Login
Sign Up
Woofun AI reports that QIZ Security has secured $17 million in seed funding to address the escalating risk posed by quantum computing to existing encryption standards, a threat that is rapidly transitioning from theoretical concern to operational reality. The potential for quantum algorithms to break current cryptographic protocols has elevated post-quantum cryptography (PQC) readiness to a board-level priority for enterprises worldwide.
This shift is driven by the realization that traditional security perimeters are insufficient against future computational power, necessitating a fundamental rethinking of how digital assets are protected. The company’s emergence coincides with growing industry anxiety over the 'harvest now, decrypt later' attack vector, where adversaries collect encrypted data today with the intent to decrypt it once quantum computers become viable. Consequently, organizations are seeking solutions that offer more than just theoretical compliance; they require actionable governance frameworks to secure their most sensitive information. The involvement of prominent investors signals a broader market consensus that the window for preparation is closing, and that specialized tools for encryption posture management are no longer optional but essential for business continuity.
The core challenge facing modern enterprises is the invisibility of their own encryption assets, which are scattered across disparate environments including clouds, on-premises systems, application code, and network transmissions. This fragmentation creates a scenario where 'invisible means unmovable,' leaving organizations blind to their true exposure levels. QIZ Security defines its solution around two critical pillars: encryption posture management and PQC readiness. The former involves conducting comprehensive audits of all encryption 'keys' and 'locks' within an enterprise’s IT environment, providing continuous monitoring to identify risks and determine criticality. The latter focuses on assisting organizations in upgrading to next-generation encryption technologies capable of resisting quantum attacks. By addressing both the current state of encryption assets and the future threat landscape, QIZ aims to help enterprises transition from a chaotic state of disordered encryption to one of security resilience. This dual approach recognizes that simply replacing algorithms is insufficient without first understanding what needs to be protected and how those assets are currently managed.
It is crucial to clarify the terminology used in this context, as 'cryptographic assets' often causes confusion with cryptocurrencies in the blockchain domain. In the context of QIZ Security, cryptographic assets refer to the security infrastructure components used by enterprises to protect data, including digital certificates, encryption keys, encryption algorithms, and other related elements. If enterprise data is compared to money in a safe, then cryptographic assets encompass all the locks, keys, and the safe itself. QIZ is a specialized system for managing these 'locks and keys,' ensuring that the underlying security mechanisms are robust and up-to-date. This distinction is vital because while both fields involve the word 'encryption,' the former refers to foundational security infrastructure, whereas the latter refers to digital assets. Misunderstanding this difference can lead to significant security gaps, as organizations might focus on blockchain-specific security while neglecting the broader encryption posture that protects their core business operations. QIZ’s focus is squarely on the latter, providing a dedicated platform for managing the complex web of encryption technologies that underpin modern enterprise IT.
The funding round, completed around July 9, 2026, was led jointly by Bessemer Venture Partners and Merlin Ventures, with participation from Evolution Equity Partners, Qbeat Ventures, Singtel Innov8, and Qino Cyber Capital. This $17 million injection of capital will be used to accelerate product development and expand market reach across key industries such as finance, telecommunications, healthcare, and critical infrastructure. The platform has already established partnerships with major technology and consulting firms, including Cisco, AWS, Google, CrowdStrike, Deloitte, EY, and IBM, indicating a strong ecosystem support structure. These partnerships are not merely symbolic; they facilitate deeper integration and broader deployment capabilities, allowing QIZ to embed its governance tools within existing enterprise workflows. The involvement of such diverse investors, ranging from traditional venture capital firms to industry-specific funds, underscores the cross-sector relevance of the quantum threat. It also suggests that the market for PQC solutions is maturing, with investors recognizing the long-term value of companies that can provide practical, scalable solutions for encryption governance.
At the heart of QIZ’s offering is its platform mechanism, which operates as an 'action system' for encryption governance rather than a passive recording tool. The platform continuously scans an enterprise’s full stack environment, including clouds, on-premises deployments, data transmission, static storage, application code, and the network layer. It goes beyond simple discovery by correlating findings with business context to identify truly critical risk exposures. This contextual awareness is essential for prioritizing remediation efforts, as not all encryption assets carry the same level of risk. The platform implements policy frameworks such as those from NIST and CNSA 2.0, directly driving remediation processes to ensure compliance and security. This 'discover - assess - govern' closed-loop approach enables enterprises to achieve crypto-agility, allowing them to flexibly switch or upgrade encryption algorithms without disrupting operations. By automating these processes, QIZ helps security teams turn quantum readiness from a one-time project into an ongoing operational discipline, ensuring that the organization remains resilient against evolving threats.
The platform’s capabilities are further enhanced through strategic collaborations, including a crypto-agility partnership with Google Cloud, which is now available on the Marketplace, and an integration with SafeLogic for end-to-end PQC discovery and remediation. These partnerships allow QIZ to extend its reach into hybrid environments, providing continuous visibility and action capabilities across diverse IT landscapes. The overall architecture emphasizes scalable deployment, ensuring that the platform can grow with the enterprise and adapt to changing security requirements. Unlike one-time scanning tools that provide a snapshot of the current state, QIZ offers continuous monitoring and automated governance pathways. This continuous approach is critical because encryption assets are dynamic, with new instances being created and old ones decommissioned regularly. By maintaining a real-time view of the encryption posture, QIZ ensures that organizations can respond quickly to new vulnerabilities and maintain a high level of security readiness at all times.
Practical use cases illustrate how QIZ transforms quantum readiness into actionable daily security practices across various industries. In the financial sector, the platform helps institutions discover encryption assets spread across core systems and assess the decryption risks posed by quantum computing. By correlating with business context, it prioritizes marking critical assets involving customer funds or compliance data, facilitating timely remediation. In telecommunications, similar processes are used to protect communication encryption links and ensure long-term security for 5G and future network infrastructure. The healthcare industry benefits from the platform’s ability to govern patient data encryption, meeting strict privacy requirements while preparing for PQC migration. In the critical infrastructure sector, users leverage QIZ to discover legacy encryption instances in industrial control systems and develop phased upgrade plans. These diverse applications demonstrate the platform’s versatility and its ability to address specific industry challenges, from protecting sensitive financial transactions to securing critical national infrastructure.
In the competitive landscape of encryption posture management and PQC readiness, QIZ Security faces rivals such as QuSecure, Fortanix, Entrust, and IBM Quantum Safe. QuSecure’s QuProtect platform focuses on PQC software solutions and crypto-agility, with particular emphasis on federal and enterprise-scale applications. Fortanix provides key discovery and management through PQC Central, emphasizing an end-to-end PQC readiness process. Entrust relies on its Cryptographic Center of Excellence toolkit to assist enterprises with certificate and key management as well as migration planning. The IBM Quantum Safe series offers discovery, visibility, policy enforcement, and remediation capabilities, covering hybrid environments and code analysis. The core difference between QIZ and these competitors lies in their positioning and implementation approach. QIZ places greater emphasis on continuous discovery across the entire enterprise stack and closely correlates results with business context to prioritize handling truly critical risk exposures. While some competitors focus more on single protocol layers or infrastructure components, QIZ demonstrates stronger capabilities in scalable crypto-agility and end-to-end governance, creating a closed loop of 'systemic action' that drives actual remediation rather than just reporting issues.
Per Woofun AI, the company’s financial structure is strictly traditional, with no involvement in token economics. QIZ Security is a traditional cybersecurity company that has not launched any tokens nor disclosed any information related to token economics. The $17 million seed funding round was an equity financing deal led jointly by Bessemer Venture Partners and Merlin Ventures, not a token sale or public offering. Neither the official website nor any funding reports mention tokens, staking, governance tokens, or related incentive mechanisms. As a token-free infrastructure platform, QIZ focuses on providing enterprises with immediately applicable encryption governance and PQC readiness capabilities. This clear distinction from the cryptocurrency market is important for maintaining credibility and trust among enterprise clients, who may be wary of projects that blur the lines between security infrastructure and speculative digital assets. Any future ecosystem incentives will be announced separately by the company, but the current focus remains squarely on delivering robust, practical security solutions.
The founding team behind QIZ Security combines serial entrepreneurial execution skills with deep expertise in quantum security. CEO and co-founder Ben Volkow is a serial entrepreneur who previously founded Otonomo (listed on Nasdaq via SPAC and later merged into Urgent.ly), Traffix Systems (acquired by F5 Networks), and Sedona Networks. This is his fourth company to receive support from Bessemer Venture Partners, and he brings over 20 years of experience as CEO and chairman. CTO and co-founder Lenny Ridel co-founded Traffix Systems with Ben Volkow and is described by Bessemer as 'one of the strongest technical experts.' He has extensive experience in enterprise-level technical architecture and security platform development and is responsible for the core technical engine of the QIZ platform. CSO and co-founder Itan Barmes holds a Ph.D. in physics. He previously led Deloitte’s global quantum cybersecurity readiness team for about six years, focusing on building cryptography and quantum security capabilities, and has worked with large global organizations on quantum security readiness and strategy development. He also serves as a researcher for related projects at the World Economic Forum, sharing insights on quantum cybersecurity at industry conferences. The backgrounds of the three founders complement each other: executive experience, technical depth, and domain expertise together support QIZ’s position in encryption governance and PQC transformation.
Despite the strong team and funding, QIZ Security faces several risks and challenges in its growth phase. Widespread adoption will take time, especially as traditional enterprises gradually embrace continuous encryption governance processes. Standards in the PQC field are still evolving, and there is uncertainty regarding the actual timeline of quantum computing threats, which may affect enterprises’ migration timelines and budget allocations. In terms of competition, companies like QuSecure, Fortanix, Entrust, and IBM are already established in this space, so QIZ needs to continuously prove the unique value of its end-to-end continuous discovery and action-driven approach. At the technical implementation level, the platform must keep up with standard updates and the complexity of hybrid environments.
However, QIZ’s existing network of partners and industry implementation cases provide a foundation for addressing these risks. Encryption governance and PQC readiness are long-term trends, and the project’s current trajectory shows its ability to respond to market demands. This marks a significant step in the maturation of the quantum security market, moving from theoretical discussion to practical implementation.