Pistachio —Empowering digital freedom of movement

At Pistachio, we envision a future where digital security is universally accessible, transforming the way individuals and organizations protect themselves in an increasingly connected world.

Our mission is to cultivate resilient security cultures globally by delivering automated, personalized cybersecurity awareness training and attack simulations that fit seamlessly into everyday workflows.

Leveraging AI-driven technology and innovative approaches, we empower users to anticipate, recognize, and respond to cyber threats with confidence and precision, pioneering a safer digital landscape for everyone.

We'll be honest—when we first heard about Pistachio (formerly CYBR), we were skeptical. Another cybersecurity awareness platform? Haven't we seen this movie before? But after digging into what this Oslo-based company actually does, we found ourselves genuinely impressed by their approach to solving one of cybersecurity's most persistent problems.

The Automation Angle That Actually Works

What caught our attention immediately was Pistachio's fully automated training system. Instead of forcing employees through generic, mind-numbing modules, they deliver scenario-based training directly to users' inboxes. It's clever—meeting people where they already are rather than asking them to log into yet another platform they'll forget exists.

The personalization aspect is where things get interesting. Their simulations adapt based on each user's role, location, and software usage. We've seen plenty of companies promise "personalized" training that amounts to swapping out a few company logos, but Pistachio seems to be doing something more sophisticated here.

Smart Timing and Positioning

The rebrand from CYBR to Pistachio in late 2023 came with a strategic shift toward AI-driven solutions—perfect timing given the current AI boom. With $10.57 million in funding and operations across 99 countries, they're clearly hitting some nerve in the market.

Their recent $7 million Series A round suggests investors are buying into the vision. That's significant capital for a company focused on what many consider the "soft side" of cybersecurity.

Where We See the Real Value

The phishing reporting tool is a nice touch that shows they understand the complete workflow. It's one thing to train people to spot threats; it's another to make reporting those threats seamless. The automatic forwarding to cybersecurity teams closes the loop nicely.

For organizations tired of checkbox compliance training that nobody actually learns from, Pistachio represents a more pragmatic approach. The University of St Andrews is among their customers, which speaks to their ability to work with institutions that have complex, varied user bases.

While we haven't stress-tested their platform ourselves, the combination of automation, personalization, and realistic simulations addresses real pain points we've heard from security teams across different industries. Sometimes the best solutions are the ones that make the hard stuff feel effortless.