Acumen Cyber has partnered with AttackIQ to provide continuous validation of cyber defences for UK organisations.
Under the agreement, Acumen Cyber will add AttackIQ's Continuous Threat Exposure Management platform to its security operations services. The arrangement is intended to help customers identify attack paths across their environments, test whether existing controls can stop them, and prioritise remediation of the exposures that create the greatest opportunity for attackers.
The deal reflects a broader shift in cyber security away from relying on vulnerability totals and severity scores alone. Security teams are under pressure to show which weaknesses can actually be exploited in practice and whether defensive tools are effective against the techniques attackers use.
Acumen Cyber said its engineers will use the platform to emulate adversary behaviour mapped to frameworks including MITRE ATT&CK. The work will include checking whether preventive and detective controls respond as expected, and examining how vulnerabilities, identity issues and configuration errors can combine into a viable route to critical systems.
AttackIQ's software correlates threat intelligence, vulnerabilities, identities, configurations, attack paths and control telemetry. This is intended to give organisations a clearer view of which combinations of weaknesses create a realistic path for an attacker, rather than presenting a long list of isolated issues.
Operational focus
For managed security providers and their customers, the partnership reflects growing demand for evidence that security spending is reducing exposure in measurable ways. Rather than relying on periodic testing or point-in-time snapshots, continuous validation is designed to show whether controls remain effective as environments and threats change.
AttackIQ also promotes what it calls a Threat Debt Index, a framework for tracking accumulated adversary opportunity across an organisation. That approach can show where attack paths have been removed, where new exposure has emerged, and where controls have reduced the chance of exploitation.
This focus on attacker opportunity rather than raw finding numbers is becoming more common across the market. Boards and security leaders increasingly want to know which weaknesses matter most to the business, how they connect to critical assets, and whether remediation is reducing the likelihood of a breach.
Carl Wright, Chief Commercial Officer at AttackIQ, outlined the rationale for the tie-up.
"Cybersecurity teams are overwhelmed with findings, yet many organisations still struggle to understand where they are truly exposed. Threat Debt changes the conversation from managing lists of vulnerabilities to understanding and reducing accumulated adversary opportunity. Acumen Cyber's engineering-led approach makes them an ideal partner to help customers operationalise CTEM in a way that continuously validates defences, prioritises what matters most, and proves measurable reduction in attacker opportunity over time," said Wright.
Acumen Cyber presents the agreement as an extension of its model for round-the-clock security operations. The Glasgow-based company said effective defence depends on repeated testing against attacker behaviour, rather than monitoring alone.
Market pressure
The partnership also comes as the cyber security industry grapples with the impact of artificial intelligence on both sides of the threat landscape. Companies face a faster cycle in which exposures can be identified and exploited more quickly, increasing pressure to distinguish urgent risks from background noise.
In that context, continuous testing has gained traction as a way to bridge the gap between vulnerability management and security operations. By linking threat intelligence to internal control testing, providers aim to help customers decide which fixes should take priority and which controls are already mitigating risk.
For AttackIQ, the partnership extends its reach through a service provider that can embed the technology into day-to-day customer operations. For Acumen Cyber, it adds a platform to support more regular validation of whether security controls are performing as intended.
Mark Robertson, Chief Executive Officer at Acumen Cyber, said the emphasis should be on outcomes rather than activity.
"Most organisations still operate security programs built around activity metrics instead of validated outcomes. The reality is that adversaries exploit paths, not isolated findings. Our partnership with AttackIQ allows us to help customers continuously identify where attacker opportunity exists, validate whether defensive controls actually work under real-world conditions, and systematically reduce Threat Debt before those paths can be exploited," said Robertson.