Frame Secures $50 Million in Round Backing Human Risk Security
In a deal that underscores a shift in cybersecurity spending toward people, Frame Security has raised $50 million in a fresh funding round. The financing was led by INDEX VENTURES, with participation from Team8 and Picture Capital, along with strategic contributions from industry peers. The announcement, made public this week, signals rising investor confidence in a market that increasingly treats human error as the primary entry point for breaches.
Frame’s founders describe their mission as turning security awareness into a practical, revenue-driving capability, rather than a checkbox in HR training. CEO Tal Shlomo and CTO Sharon Shmueli say the company’s platform uses cutting-edge AI to simulate attacks that resemble real life, including company-specific cues and timely external events.
"The era of generic phishing is over. Today’s attackers tailor their moves to your company in real time, and AI makes it cheaper to pull off convincing tricks," Frame’s CEO Tal Shlomo said. "We build defenses by teaching teams to recognize those patterns before they become breaches."
The round positions Frame as a pioneer in what the company calls “human risk security”—acknowledging that even the best tech can fail if employees aren’t prepared. Frame’s platform creates AI-generated simulations and training modules that echo how employees actually work, including voice-cloned calls, realistic videos, and attack scenarios tied to the company’s current events or open roles. The goal is to harden everyday workflows against social engineering by mirroring the kinds of attacks teams are most likely to encounter.
Investors and Terms
The funding round was led by INDEX VENTURES, with additional backing from Team8 and Picture Capital. Investors associated with the deal include Wiz CEO Assaf Rappaport and Elad Gil, a veteran tech investor. While terms beyond the $50 million figure were not disclosed, executives stressed the capital will accelerate product development, go-to-market efforts, and international expansion.
The market’s response to Frame’s thesis is informed by a growing cybersecurity budget that prioritizes people over perimeter technology. Industry analysts note that while firewalls and endpoints remain essential, the costliest breaches increasingly begin with social engineering. Frame’s approach seeks to address that vulnerability head-on by turning employee training into a measurable business capability rather than a one-time program.
Market Context: Why This Round Matters
Security teams have faced a persistent paradox: highly trained personnel can close gaps quickly, yet the rapid advance of AI-assisted fraud has raised the stakes for every onboarding email and customer inquiry. In 2025, phishing and business email compromise remained among the most costly cyber incidents for organizations worldwide, prompting higher budgets for security awareness programs and simulated attacks. Frame’s funding reflects a broader investor appetite for startups that blend AI with practical risk management.
Observers describe the deal as emblematic of a broader narrative in which investors back companies that fuse technology with behavioral science to reduce risk. In industry chatter, the term exclusive: index ventures backs surfaces as a shorthand for a growing conviction that human factors, not just technology, determine security outcomes. The phrase captures a perceived shift toward embedding security education into the fabric of day-to-day operations rather than treating it as a compliance obligation.
What Frame Brings to the Market
Frame’s core product blends AI-driven content with real-world signals from a company’s ecosystem. The platform can generate realistic phishing simulations that reference current events at the organization, job postings, or internal communications. By mirroring the tone and structure of actual communications, the simulations aim to reduce training fatigue and improve retention among employees.
In practice, the platform can deliver a range of attack scenarios, from voice-cloned calls appearing to come from a CEO to social media-like prompts that encourage users to reveal credentials or click malicious links. The objective is not to scare employees but to inoculate them against manipulation through repeated, highly relevant practice.
Leadership and Backgrounds
Frame’s leadership team mirrors a track record of cybersecurity and startup-building. Tal Shlomo, who previously joined Wiz as one of its early engineers, serves as CEO, while Sharon Shmueli brings a strong technical pedigree as cofounder and CTO. The pair’s experience in Israeli cyber circles was forged in high-stakes environments, shaping an approach that blends practical defense tooling with scalable AI-driven learning.
Their collaboration is described as a tight, product-focused partnership: Shlomo emphasizes a unified vision with Shmueli’s technical execution—the two often saying they operate as one team with complementary strengths. This dynamic is seen as a key driver behind Frame’s ability to translate complex security concepts into actionable employee training.
Roadmap and Growth Strategy
With fresh capital in hand, Frame plans to expand its customer base across North America and Europe, invest in product engineering to broaden scenario types, and deepen analytics that demonstrate training impact. The near-term roadmap includes more integrations with popular security stacks, expanded language support for multinational teams, and an emphasis on measurable outcomes such as reduced phishing click rates and shorter time-to-detection.
Industry watchers expect Frame to pursue both direct enterprise clients and partnerships with managed security service providers. The company will also likely deepen partnerships with large-scale employers seeking to align security training with corporate culture and risk management demands.
Key Round Details
- Funding amount: 50 million USD
- Lead investors: INDEX VENTURES
- Other participants: Team8, Picture Capital
- Strategic contributors: Assaf Rappaport (WIZ), Elad Gil
- Geographic footprint: New York and Tel Aviv offices
- Business focus: Human risk security, security awareness training
What This Means for Employees and Companies
For employees, Frame’s approach turns cybersecurity training into a more realistic, ongoing practice rather than a quarterly compliance drill. For organizations, the payoff is a more resilient workforce that can recognize and resist social engineering before attackers gain a foothold. In a market crowded with compliance-heavy programs, Frame’s model earns attention for tying training outcomes to real risk reduction and business metrics.
As cyber threats evolve, investors and operators alike are recalibrating how to defend digital ecosystems. The Frame round, the latest in a string of AI-powered security startups, signals that the industry is moving beyond generic best practices toward personalized, data-driven protection that begins with the people inside the organization.
Outlook: The Path Forward
Frame’s leadership frames the next steps as a combination of product maturation and market expansion. If the company can demonstrate clear correlations between its simulations, training engagement, and measurable decreases in incident rates, the round could serve as a blueprint for how security teams justify investments in human risk security.
The broader market will watch how Frame translates this funding into concrete customer wins and whether the AI-driven training model can scale across diverse corporate cultures. In a world where phishing remains a core threat, the idea that “people are the first line of defense” gains renewed legitimacy—and capital.
Analysts also anticipate further consolidation in the security training space, with Frame potentially pursuing strategic collaborations or bolt-on acquisitions to accelerate product breadth. For now, the focus remains on delivering a scalable, measurable program that turns security education into a durable competitive advantage for its clients.
Bottom Line
The $50 million raise, led by INDEX VENTURES, marks a pivotal moment for Frame as it scales its human risk security platform. By combining AI-generated realism with targeted training, the company aims to turn employees from a vulnerability into a strategic asset in the fight against cybercrime. As investors circle cybersecurity innovation, the deal stands out as a defining example of the market’s current emphasis on people-based defense and practical risk reduction.
Discussion