NEW YORK, NY – 12/02/2026 – (SeaPRwire) – As enterprises expand their digital ecosystems, third-party vendors have become deeply embedded in core operations—often with privileged access to sensitive systems and data. Addressing the growing gap between traditional compliance practices and real-world security exposure, Lema AI has officially emerged from stealth, announcing $24 million in funding to advance its agentic AI-driven approach to third-party risk management.
The Series A round was led by Team8, with F2 Venture Capital leading the Seed round and participation from Salesforce Ventures. The funding underscores rising investor interest in solutions that move beyond manual, questionnaire-based vendor assessments toward continuous, intelligence-driven security models.
Industry research highlights the scale of the challenge. According to Gartner, a majority of enterprises now depend on more than 1,000 external vendors, significantly expanding their potential attack surface. Yet most organizations still rely on static compliance forms and periodic reviews to manage this risk. Studies from McKinsey indicate that nearly one-third of recent cybersecurity breaches originated from third parties, exposing the limitations of point-in-time assessments that fail to reflect how vendors actually interact with enterprise environments.
Lema AI approaches third-party risk as a security problem rather than a compliance exercise. Its platform is powered by an AI agent designed to operate with the mindset of a vulnerability researcher, continuously analyzing vendor behavior inside enterprise systems. Instead of validating policies on paper, the platform monitors access to critical assets, tracks data movement, evaluates permission changes over time, and maps realistic attack paths that third parties could introduce.
By identifying which vendors pose the highest risk—and explaining why—Lema AI provides security teams with actionable mitigation steps to reduce exposure. This forensic, continuous analysis allows enterprises to assess new vendors in minutes rather than weeks, while maintaining ongoing visibility as relationships evolve.
“We built Lema AI to reflect how real security incidents happen, not how compliance frameworks are filled out,” said Eddie Dovzhik, CEO and co-founder of Lema AI. “Third parties operate with insider-level access, and their impact on the business changes constantly. Our platform continuously measures that blast radius so organizations can focus on the risks that truly matter.”
From an investor perspective, the problem Lema AI addresses has become a top priority for security leaders. Team8 notes that third-party risk management consistently ranks among the highest innovation priorities for CISOs, yet remains dominated by outdated, manual processes. By directly connecting third-party activity to business-critical assets, Lema AI is positioned to give enterprises a dynamic and operational view of risk across their extended ecosystem.
Founded in 2023 by Eddie Dovzhik (CEO), Omer Yehudai (CPO), and Tomer Roizman (CTO), Lema AI was created to close the security gaps left by compliance-first tools. The company has already onboarded customers across sectors such as financial services and healthcare, including large global enterprises and Fortune 500 organizations. The newly raised capital will be used to accelerate research and development of its autonomous vendor risk analysis engine and to scale go-to-market operations in response to growing demand from regulated and digitally intensive industries.
About Lema AI
Lema AI is an agentic AI security platform that provides enterprises with continuous visibility into the risks introduced by third-party vendors. By monitoring real vendor behavior rather than relying on static questionnaires, Lema AI identifies which partners pose the greatest threat to critical assets and delivers precise, actionable remediation guidance to help organizations secure their extended enterprise.