Series A financing for Secfix
The Munich-based cybersecurity startup Secfix has closed an oversubscribed Series A financing round of 12 million US dollars. The round was led by Alstin Capital, with Bayern Kapital and neosfer, the Commerzbank Group's early-stage investor, also participating.
The company intends to use the fresh capital to accelerate its expansion in Europe and further develop its AI-native security and compliance functions.
From GRC tool to end-to-end platform
Secfix originally started with the automation of classic governance, risk and compliance (GRC) processes. The aim was to simplify time-consuming and highly manual certifications. This was an area in which companies often needed up to 18 months for standards such as ISO 27001, thereby delaying growth and the conclusion of contracts.
Our vision is to establish Secfix as Europe's leading end-to-end security compliance platform, guiding companies through their entire security and compliance journey from the first ISO 27001 certification.
Fabiola Munguia, CEO and Co-Founder of Secfix
Today, Secfix positions itself as a holistic platform that combines compliance automation with continuous monitoring and a "CISO-as-a-Service" approach. This provides companies not only with software, but also with structured security management and operational support.
Automation of complex regulatory requirements
The platform covers a wide range of regulatory frameworks, including ISO 27001, GDPR, SOC 2, NIS2 and the EU AI Act. AI-supported workflows automate tasks such as
- Risk and gap analyses
- Policy management and audits
- Incident and access management
- Cloud security scans and penetration tests
- Security reporting and documentation
The aim is to enable SMEs and mid-market companies in particular to implement compliance without large internal security departments.
Measurable effect for European companies
Secfix already serves several hundred customers in more than 15 European countries, including companies such as WorkMotion. According to the company, customers can reduce their certification time by up to 90 percent and achieve audit success rates of 100 percent.
Tailwind from increasing regulatory pressure
With new European regulations such as DORA, NIS2 and the EU AI Act, the need for structured security and compliance processes is growing significantly. Many companies are facing the challenge of implementing regulatory requirements in parallel with scaling and internationalization.
With NIS2, DORA and the EU AI Act, companies are facing a wave of compliance that many underestimate. Secfix has built the infrastructure to manage this complexity
Andreas Schenk, Partner at Alstin Capital
Secfix sees itself as an infrastructural solution: a platform that transforms compliance from a project-based effort to a continuous, scalable process.
European expansion ahead
The main purpose of the financing is to
- further expand the market position in the DACH region,
- open up additional European markets,
- deepen AI automation along the entire compliance lifecycle,
- and to scale up the CISO-as-a-Service model.
Secfix aims to establish itself as one of the central providers of security compliance infrastructure in Europe in the long term.
Newsletter
Startups, stories and stats from the German startup ecosystem straight to your inbox. Subscribe with 2 clicks. Noice.
LinkedIn ConnectFYI: English edition available
Hello my friend, have you been stranded on the German edition of Startbase? At least your browser tells us, that you do not speak German - so maybe you would like to switch to the English edition instead?
FYI: Deutsche Edition verfügbar
Hallo mein Freund, du befindest dich auf der Englischen Edition der Startbase und laut deinem Browser sprichst du eigentlich auch Deutsch. Magst du die Sprache wechseln?
