Our Take
Peleg correctly identifies the real problem (detection tools don't fix anything) but the TAM claim rests on internal estimates with no independent validation.
Why it matters
The security operations automation space is attracting capital and founder attention. Understanding how vendors size their addressable markets matters for evaluating both their growth thesis and the credibility of their positioning.
Do this week
Security leaders: map your internal detection-to-remediation workflow before evaluating any autonomous agent vendor, so you can assess whether their claims match your actual labor bottleneck.
Cyn.AI's Market Position and TAM Estimate
Alex Peleg, CEO and co-founder of Cyn.AI, positioned the company not as a traditional security vendor but as part of a broader shift toward synthetic intelligence in the enterprise. In an interview with CB Insights, Peleg defined Cyn.AI's market as the intersection of AI-driven security operations and exposure management.
The broader cybersecurity market is valued at $300B+ globally (company-reported). Within that, Cyn.AI estimates its serviceable addressable market (SAM) for autonomous security agents at $15B to $20B, growing at 25% annually (company-reported). The company frames its wedge around what it calls the automation gap: enterprises spend roughly $1T on detection tools but still require human labor to remediate findings.
The Automation Gap Is Real, But Sizing It Is Not
Peleg's diagnosis of the problem is sound. Detection-heavy security stacks generate alert fatigue and leave triage and response to human analysts, a known bottleneck in security operations. The focus on fixing that gap rather than adding more sensors is a sensible wedge for a startup.
The $15B–$20B TAM figure, however, lacks independent grounding. No third-party analyst, benchmark, or market research firm has published a figure for autonomous agent-led remediation markets; the number is internal to Cyn.AI. The $1T detection-spend claim is also company-attributed and difficult to verify independently. Without external validation or a clear methodology for the TAM model, the estimate serves as a useful internal planning tool but should not be treated as market evidence. Practitioners and investors should ask Peleg or his team for the underlying assumption set (customer willingness to pay, attach rates, addressable customer count, deal velocity) before treating the figure as strategy.
What to Ask When Evaluating Autonomous Security Agents
Before adopting any autonomous remediation tool, map your own detection-to-response workflow. Measure the time cost of triage and the percentage of detections that reach human action today. Compare that baseline against the vendor's claimed reduction in mean time to remediate. Ask for customer deployment data, not just company projections. Vendor-estimated TAMs are sales optimism; your actual improvement is the only metric that matters.