense, adversary emulation, and public-private collaboration. Their diverse backgrounds encompass government service, startup incubation, and enterprise security, equipping Tidal Cyber with a unique blend of strategic insight and technical depth.

Rick Gordon, the CEO, has a multifaceted career that includes scaling MITRE’s Center for Threat-Informed Defense and launching the ATT&CK Evaluations program. His previous roles also include serving as COO of Lookingglass Cyber Solutions and as a U.S. Navy submarine officer. Richard Struse, the CTO, is recognized for his contributions to threat intelligence sharing, having created the STIX and TAXII standards and served as CTO of the Department of Homeland Security’s National Cybersecurity and Communications Integration Center. Frank Duff, the Chief Innovation Officer, has been instrumental in bridging the gap between government cyber operations and commercial technology adoption.

A New Paradigm: Threat-Led Defense

At the core of Tidal Cyber’s mission is the belief that cybersecurity should be driven by real-world adversary behavior rather than theoretical models or generic threat feeds. The company’s platform is designed to help organizations measure and enhance the effectiveness of their security stack by aligning it with the actual tactics, techniques, and procedures employed by threat actors. This approach, termed Threat-Led Defense, extends beyond traditional threat intelligence, enabling security teams to make informed decisions based on how well their tools and processes can withstand known adversary behaviors.

As cyberattacks become more targeted and sophisticated, the demand for proactive, behavior-based defense strategies is growing. Tidal Cyber’s platform operationalizes the MITRE ATT&CK framework, transforming it from a static reference model into a dynamic component of daily operations. This allows organizations to identify gaps in their defenses and prioritize investments based on the threats that matter most to them.

Funding for Growth and Innovation

The recent funding will enable Tidal Cyber to expand its capabilities and reach more organizations grappling with complex and rapidly evolving threats. The company aims to build a comprehensive platform that integrates cyber threat intelligence, adversary behavior modeling, and security performance measurement into a unified system. This transformation is crucial as organizations face increasing pressure to demonstrate the value of their cybersecurity investments—not just in terms of compliance, but also in actual risk reduction and operational resilience.

A Vision for the Future

Tidal Cyber’s long-term vision is to shift the industry’s mindset from reactive threat management to proactive, threat-informed defense. This shift is significant, especially as organizations strive to navigate the complexities of modern cybersecurity challenges. With the support of its investors and the expertise of its founding team, Tidal Cyber is well-positioned to lead this transformation.

Rick Gordon, CEO of Tidal Cyber, emphasizes the importance of this approach: “We see strong traction and a need for threat-led defense as more organizations move beyond assumptions, CVE-counting, and checkbox compliance. Tidal Cyber flips the security model, putting real adversary behavior at the center of defense to enable a proactive, continuous, threat-led defense.”

Marcos Castro Osoro, a Board Member at Bright Pixel Capital, adds, “Tidal Cyber brings a new level of clarity and precision to security strategy by focusing on adversary behavior and how they operate. Their platform exposes true coverage exposures and helps organizations defend against the threats that really matter.”

Conclusion

As Tidal Cyber continues to grow and innovate, it is redefining what it means to be secure in a world where adversaries are constantly evolving. By prioritizing real-world adversary behavior and fostering a proactive approach to cybersecurity, Tidal Cyber is not just enhancing its own capabilities but also contributing to a broader shift in the industry. In doing so, it is helping organizations navigate the complexities of modern threats and build a more resilient cybersecurity posture.