The Collapse of Traditional Security Awareness
The cybersecurity industry has long relied on a broken model of human risk management. Quarterly compliance slides and static, predictable phishing simulations were once the standard, but they have failed to move the needle. Despite massive annual expenditure on awareness training, the human element remains the primary catalyst in nearly 90% of data breaches.
This statistic highlights a structural misalignment: organizations are fighting modern, AI-automated adversaries with training content that is inherently obsolete the moment it is deployed. As generative AI lowers the barrier to entry for attackers, social engineering has evolved from crude, mass-market emails to hyper-personalized, real-time deception tools.
Frame Security’s Strategic Pivot
Emerging from stealth with a $50 million funding round, Frame Security aims to replace rigid compliance cycles with a dynamic, AI-first platform. Co-founded by Unit 8200 alumni—including early Wiz executive Tal Shlomo and former Team8 CTO Sharon Shmueli—the startup seeks to bridge the gap between static training and the fluid realities of modern social engineering.
The core premise of Frame Security is adaptability. By leveraging generative AI to curate real-time attack simulations that mirror current, active threat patterns, the platform allows security teams to iterate on their defenses in minutes. This is a significant departure from legacy vendors, whose training modules often require months of development and revision.
The Human Perimeter Under Siege
The urgency behind Frame’s approach is validated by recent industry data. According to Gartner, nearly half of cybersecurity leadership surveyed in 2025 reported encounters with AI-generated audio or video impersonations. These deepfake attacks, targeting corporate executives and internal communications, represent a shift toward high-stakes authorization and credential theft that automated email filters are ill-equipped to block.
Frame Security argues that if the threat is automated, the defense must be equally automated. The platform continuously monitors employee behavior and organizational patterns to move beyond check-the-box training. Instead, it provides personalized, role-based guidance the moment a risk materialize, effectively hardening an organization’s human perimeter against emerging vectors before they gain a foothold.
Market Implications and Investor Sentiment
The $50 million injected into Frame—led by Index Ventures, Team8, and Picture Capital Management—signals that venture capital has recognized the plateau in traditional Security Awareness Training (SAT) tools. Support from industry heavyweights like Wiz CEO Assaf Rappaport and investor Elad Gil further underscores a shift in how the security community views the human risk category.
For the incumbent players in the SAT market, this launch serves as a warning. Enterprise clients, including Louis Dreyfus Co. and AlphaSense, are signaling a demand for platforms that provide quantifiable security outcomes rather than just regulatory documentation.
If Frame Security can maintain the pace of its AI research and prove the efficacy of its always-on training model, it could effectively commoditize legacy security awareness training, forcing a total industry migration toward adaptive, simulation-driven defense. The challenge will be execution: scaling these hyper-realistic simulations without creating alarm fatigue among the workforce. However, the current trajectory suggests that the era of annual compliance slide decks is nearing its end.