TIN Capital leads €7M Series A in Saporo

Backing fastest-growing Swiss startup to scale its graph-native identity security platform

​Lausanne, Switzerland (November 27, 2025) – Swiss Cybersecurity startup, Saporo - the graph-native identity security company that lets defenders see enterprise environments the way attackers do - has raised €7 million in Series A funding. The round was led by TIN Capital, with participation from G+D Ventures, CDP Venture Capital, XAnge, Lightbird VC and Session VC. Beyond capital, each investor will play a strategic role in Saporo’s growth: TIN Capital will support the expansion of its network and business in Northern Europe, G+D Ventures will facilitate market development in Germany, and CDP Venture Capital will drive opportunities in Italy. M&A & Fundraising advisory, Trachet, advised Saporo on the transaction.

​

Saporo has recorded 100% year-on-year growth since its previous round and was recently recognised as Switzerland’s fastest-growing startup in the Sifted 250. The market leader in hybrid Identity Security Posture Management (ISPM) will use the capital to expand one-click and assisted remediation workflows, extend hybrid identity coverage beyond Microsoft Active Directory, Entra ID and AWS to Google Workspace/Cloud and GitHub, and strengthen its presence in France, Switzerland, Benelux, Germany, and Italy, with selective US expansion.

​

The company currently employs people across Switzerland, France and the US. Saporo will scale its R&D, sales and marketing teams throughout 2026, supported by engineering productivity gains from internal AI adoption that have increased output by 30-40%.​

​

Identity-based attacks now drive roughly 80% of cyber incidents, and more than 90% of successful breaches stem from gaps in access segmentation across Active Directory, Entra ID, AWS, Okta and other identity systems. Analysts estimate that 85% of breaches could be disrupted through stronger identity controls, yet most organisations still struggle with the scale of over-permissions, misconfigurations and shadow admins - 40% of which can be exploited in a single step.

​

Saporo gives defenders the attacker’s view of their hybrid identity landscape. The platform pinpoints the relationships, misconfigurations and excessive permissions that enable lateral movement and privilege escalation. Since attackers need only one viable route, Saporo computes all identity attack paths and prioritises the smallest set of changes that deliver the greatest risk reduction.

​

Large enterprises can have hundreds of millions of potential attack paths, and no other solution in the market can scan and prioritize risk at this scale. Saporo customers typically eliminate up to 80% of risky paths in the first year by addressing the highest-impact issues identified by the platform, and the value compounds over time. By continuously monitoring identity and configuration changes in real time, enforcing long-term segregation of duties, and helping teams stay aligned with hardening frameworks such as ANSSI and MITRE, Saporo prevents environments from drifting back into unsafe states. This ongoing resilience is driving strong adoption across financial services, healthcare, government, manufacturing and technology with over 140% customer retention, where hybrid identity complexity and regulatory pressure are highest.

​

Powered by graph databases and graph theory, Saporo analyses paths across on-prem AD, cloud directories and machine identities. It surfaces the most dangerous paths to critical assets and the minimal configuration changes needed to break most of them - work that is effectively impossible to perform manually.

 

“The identity security market is deceptive," said Olivier Eyries, CEO and co-founder of Saporo. "ITDR and access graphs create a false sense of security, often not fixing systemic risk and not giving the real attacker's perspective. In large enterprises, identity graphs routinely surface over a billion attack paths. Fixing them one by one is effectively a century-long project. Our customers use Saporo to remove around eighty percent of those paths within the first year, which delivers faster risk reduction and far lower remediation effort. With this pan-European investor group, we are scaling to meet demand from large enterprise and regulated sectors across Europe, while building a measured footprint in the US."

​

Guillaume Eyries, CPO and co-founder added that "Attackers don’t break in - they log in. The question isn’t whether a single identity gets compromised, but what it can do next. Saporo gives defenders the attacker’s view of their hybrid identity fabric so they can remove risky paths before an incident. This round lets us double down on automation and broaden multi-cloud and developer-ecosystem coverage to match how real-world attacks traverse Microsoft, Google, AWS, Okta and GitHub.”

​​

“Saporo is redefining the future of identity security," said Roel Reijnen, Partner at TIN Capital. "The team’s talent, ambition, and ability to execute are simply exceptional. Their technology outperforms every competitor we’ve seen – delivering real, hard risk reduction instead of adding dashboards and complexity. This is the strongest European platform in the market, and together with CDP Venture Capital, G+D Ventures and XAnge, we’re backing Saporo to become a clear ISPM category leader.”

​​

<<   END OF PRESS RELEASE   >>  Read more Capital news here​​​​​