What happens when cybersecurity training isn’t enough? French startup Riot, after reaching $10 million in annual revenue, has secured a $30 million Series B funding round to tackle this challenge. With a valuation now exceeding $170 million, the company is shifting focus from educating employees about threats to actively helping them strengthen their security habits.
Why is this shift necessary? Despite widespread awareness efforts, cyber incidents continue to rise, often due to overlooked security measures. A recent breach affecting 190 million Americans stemmed from simple password reuse. Riot believes that small, consistent security improvements—such as enabling multifactor authentication or adjusting privacy settings—can make a significant difference.
How will Riot make this happen? The company is introducing an Employee Security Posture Management platform, which assesses security practices and assigns a “Karma Score” to encourage safer behavior. By providing real-time nudges and gamified improvements, Riot aims to bridge the gap between awareness and action. With new funding, the company plans to expand globally and build more security tools, making employee protection a seamless part of everyday work and personal life.
