Bryan Onel grew up around locks, his father was a locksmith, and later became the digital equivalent. After a decade of ethical hacking and penetration testing for over 150 companies, Onel noticed a recurring problem: organizations passed compliance checks on paper yet remained highly vulnerable.
In 2022, Onel co-founded Oneleet, an all-in-one security compliance platform, alongside his wife, Ora, and college friend, Erik Vogelzang. Unlike traditional compliance platforms that mainly collect evidence to produce certificates, Oneleet integrates a full suite of tools, including penetration testing, code scanning, cloud data security, attack surface management, and security training.
“Because it’s integrated from the ground up, we can deploy comprehensive security with the click of a button,” Onel said. “That saves clients hundreds of hours and eliminates blind spots that come from managing fragmented tools.”
On Thursday, Oneleet announced it had raised a $33 million Series A round led by Dawn Capital, with participation from Y Combinator, Dropbox co-founder Arash Ferdowsi, and former Snowflake and ServiceNow CEO Frank Slootman. The startup has now raised a total of $34 million and reached $3 million in annual recurring revenue.
The new funding will help expand Oneleet’s engineering team, boost AI capabilities, and grow its customer base. Competitors in the space include Vanta, Secureframe, and Sprinto.
Onel argues that AI is reshaping both cyberattacks and defenses. While advanced bad actors use automation to scale attacks, and even novices can now strike with AI tools, compliance loopholes allow companies to fake security documentation. Oneleet uses AI responsibly, Onel said, for tasks like threat modeling and policy drafting, with human oversight to prevent errors.
Related: Wiz CTO Warns of Rising AI-Powered Cyberattacks Amid Expanding Enterprise Adoption
“Good security should be invisible,” Onel added. “Companies should spend less time worrying about security and more time building great products.”
