Security OS for Software-Defined Vehicles
Uraeus builds ThreatZ — the AI-powered TARA, SBOM, and CSMS platform that turns automotive cybersecurity regulation (ISO/SAE 21434, UNECE R155, GB 44495) into audit-ready evidence for OEMs and Tier-1 suppliers.
Why Now?
Regulatory Mandate
UNECE R155 enforces cybersecurity management for all new vehicle types globally. ISO/SAE 21434 requirements cascade across the entire OEM and Tier-1 supply chain. China’s GB 44495 adds a third mandatory framework. Compliance is not optional — it is a prerequisite for vehicle type approval.
Expanding Attack Surface
Software-Defined Vehicles introduce high-performance computing, OTA updates, V2X connectivity, and cloud backends. The automotive attack surface is growing exponentially while existing tooling remains fragmented, manual, and disconnected from runtime operations.
Platform Consolidation
OEMs and suppliers currently juggle 3–5 siloed point solutions for TARA, SBOM, vulnerability tracking, compliance, and fleet monitoring. Uraeus consolidates all of these into a single security operating system — reducing cost, complexity, and integration burden.
Automotive Cybersecurity Market
The automotive cybersecurity market is projected to reach $9.7B by 2030 (Frost & Sullivan, McKinsey). Every new vehicle type requires a certified Cybersecurity Management System. With 250M+ connected vehicles on the road and three overlapping regulatory frameworks (R155, ISO/SAE 21434, GB 44495), demand is structural and non-discretionary.
Track Record & Trust
Founder-led from day one. Organic growth through engineering excellence and deep automotive domain expertise. Active production integrations with market-leading OEMs and Tier-1 suppliers including BMW, Vector, Foxconn, Brose, Preh, and Neusoft Reach.
Product Snapshot
ThreatZ
TARA, SBOM, vulnerability management, and compliance workflows. Knowledge graph-driven with full ISO/SAE 21434 and R155 traceability.
- Foundation, TARA, BOM & Supply Chain, Operations
- 3 tiers: Team, Professional, Enterprise
Revenue Model
SaaS Subscriptions
Three-tier subscription model (Team, Professional, Enterprise) with annual contracts. Per-user pricing scales with organization size. Net revenue retention driven by seat expansion and tier upgrades.
Professional Services
ISO/SAE 21434 gap assessments, TARA workshops, platform customization, and managed compliance services. Services act as a land-and-expand accelerator, converting into long-term SaaS contracts.
Module Expansion
Net revenue retention driven by module attach rates — customers land on TARA or SBOM and expand into Supply Chain, Operations, and Compliance modules on the same contract.
Competitive Moat
End-to-End CSMS Coverage
Only platform that unifies TARA, SBOM, vulnerability management, and CSMS audit evidence in a single AI-powered workflow. Competitors force teams to stitch together 3–5 point tools and rebuild evidence on every audit cycle.
- TARA → SBOM → V&T → CSMS Evidence
- Replaces 3–5 point solutions
Knowledge Graph Architecture
Neo4j-backed threat graph enables AI-powered threat propagation analysis, automated risk scoring, and contextual intelligence across the vehicle architecture — not just spreadsheet-based checklists.
- Proprietary automotive threat ontology
- AI-enriched with LLM reasoning
Multi-Regulation Support
Native support for ISO/SAE 21434, UNECE R155, and China’s GB 44495. No other platform addresses the Chinese standard, giving Uraeus exclusive access to the world’s largest automotive market.
- ISO/SAE 21434 + R155 + GB 44495
- Audit-ready evidence packages
Deep OEM Integration
Proven production deployments with BMW, Vector, Foxconn, and major Tier-1 suppliers. These reference customers create pull-through demand across the supply chain and validate the platform at scale.
- Production-grade integrations
- TISAX Level 3 assessed
Founder-Led Team
Deep domain expertise where automotive engineering meets cybersecurity. The founding team combines embedded systems, security research, and enterprise SaaS scaling experience from the German automotive ecosystem.
Automotive Cybersecurity Expertise
Former OEM and Tier-1 security architects with hands-on ISO/SAE 21434 and R155 audit experience. Direct participation in WP.29 working groups and industry standardization.
Enterprise SaaS Engineering
Full-stack platform engineering team building production-grade cloud infrastructure. AI/ML capabilities with LLM-powered threat analysis and knowledge graph technology.
Regensburg & Dover
Engineering hub in Regensburg, Germany — the heart of automotive R&D (BMW, Continental, Infineon). US entity in Dover, Delaware for global market access and investor structure.
Growth Strategy
Land with Compliance
Free trial and self-serve onboarding lower friction. Teams adopt ThreatZ for ISO/SAE 21434 TARA and compliance reporting — the most urgent pain point. Services engagements accelerate adoption at enterprise accounts.
Expand Across Modules
Once embedded, customers expand into SBOM management, vulnerability tracking, security testing, and operations modules. Each module adds incremental ARR on the same contract.
Supply Chain Pull-Through
OEM adoption creates mandatory tooling requirements for their Tier-1 and Tier-2 suppliers. A single OEM win cascades to 50–200 supplier accounts — built-in viral distribution with zero marginal acquisition cost.
Post-Production Evidence
ThreatZ extends from design-time TARA into post-production CSMS evidence and field incident handling — keeping customers anchored on the platform across the entire vehicle lifecycle.
Use of Funds
Product
Accelerate ThreatZ AI capabilities, deepen knowledge-graph integrations, and harden multi-tenant enterprise features.
Go-to-Market
Build sales team in EU and North America. Expand partner channel with consulting firms and tool integrators.
China Market
GB 44495 compliance support and local partnerships to capture the world’s largest automotive market.
Compliance & Trust
SOC 2 Type II certification, expanded TISAX scope, and ISO 27001 to unlock enterprise procurement.
Get Started
Get access to our investor brief, financial projections, and data room — or book a discovery call to meet the founding team.
Request Investor Brief
Fill in your details and we’ll send you our investor brief, product overview, and data room access.
Ready to invest in the future of automotive cybersecurity?
Uraeus is building the security operating system for software-defined vehicles. Join us.