Check Point to acquire Veriti Cybersecurity for threat exposure

Check Point Software Technologies has reached a definitive agreement to acquire Veriti Cybersecurity, a platform focused on fully automated, pre-emptive threat exposure and mitigation across multi-vendor environments.

The move comes as organisations face increasing cyberattacks, particularly driven by artificial intelligence and the growth of hyperconnected IT networks, making it more challenging to manage cyber risk and reduce the attack surface.

Nadav Zafrir, Chief Executive Officer at Check Point Software Technologies, said: "The acquisition of Veriti marks a significant step toward realising our hybrid mesh security vision. It strengthens the Infinity Platform's open-garden approach, enabling seamless, multi-vendor remediation across the entire security stack. With Veriti, we're advancing preemptive, prevention-first security – an imperative in today's AI-driven threat landscape."

Veriti, established in 2021, introduced the Preemptive Exposure Management (PEM) category, developing technology to actively discover and remediate risks within complex environments where security controls from multiple vendors may be deployed in parallel.

The platform continuously analyses logs, threat indicators, and vulnerabilities across the IT ecosystem, providing organisations with real-time visibility. Integrating with more than 70 security vendors, Veriti enables security teams to detect and respond to threats without delay, while seeking to eliminate gaps that might arise from tools working in isolation.

Veriti's main capabilities include automated, cross-vendor virtual patching, where it applies protective measures across various third-party tools based on threat data from platforms such as CrowdStrike, Tenable, and Rapid7. This process reduces time to patch from weeks to minutes, aiming to close exposure windows quickly and prevent attacks.

Another feature of Veriti is its real-time threat intelligence enforcement, allowing it to verify threat indicators and coordinate the application of protections across firewalls, endpoints, web application firewalls, and cloud platforms amongst different vendors' products.

In addition, Veriti is built on a fully API-based architecture, allowing integration into existing IT environments without the need for agents or operational disruption, which is designed to make the adoption process straightforward for organisations using a diverse array of security solutions.

Veriti also extends support for partners by ingesting exposure data from cloud security providers such as Wiz. This allows for the automatic remediation of vulnerabilities found in cloud servers or applications, using Check Point or third-party gateways, further aligning with Check Point's strategic relationships.

An important aspect of Veriti's approach is safe, context-aware remediation, seeking to apply security measures tailored to each organisation's specific environment, exposures, and existing protections in an effort to avoid operational disruption.

Adi Ikan, Chief Executive Officer and co-founder of Veriti, commented: "Security teams today suffer from a lack of action: exposures aren't just detected, they're compounding, hiding in the gaps between tools, teams, and timelines. We founded Veriti to help organisations not just see risk, but remediate it safely, at scale, and most importantly - without disruption. By joining Check Point, we're accelerating that mission. Together, we'll help organisations reduce their exposure faster through the security tools they already trust."

After the acquisition is completed, Veriti's technology will become part of the Check Point Infinity Platform under the Threat Exposure and Risk Management portfolio. It will work alongside Check Point's recently introduced External Risk Management (ERM) solution to manage both external and internal risk across the entire attack surface.

The completion of the transaction remains subject to customary closing conditions and is expected by the end of the second quarter of 2025.