Swiss cybersecurity company Saporo, the graph-native identity security specialist, has secured €7m in fresh investment as it accelerates its expansion across Europe and into the US.
The Series A round was led by TIN Capital, with participation from G+D Ventures, CDP Venture Capital through its Corporate Partners I – ServiceTech fund, XAnge, Lightbird VC and Session VC. Each backer is set to support Saporo’s market development efforts, from strengthening its network in Northern Europe to helping pursue German and Italian opportunities. Advisory firm Trachet acted as the fundraising advisor.
Saporo, which enables security teams to view enterprise identity landscapes in the same way attackers assess them, focuses on reducing the risk of identity-driven intrusions. Its platform maps misconfigurations and excessive access rights to pinpoint where privilege escalation may occur, computing paths attackers could exploit and recommending small changes that deliver major risk reduction.
The company plans to use the capital to broaden remediation workflows, extend hybrid identity coverage beyond Microsoft Active Directory, Entra ID and AWS to Google Workspace/Cloud and GitHub, and reinforce its presence across France, Switzerland, Benelux, Germany and Italy. Selective US expansion is also on the roadmap throughout 2026. Saporo is further scaling its R&D, sales and marketing teams while benefiting from the productivity gains of AI adoption internally.
The firm has seen 100% year-on-year growth since its last round and was named Switzerland’s fastest-growing startup in the Sifted 250. Saporo’s proposition addresses a pressing market need, with identity-based intrusions now reportedly driving most cyber incidents. Analysts believe stronger identity controls could disrupt a majority of successful breaches, yet many organisations struggle to manage permission sprawl and configuration weaknesses across complex hybrid environments.
Large enterprises may face hundreds of millions of potential attack paths, a scale Saporo claims no rival can match. Clients typically eliminate up to 80% of risky identity paths within their first year, and ongoing monitoring prevents environments from drifting back into unsafe states. Adoption is strong across regulated sectors including financial services, healthcare, government, manufacturing and technology, where identity complexity and regulatory demand are highest.
Saporo CEO and co-founder Olivier Eyries said, “The identity security market is deceptive. ITDR and access graphs create a false sense of security, often not fixing systemic risk and not giving the real attacker’s perspective. In large enterprises, identity graphs routinely surface over a billion attack paths. Fixing them one by one is effectively a century-long project. Our customers use Saporo to remove around eighty percent of those paths within the first year, which delivers faster risk reduction and far lower remediation effort. With this pan-European investor group, we are scaling to meet demand from large enterprise and regulated sectors across Europe, while building a measured footprint in the US.”
Saporo co-founder and chief product officer Guillaume Eyries said, “Attackers don’t break in – they log in. The question isn’t whether a single identity gets compromised, but what it can do next. Saporo gives defenders the attacker’s view of their hybrid identity fabric so they can remove risky paths before an incident. This round lets us double down on automation and broaden multi-cloud and developer-ecosystem coverage to match how real-world attacks traverse Microsoft, Google, AWS, Okta and GitHub.”
Copyright © 2025 FinTech Global
