In this article

Introducing Surf AI

Yair Grindlinger|March 17, 2026

For most of my career in cybersecurity, I’ve watched the same dynamic play out inside even the most sophisticated enterprises.

Security teams work incredibly hard to gain visibility into their environments. They deploy tools, tune alerts, run assessments, and build processes to identify risk across endless systems, cloud infrastructure, data platforms, and applications. They surface findings, prioritize what matters most, and move quickly on the highest-risk issues.

And the rest remain.

The long tail of security risk has always existed. Access drift, toxic permission combinations, misconfigurations, orphaned assets, data exposure – thousands of small issues that accumulate over time. Most organizations handle the top cases well and hope the remaining ones don’t accumulate to something bigger.

Early in my career, in an effort to be perceived as proactive in one of my first jobs, I preemptively conducted a security assessment on an internal system and uncovered a significant number of issues. I escalated the findings to senior leadership, believing that visibility would naturally drive resolution. Leadership acted immediately. But I wasn’t brought back to continue the long-tail of work.

That experience shaped how I think about security to this day. It taught me that identifying problems is only part of the equation. Organizations struggle not because they lack awareness, but because they lack a sustainable operating model for continuously turning findings into outcomes.

For decades there has been no practical way for humans alone to continuously execute across the full surface area of a modern enterprise. Surfacing risk without a structured way to address it at scale creates friction. Teams become overwhelmed. Ownership becomes unclear. Priorities shift. The system absorbs only what it has the capacity to absorb.

We could measure risk. We just couldn’t systematically reduce it.

Why This Moment Is Different

The reality is that the cybersecurity environment is ever-changing – but we’re at a key inflection point right now.

AI is accelerating the speed and skill of attackers, and what once sat in the long tail for months can now become material much faster. The backlog is no longer benign.

At the same time, AI also presents an opportunity. For the first time, we have technology capable of coordinating context and action across complex systems in a structured and controlled way.

Instead of generating more tickets, we can prioritize positive outcomes.
Instead of relying on manual handoffs, we can activate agentic execution.
Instead of accepting the long tail as inevitable, we can reduce it continuously.

That belief is what led us to build Surf AI.

What We’re Building at Surf

Our mission at Surf is to encourage proactive security hygiene at the enterprise level – all while taking the pressure off security teams by operationalizing security programs with AI. Surf is built around the simple principle that security context should drive action.

Our platform ingests information (or context) across identity, cloud, security, data, HR, and IT systems to create a living context graph – a real-time representation of assets, ownership, permissions, dependencies, and business impact. This connected model allows teams to understand not only what is or could be wrong, but why it matters and what will be affected before any change is made.

From there, Surf enables teams to identify outcomes – reducing risky access, eliminating toxic combinations, closing posture gaps – and translates those goals into structured execution plans.

This is not autonomous software you forget is there. It is accountability and controlled assessment paired with agentic execution and human controls that makes security teams more efficient.

A New Operating Model for the Future

Security is not a one-time cleanup effort, and operations have been constrained by human bandwidth and fragmented systems for too long. That constraint shaped how we’ve built tools to date – optimized for visibility, limited by execution, and acting in a dynamic environment that very rarely stands still.

Surf is designed to address that reality exactly.

We’re ready to break the model with a future of security operations that is agentic, structured, and controlled. That future is powered by Surf.

Yair Grindlinger is the CEO and Co-Founder of Surf AI, a serial entrepreneur with over two decades in cybersecurity and the former SVP of Cloud Strategy at Proofpoint.