By Karim Gillani & Khrystyna Penyk, September 22, 2025 

Most people don’t want to think about cybersecurity or compliance, because it’s boring and complicated, and usually reserved for the experts who are paid to think about it for us. In reality, though, many companies don’t have that expert on staff to think about it for them, so they’re left with a big gaping vulnerability that’s waiting to be exploited. For those that don’t have the resources, time, headspace or motivation to think about how bad guys are going to attack them, there’s now a solution.

We are excited to announce our investment in Mycroft, a Toronto-based company that has emerged from stealth with a $3.5M seed round, to provide an AI-driven Security and Compliance Officer to take care of all your internal monitoring, data and cybersecurity needs. Luge led the financing, with participation from Brightspark Ventures, Graphite Ventures, and existing investors Ripple Ventures, Developer Capital, Antler, and BoxOne Ventures.

Securing your business has become a game of mashing up a bunch of third-party tools, each with a specific focus. Companies stitch together SOC 2 guides, vulnerability scanners, mobile device managers, and access review systems, each with its own setup, integrations, and operational debt. The result is a patchwork that drains resources, creates blind spots, and slows momentum.

Mycroft replaces this complexity with a single agentic AI platform that unifies compliance, cybersecurity, and device management into one operating system. Instead of juggling six or ten different products, companies can automate audit readiness, scan their cloud infrastructure and codebase, secure endpoints, and manage security workflows all in one place. At the heart of the platform is a no-code AI assistant that empowers security teams to build, customize, and deploy tools in minutes, without needing engineering resources. What once took months of manual effort can now be done in weeks, with less overhead and far greater confidence.

Imagine an employee’s laptop gets stolen. Within seconds, Mycroft’s AI agent kicks into gear: locking the device, flagging compliance workflows, notifying stakeholders, and generating an incident report. What was once a manual effort for the data security team to run through a playbook, has transformed into an agent doing all the work automatically in seconds.

It’s not just one product. It’s a security agent that feels like part of your team. 

We were drawn to Mycroft because of the strength of its team and the urgency of the problem. CEO Mike Kim has spent more than a decade building security and compliance programs at companies like PartnerStack and FreshBooks, and he knows firsthand how fragmented today’s solutions are. He is joined by co-founders Jan Jedrasik and Jon Mendes, who bring deep engineering and product expertise. Together they have the technical vision and practical experience needed to rethink security for the AI era.

The stakes are high. Global cybersecurity spend is expected to surpass $500B by 2030, yet startups face a growing shortage of security talent and an ever-expanding set of risks. Mycroft is stepping into this gap with a modern, unified platform that helps lean teams protect what they are building from day one. We are excited to support Mike, Jan, Jon, and the entire Mycroft team as they scale their solution and redefine how the next generation of companies approach security and compliance. Security isn’t just a checkbox anymore, it’s infrastructure. And Mycroft is the first platform that lets you build it the way you build software.

Let’s go!

If you’re building in fintech at the early-stage, we’d love to hear from you! You can contact us here.