Nebulock

Founder: Damien Lewke
Founding: 2024
Mission: Agentic threat hunting for everyone
Employees: 14 & ~50% Local
Workplace: Hybrid
Stage & Capital Raised: Seed & $8.5M raised
Investors: Bain Capital Ventures, Step Function Ventures, Decibel, In-Q-Tel, Zetta Venture Partners, and Aviso Ventures
Key Customers: Bain Capital (Mark Sutton, CISO)
Glassdoor Rating: N/A
Valuation (estimated): <$50M (assuming average equity dilution in the July 2025 $8.5M Seed fundraise)
^ this is a useless number from MGMT Boston. There is no tangible valuation until the business is sold or goes public. Don’t forget it!

Nebulock is building the AI-native, agentic threat hunting operating system for everyone. This team is building a cybersecurity platform that continuously scans your security stack to surface false negatives and translate hunts into hardened behavioral detections 24/7.

Founder and CEO Damien Lewke spent his entire career on the frontlines of cybersecurity, from defense contractor Northrop Grumman, to early integrations engineering at CrowdStrike (Series C through IPO), to Palo Alto Networks. Ever heard of them? He also led product teams across AI, threat intel, and detection at Arctic Wolf Labs after obtaining a Masters in Engineering at MIT where he wrote his thesis out of CSAIL. Through all those experiences, it was clear that the threats companies face have grown but the workflows to proactively detect them have not kept pace.

The modern enterprise attack surface has ballooned (we’re all connected to the Internet!), yet most security operations teams are still retrofitting outdated, siloed tools with no real way to learn from past detections or detect new ones at scale. After running an AI and detections product org at Arctic Wolf, Damien set out to build an agentic threat hunting platform that could meet today’s security challenges at Internet speed. That’s Nebulock.

Threat hunting is the act of proactively interrogating security datasets to surface false negatives. Threats that should’ve been caught, but weren’t. It’s the proactive questioning of data to find known unknowns or unknown unknowns with experienced human capital. Most companies just…don’t do it.

Nebulock’s core thesis is that with the right agentic infrastructure, anyone can threat hunt. Whether you’re a Fortune 50 with a seasoned detection team or a late-stage Series C startup with a single security lead, Nebulock makes it possible to run intelligent, contextual threat hunts powered by prompts, not python, all while running their own continuous threat hunts in the background. 

The cybersecurity market is $300B+ in 2025 and on pace to grow to $500B+ by 2025 (src). AI tools available to nation state actors are scaling quickly and there’s a needed shift from keyboard clacking to intelligent automation across the corporate landscape. Last, small organizations now face the same threats as large enterprises, but without the resources that have previously only been available to the Fortune 500. Democratizing access to proactive security is a major market need.

Nebulock isn’t just another security dashboard that logs data and surfaces insights. It’s an agentic operating system for proactive defense. They’ve built AI native agents fine tuned to do threat hunting and detection in collaboration with human agents, replicating actual workflows orchestrated by Nebulock’s own experts. Their software works across any endpoint, identity, or cybersecurity solution (think CrowdStrike, SentinelOne, Okta, etc.). There’s no need to rip and replace to get immediate value.

Last, Nebulock leverages context-rich analysis to deliver an intelligent context layer for each threat. Instead of dumping bits into a data lake and hoping for insights, their solution can leverage multiple signals (identities, endpoints, and behavioral patterns) to continue learning. Customers can also provide real-time feedback, helping Nebulock improve its models and detection quality with each deployment. The result is a platform that’s accessible to junior analysts but powerful enough for the most senior detection engineers.

As of fall 2025, Nebulock protects endpoints and identity systems (desktops, servers, and login behavior) with a roadmap heading into 2026 to give full stack visibility across cloud and SaaS environments. This will enable insider threat detection and modern user & entity behavior analytics, supporting custom threat hunts across entire environments regardless of tooling.

Nebulock’s long-term vision is to become the always-on, always-learning threat hunting teammate for your team. A place where every detection question starts…and ends!

This talented team came out of stealth this summer, already in production with a double digit sized customer base, and ARR & deal size scaling month over month. Its customers encompass late stage VC backed technology companies, IPO candidates, financial institutions, and retail organizations with 1,000 – 5,000+ employees. Their SOC 2 audit is wrapping up shortly with more enterprise readiness features arriving shortly. They’re also building out their GTM team, starting with a Head of Marketing.

Whether you’ve got decades of security expertise or just beginning to explore detection engineering, Nebulock promises value out of the box. If you can write a prompt, Nebulock is here for you in Boston (and worldwide)!

Operators to Know:

• Eric Brown, Lead Detection Engineer
• Ron Cahlon, Senior Product Engineer
• Emily Dann, Head of Engineering 
• Joshua Hines, Principal Threat Detection Engineer
• Gabe Honigsberg, Head of Architecture & AI 
• Sam Nguyen, Senior Software Engineer
• Alexandre Sfez, Senior Machine Learning Engineer
• Justin Swisher, Principal Security Architect
• Connor Whelan, Principal Software Engineer
• Ryan Zec, Lead Frontend Software Engineer

My investigative powers continue to need work so apologies to the Nebulock team I know I missed many up & coming operators internally

Key Roles To Be Hired:

• Senior Software Engineer
• Lead AI Engineer
• More roles coming soon!

If I were interviewing here are some questions I’d ask:

• What are the biggest commercial & technical milestones Nebulock is chasing through end of year? 
• In a busy cybersecurity landscape, how does Nebulock differentiate its platform?
• What is the long term vision for the company? 
• What are the most important roles you’ll be looking to add in the next 3-6 months? Teams that need the most help?

We’re optimizing for readability here so to learn more about Nebulock you’ll have to D.Y.O.R. I’m excited to watch this team bring more security teams into the age of AI. All righteous citizens of the Internet applaud your efforts. See you around town!