Connect with us

Hi, what are you looking for?


Application Security

KPMG Tackles AI Security With Cranium Spinout

Consulting giant KPMG spins out a startup building technology to secure AI (artificial intelligence) applications and deployments.

ChatGPT ban Italy

Consulting giant KPMG on Wednesday announced the spinout of a venture-backed startup building technology to secure AI (artificial intelligence) applications and deployments.

The new startup, called Cranium, emerged from the company’s KPMG Studio incubator with an undisclosed minority stake investment from SYN Ventures.

The startup is being run by former Prevalent chief executive Jonathan Dambrot and has ambitious plans to be a big player in a future where AI models — and the data flowing through them — need to be secured.

Cranium says it is building “an end-to-end AI security and trust platform” capable of mapping AI pipelines, validating security, and monitoring for adversarial threats. The company said the technology integrates with existing environments without interrupting the way organizations work to test, train, and deploy AI models.

Cranium is also pitching a playbook that security teams can use alongside the software to protect AI systems and adhere to existing U.S. and EU regulatory standards.

The spinout comes alongside the heady launch of OpenAI’s ChatGPT app and a race among software providers big and small to embrace the powerful capabilities of LLM (language learning models) and generative AI.

Software giant Microsoft has debuted an AI-powered security analysis tool to automate incident response and threat hunting tasks, showcasing a security use-case generative AI chatbots.

Advertisement. Scroll to continue reading.

The new tool, called Microsoft Security Copilot, is powered by OpenAI’s newest GPT-4 model and will be trained on data from Redmond’s massive trove of telemetry signals from enterprise deployments and Windows endpoints.

Cranium’s Dambrot believes the dramatic speed of generative AI adoption will push major regulatory bodies to set guidelines for organizations deploying AI systems and he wants his new company to find revenues in that ecosystem. 

“Cranium brings visibility, trust, and a new level of security to cybersecurity and data science teams when it comes to the entire AI ecosystem of any organization,” Dambrot said. 

Related: Microsoft Puts ChatGPT to Work on Automating Cybersecurity

Related: ChatGPT Data Breach Confirmed; Vulnerable Component Exploted

Related: ChatGPT Integrated Into Security Products as Industry Tests Capabilities

Related: ChatGPT and the Growing Threat of Bring Your Own AI to the SOC

Written By

Ryan Naraine is Editor-at-Large at SecurityWeek and host of the popular Security Conversations podcast series. He is a security community engagement expert who has built programs at major global brands, including Intel Corp., Bishop Fox and GReAT. Ryan is a founding-director of the Security Tinkerers non-profit, an advisor to early-stage entrepreneurs, and a regular speaker at security conferences around the world.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cybersecurity Funding

SecurityWeek investigates how political/economic conditions will affect venture capital funding for cybersecurity firms during 2023.

Artificial Intelligence

The CRYSTALS-Kyber public-key encryption and key encapsulation mechanism recommended by NIST for post-quantum cryptography has been broken using AI combined with side channel attacks.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


Thirty-five cybersecurity-related M&A deals were announced in February 2023


Forty cybersecurity-related M&A deals were announced in January 2023.


Seventeen cybersecurity-related M&A deals were announced in the first half of February 2023.

Artificial Intelligence

ChatGPT is increasingly integrated into cybersecurity products and services as the industry is testing its capabilities and limitations.