Key Takeaways
- Shay Shwartz transitioned from teenage hacker to cybersecurity leader after being caught at 16, gaining experience in Israel’s elite defense units and later joining Axis, which was acquired by HPE.
- Two years ago he launched Ocean, an agentic email‑security startup focused on defending against AI‑driven phishing attacks.
- Ocean recently emerged from stealth with $28 million in funding led by Lightspeed Venture Partners, backed by notable angels including Wiz CEO Assaf Rappaport and Armis co‑founders Yevgeny Dibrov and Nadir Izrael.
- The platform uses a purpose‑built small language model to analyze the full context of each incoming email, evaluating sender intent and organizational relevance to catch sophisticated, AI‑generated spear‑phishing attempts.
- Ocean already processes billions of emails per month for customers such as Kayak, Kingston Technology, and Headspace, aiming to make every inbox a “safe place with high hygiene.”
Early Life and Hacker Beginnings
Shay Shwartz first dipped his toes into the world of cybersecurity as a teenager, earning money by conducting hacking activities. His early foray into illicit hacking ended when he was apprehended at age 16, a turning point that prompted him to reconsider how he could apply his technical talents. Rather than continue down a path of malicious activity, Shwartz chose to redirect his skills toward defense, laying the groundwork for a career focused on protecting organizations from cyber threats.
Professional Cybersecurity Experience
After his youthful encounter with law enforcement, Shwartz spent roughly a decade in high‑impact cybersecurity roles within Israel’s elite defense and intelligence establishments. His work included contributions to projects linked to the Iron Dome missile‑defense system, where he honed expertise in threat detection, incident response, and strategic security planning. This period also saw him join Axis, a startup that was later acquired by Hewlett Packard Enterprise (HPE), further expanding his exposure to enterprise‑scale security challenges.
Motivation to Found a Startup
Despite a successful tenure in established security positions, Shwartz harbored a persistent desire to build something of his own. The frustration of seeing traditional defenses struggle against evolving threats fueled his entrepreneurial ambition. Two years ago he acted on that impulse, co‑founding Ocean with Oran Moyal, who serves as the company’s Chief Technology Officer. Ocean was conceived specifically to confront the rising tide of AI‑powered email phishing, a problem Shwartz believed required a fundamentally new defensive approach.
Funding Round and Investor Support
Ocean recently emerged from stealth mode, announcing a $28 million financing round that underscores investor confidence in its vision. Lightspeed Venture Partners led the round, while Picture Capital and Cerca Partners participated as institutional backers. The round also attracted high‑profile angel investors, notably Assaf Rappaport—co‑founder and CEO of Wiz—and Yevgeny Dibrov and Nadir Izrael, the co‑founders of Armis, which was subsequently sold to ServiceNow for $7.75 billion. This blend of venture capital and seasoned security entrepreneurs signals strong market validation for Ocean’s technology.
The Evolving Phishing Landscape
Traditional email security vendors such as Proofpoint, Mimecast, and newer entrants like Abnormal Security have proven effective at detecting conventional phishing attempts. However, Shwartz argues that the advent of large language models (LLMs) has transformed the threat landscape. Where spear‑phishing once demanded extensive manual research and time investment, AI can now automate the gathering of public data, profile targets, and craft highly personalized fraudulent messages at scale. This automation dramatically increases the volume and sophistication of attacks, rendering legacy rule‑based or signature‑dependent defenses insufficient.
Ocean’s Agentic Approach
To counter AI‑driven phishing, Ocean developed an agentic email‑security platform that treats each incoming message as a context‑rich entity worthy of deep analysis. Rather than relying solely on known malicious indicators, the system evaluates the sender’s intent, the relationship between sender and recipient, and the broader organizational context in which the email arrives. By interpreting nuances such as tone, request legitimacy, and atypical behavior, Ocean aims to spot subtle impersonation attempts that would evade simpler filters.
Proprietary Small Language Model
Central to Ocean’s capability is a purpose‑built small language model (LLM) designed specifically for rapid email analysis. Shwartz emphasized that the model is lightweight enough to process high volumes of mail in real time while retaining the linguistic understanding needed to detect sophisticated social engineering cues. The model ingests the email’s headers, body, attachments, and any embedded links, then cross‑references this data with internal organizational graphs—such as employee roles, communication patterns, and approved vendors—to assess whether the message aligns with expected behavior or represents a potential threat.
Customer Adoption and Scale
Ocean’s technology is already in production, scanning billions of emails each month for a growing roster of clients. Notable early adopters include travel‑search platform Kayak, memory‑and‑storage manufacturer Kingston Technology, and meditation app Headspace. These organizations span diverse industries, illustrating the platform’s versatility in protecting sectors ranging from consumer technology to health and wellness. The sheer scale of email processed demonstrates Ocean’s ability to operate at enterprise levels without compromising latency or detection fidelity.
Vision for a Secure Inbox
Shwartz likens Ocean’s protective function to “having a guard in every door,” underscoring the goal of turning the inbox into a hygienic, safe environment where users can trust the authenticity of incoming communications. By continuously learning from each interaction and adapting to emerging AI‑generated tactics, Ocean aspires to maintain a high defensive posture even as attackers evolve their methods. The ultimate ambition is to reduce the success rate of phishing campaigns to negligible levels, thereby safeguarding corporate data, financial assets, and brand reputation.
Conclusion
From a teenage hacker to a cybersecurity veteran and now founder of an AI‑focused email‑security startup, Shay Shwartz’s journey reflects a broader shift in the industry: defending against threats that are themselves powered by artificial intelligence demands equally intelligent, adaptive solutions. Ocean’s combination of a specialized language model, contextual analysis, and strong backing from both venture capital and seasoned security leaders positions it as a notable contender in the next generation of email protection. As AI continues to reshape the cyber threat landscape, platforms like Ocean may become essential fixtures in the quest to keep inboxes clean and trustworthy.