September 2020 Cyber Funding & M&A Brief

Published by Pinpoint Search Group — the cybersecurity executive search firm that tracks every disclosed vendor funding round and acquisition in the sector.

At a glance

26 transactions
tracked across cybersecurity vendors in September 2020
$600.5M
in disclosed funding capital
17 funding rounds
— of which 8 were Seed or Series A
9 acquisitions — anchored by Ivanti's $872M deal for MobileIron

Get the full September 2020 dataset — every named company, round, investor, and segment.

What September told us

September 2020 ran twenty-six transactions across seventeen funded rounds and nine acquisitions, with $600.5M in disclosed funding and $968M in disclosed M&A. The M&A column was anchored by Ivanti's $872M acquisition of MobileIron in Endpoint — the largest Endpoint-segment strategic acquisition the workbook tracks through September 2020. CrowdStrike's $96M pickup of Preempt Security in Zero Trust followed, the workbook's first Zero Trust-segment strategic acquisition. The two priced M&A events combined for $968M in disclosed value across the same calendar month, a step-up over August's $1.04B reading on transaction count but a closer match on dollar concentration.

Funded activity was led by Snyk's $200M Series D+ in AppSec, the largest AppSec-segment funded round the workbook has tracked through this point. Snyk also closed an acquisition inside the same month — an undisclosed-value pickup of DeepCode in AppSec — placing a single named cyber vendor on both the funded and the acquiring sides of the workbook in a single calendar month for the first time in the data set. McAfee Enterprise's $100M IPO in Endpoint was the second IPO event in the workbook after Sumo Logic's August event, and McAfee Enterprise IPOs in the same month that Ivanti acquires MobileIron, putting two Endpoint-segment transactions of distinct stage type inside a single month. Devo at $60M Series D+ in Analytics, Axis Security at $32M Series B in SASE, and Medigate at $30M Series B in IoT rounded out the named cohort.

Firemon's $40M financing in Network Security is the workbook's first Network Security-segment transaction, bringing a new classification into the Pinpoint taxonomy this month. The segment is added because Firemon's positioning — security-policy management for firewalls and network infrastructure — does not fit cleanly into the existing Detection/Response or Vulnerability classifications and represents a distinct vendor category the data set had not yet tracked.

Stage and segment breakdown

September 2020 Stage & Segment Breakdown
September 2020 Stage & Segment Breakdown
StageCount
Seed2
Series A6
Series B3
Series C2
Series D+2
Acquisition9
Top segmentsTransactions
AppSec3
Endpoint3
Vulnerability3
IoT2
Zero Trust2
Detection/Response2
New segment in the taxonomy this month: "Network Security" enters the Pinpoint segment taxonomy for the first time in September 2020. Emergent categories are added when they first appear in vendor positioning; this is the first workbook event in this classification.

Two deals worth your attention

Ivanti's $872M acquisition of MobileIron in Endpoint. Ivanti acquired MobileIron at $872M in September, the largest disclosed M&A event of the month and the largest Endpoint-segment strategic acquisition the workbook tracks through this point. MobileIron had traded publicly since 2014 in the mobile-device-management category; Ivanti's purchase folded that capability into a broader unified endpoint management platform alongside Ivanti's pre-existing enterprise software portfolio. The deal extends the workbook's pattern of strategic cyber acquisitions clustering inside distinct segments month over month — Detection/Response and OT/ICS in June, OT/ICS again in July, API and Forensics in August, Endpoint and Zero Trust in September — with seven distinct segment classifications drawing strategic-buyer M&A in the workbook's first five months of coverage.

Snyk — $200M Series D+ in AppSec. Snyk raised $200M Series D+ for its developer-security platform, the largest funded event of September and the largest AppSec-segment funded round the workbook tracks through this point. The round confirmed that developer-first application security — vulnerability scanning, dependency analysis, and container image inspection embedded in the developer workflow — was drawing late-stage capital at nine-figure scale early in the workbook's coverage.

The other 24 transactions are in the data feed — including the 9 acquisitions whose values never hit the press. Get September's details and more →

Methodology

Every transaction in this brief was sourced from a primary public report and dedupe-checked against the master Pinpoint funding workbook, which now contains ~2,600 transactions back to May 2020. Funding totals reflect disclosed capital only; acquisition values are included where publicly available.

Each deal is classified against Pinpoint's normalized cybersecurity segment taxonomy — read directly off what the company says they protect and mapped to one of the canonical segments. The taxonomy has been maintained continuously since 2020 and currently covers roughly 55 segments. Identity, Data, Detection / Response, and Threat Intel have been tracked from the first month of the series; AppSec and GRC entered the following month; emergent categories (AI/LLM, Supply Chain, Quantum, Browser) are added when they first appear in vendor positioning. That normalization layer is what makes multi-year, cross-segment comparisons possible against an otherwise inconsistent vocabulary in the broader market.

About Pinpoint Search Group

Cybersecurity innovators work with Pinpoint Search Group to identify, attract, and land professionals that enable maturation, scale, and successful outcomes. As start-ups continue raising millions in funding and established vendors make acquisitions to round out their offerings, Pinpoint Search Group is keeping track.

Get the underlying data

The narrative above is the free version. The paid Pinpoint Cyber Funding Data feed gives you every named transaction, every disclosed investor, every segment classification — exportable, filterable, and updated as the deals close.

Subscribe to the data feed

Published 2020-10-05 · last updated 2026-06-25. The narrative and aggregate figures above are free; the full per-deal dataset is available to subscribers.