The information security industry in Massachusetts plays a crucial role in protecting organizations from cyber threats and breaches. It consists of companies ranging from startups to large firms focusing on various aspects of security, including data protection, threat intelligence, and compliance solutions. As technology evolves, so does the industry, with trends such as AI-driven security tools and increasing cloud security solutions gaining traction. With the surge in cyberattacks, companies are continually innovating to safeguard digital assets, making this sector increasingly important and relevant in today’s interconnected world.

This list features a mix of 21 information security companies operating in Massachusetts, varying significantly in size and specialization. Some firms, like RSA Security, have a history dating back to 1982, while others, such as Onapsis, were established more recently in 2009. These companies provide specialized services, from identity management and mobile security to threat detection, reflecting the growing need for comprehensive cybersecurity solutions amid rising threats across various sectors.

Continue reading to explore the top information security companies in Massachusetts.

Top 21 Information Security Companies in Massachusetts

1. RSA Security

• Website: rsa.com
• Ownership type: Private Equity
• Headquarters: Bedford, Massachusetts, United States (USA)
• Latest funding: March 2021
• Founded year: 1982
• Headcount: 1001-5000
• LinkedIn: rsa-the-security-division-of-dell-technologies

RSA Security LLC, based in Bedford, Massachusetts, is a cybersecurity firm that specializes in identity security solutions. Founded in 1982, RSA has built a reputation for providing robust products that help organizations manage access and secure identities against cyber threats. Their offerings include ID Plus, which provides comprehensive authentication and access capabilities across cloud, hybrid, and on-premises environments, and SecurID, which focuses on on-premises access and identity management. RSA's solutions are particularly relevant for sectors such as government and financial services, where compliance and risk management are critical. The company has a significant presence in the market, with over 9,000 customers relying on its technology to protect sensitive information and maintain security protocols. RSA also engages in partnerships to enhance its offerings, ensuring that its solutions remain effective against evolving cyber threats.

2. Lookout

• Website: lookout.com
• Ownership type: Private Equity
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 40%, India 33%, Canada 12%, Other 14%
• Latest funding: Other (Debt), $150.0M, June 2022
• Founded year: 2007
• Headcount: 201-500
• LinkedIn: lookout

Lookout, founded in 2007 and based in Boston, Massachusetts, is a cybersecurity firm that specializes in mobile and cloud security solutions. The company offers a range of products designed to protect data and devices from advanced threats, catering primarily to businesses across various sectors, including healthcare and finance. Their services include mobile endpoint security, data loss prevention, and threat intelligence, all delivered through a Software as a Service (SaaS) model. Lookout has established itself as a key player in the cybersecurity industry, particularly in the mobile security space, where they provide solutions that help organizations safeguard their data against evolving threats. The company has also received significant funding, with a recent round of $150 million in June 2022, which underscores its growth trajectory and the confidence investors have in its strategic direction. Lookout's commitment to innovation is evident in its use of artificial intelligence and machine learning to enhance its security offerings, making it a relevant choice for organizations looking to bolster their cybersecurity posture.

3. Q1 Labs (IBM Security)

• Website: securityintelligence.com
• Ownership type: Private
• Headquarters: Waltham, Massachusetts, United States (USA)
• Employee distribution: Canada 57%, United Kingdom (UK) 24%, Italy 10%, Other 10%
• Founded year: 2001
• Headcount: 10001+
• LinkedIn: q1-labs

Q1 Labs, a part of IBM Security, is a cybersecurity firm based in Waltham, Massachusetts. Founded in 2001, the company specializes in security intelligence, offering analysis and insights on a wide range of security topics. Their expertise includes threat research, incident response, and data protection, catering to businesses across multiple sectors such as banking, healthcare, and energy. Q1 Labs plays a crucial role in helping organizations navigate the complexities of cybersecurity, providing them with the tools and knowledge necessary to manage risks effectively. Their content, including articles and podcasts, reflects a commitment to educating the industry on current threats and best practices. Although there is no recent funding reported, their integration with IBM Security enhances their capabilities and reach in the cybersecurity market.

4. Onapsis

• Website: onapsis.com
• Ownership type: Private Equity
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: Romania 30%, United States (USA) 30%, Germany 18%, Other 23%
• Latest funding: Series D, $55.0M, October 2020
• Founded year: 2009
• Headcount: 201-500
• LinkedIn: onapsis

Onapsis, founded in 2009 and based in Boston, Massachusetts, is a cybersecurity company that focuses on securing SAP and Oracle applications. With a workforce of approximately 325 employees, the firm provides a range of services including vulnerability management, incident response, and compliance solutions tailored to industries such as financial services and healthcare. Onapsis has established itself as a key player in the cybersecurity space, particularly through its Onapsis Research Labs, which conducts threat research and provides insights into vulnerabilities affecting business applications. The company has attracted significant investment, with a Series D funding round raising $55 million in 2020, reflecting strong market confidence in its offerings. Onapsis is recognized for its expertise in application security and has been endorsed by SAP, further enhancing its credibility in the industry.

5. ReversingLabs

• Website: reversinglabs.com
• Ownership type: Private Equity
• Headquarters: Cambridge, Massachusetts, United States (USA)
• Employee distribution: Croatia 60%, United States (USA) 35%, United Kingdom (UK) 3%, Other 2%
• Latest funding: Series B, $56.0M, August 2021
• Founded year: 2009
• Headcount: 201-500
• LinkedIn: reversinglabs

ReversingLabs, established in 2009 and headquartered in Cambridge, Massachusetts, is a cybersecurity firm that specializes in software supply chain security and threat intelligence. The company offers solutions designed to identify malware and vulnerabilities in software components, with its flagship product, Spectra Assure, providing comprehensive analysis of software risks. ReversingLabs serves a variety of sectors, including government and education, helping organizations mitigate risks associated with software deployment. The company has a significant presence in the cybersecurity industry, evidenced by its recent Series B funding round, which raised $56 million in August 2021. This funding reflects the growing importance of software supply chain security and the company's commitment to addressing these challenges. With a workforce of over 330 employees, ReversingLabs continues to innovate and expand its offerings, making it a relevant player in the information security space.

6. Eci

• Website: eci.com
• Ownership type: Private
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 38%, India 31%, United Kingdom (UK) 14%, Other 17%
• Latest funding: June 2018
• Founded year: 1995
• Headcount: 501-1000
• LinkedIn: eze-castle-integration

Eci, founded in 1995 and based in Boston, Massachusetts, is a private technology and services firm with a workforce of approximately 900 employees. The company specializes in managed solutions, cybersecurity, and data management, primarily serving clients in the financial services and healthcare industries. Eci's approach is consultative, leveraging their expertise to provide tailored services that enhance operational efficiency and ensure compliance with industry regulations. Their cybersecurity offerings include managed XDR, dark web monitoring, and vulnerability assessments, which are critical for protecting sensitive information in highly regulated sectors. Eci has built a reputation for delivering innovative solutions that address the unique challenges faced by their clients, particularly in the context of compliance with regulations such as SEC, GDPR, and HIPAA. With a global presence and a strong focus on client needs, Eci continues to play a significant role in the information security landscape.

7. CSO Online

• Website: csoonline.com
• Ownership type: Private
• Headquarters: Needham, Massachusetts, United States (USA)
• Employee distribution: Ireland 50%, United States (USA) 50%
• Founded year: 2002
• Headcount: 11-50
• LinkedIn: csoonline

CSO Online, founded in 2002 and based in Needham, Massachusetts, is a cybersecurity news platform that serves as a vital resource for security professionals and organizations. The site offers a wealth of information, including news articles, blogs, podcasts, and educational resources focused on security practices and risk management. With a dedicated team of writers and experts, CSO Online covers a wide array of topics such as network security, compliance, and cybercrime, helping professionals stay informed about the latest threats and trends. Their content is designed to assist organizations in making informed decisions about their security strategies, thereby enhancing their overall cybersecurity posture. CSO Online operates without reported funding, indicating a stable business model that relies on its reputation and audience engagement.

8. ObserveIT

• Website: observeit.com
• Ownership type: Corporate
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: Israel 100%
• Latest funding: $225.0M, November 2019
• Founded year: 2006
• Headcount: 51-200
• LinkedIn: observeit

ObserveIT, now operating under the Proofpoint brand, is a cybersecurity firm based in Boston, Massachusetts. Founded in 2006, the company specializes in safeguarding organizations against human-targeted cyber threats. Their product offerings include email security, data loss prevention, and insider threat management, which are essential for protecting sensitive information across various sectors, including healthcare and finance. With a workforce of around 38 employees, ObserveIT has made a notable impact in the cybersecurity space. The company secured $225 million in funding in November 2019, which underscores its growth potential and commitment to enhancing its cybersecurity solutions. Their focus on a human-centric approach to security reflects a growing recognition of the importance of user behavior in preventing data breaches and cyber incidents.

9. North Atlantic Networks

• Website: nan.com
• Ownership type: Private
• Headquarters: North Attleborough, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 100%
• Founded year: 1994
• Headcount: 11-50
• LinkedIn: securedbynan

North Atlantic Networks (NAN) is a cybersecurity firm based in North Attleborough, Massachusetts, founded in 1994. With a workforce of 11-50 employees, NAN focuses on delivering tailored cybersecurity solutions to businesses across various sectors, including healthcare, finance, and retail. Their service offerings include complete threat management, compliance assistance, and secure managed services, which are designed to protect clients from the ever-evolving landscape of cyber threats. NAN has established itself as a significant player in the cybersecurity industry, being the first MSSP in the United States to achieve five advanced specializations from Fortinet. This recognition underscores their expertise and commitment to providing high-quality security solutions. NAN's proactive approach to cybersecurity, which includes a 24/7 Security Operations Center (SOC) and Managed Detection and Response (MDR) services, positions them as a reliable partner for organizations seeking to enhance their security posture.

10. Thrive

• Website: thrivenetworks.com
• Ownership type: Private
• Headquarters: Foxborough, Massachusetts, United States (USA)
• Founded year: 2000
• Headcount: 201-500
• LinkedIn: thrive-networks

Thrive, based in Foxborough, Massachusetts, is an IT service provider founded in 2000. With a workforce of around 218 employees, the company specializes in cybersecurity, cloud services, and managed IT solutions. Thrive serves a variety of industries, including financial services and healthcare, where data security is paramount. Their offerings include managed detection and response, autonomous penetration testing, and incident response services, which are essential for organizations looking to enhance their cybersecurity posture. Thrive operates through a model that integrates consulting and managed services, allowing them to tackle complex IT challenges effectively. Their commitment to cybersecurity is evident in their advisory services, including virtual Chief Information Security Officer (vCISO) offerings, which help businesses develop tailored security programs. Thrive's approach to IT solutions positions them as a significant player in the information security sector.

11. Thrive

• Website: thrivenextgen.com
• Ownership type: Private Equity
• Headquarters: Foxborough, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 70%, United Kingdom (UK) 11%, Philippines 10%, Other 9%
• Latest funding: January 2025
• Founded year: 2000
• Headcount: 1001-5000
• LinkedIn: thrive-networks

Thrive, based in Foxborough, Massachusetts, is an IT consulting and managed services provider founded in 2000. With a workforce of approximately 1,769 employees, Thrive specializes in a wide array of technology solutions, prominently featuring cybersecurity, cloud services, and IT infrastructure management. The company serves clients across various industries, including financial services and healthcare, focusing on enhancing operational efficiency and security. Thrive's cybersecurity offerings include managed detection and response, autonomous penetration testing, and incident response services, showcasing their expertise in safeguarding client data. Their advisory services, particularly the virtual Chief Information Security Officer (vCISO), further emphasize their role in helping organizations navigate the complexities of information security. Thrive's commitment to delivering tailored services positions them as a significant player in the IT and cybersecurity landscape.

12. NorthOut, an ECI Company

• Website: northout.com
• Ownership type: Corporate
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: India 95%, United States (USA) 5%
• Latest funding: November 2020
• Founded year: 2015
• Headcount: 201-500
• LinkedIn: northout

NorthOut, an ECI Company, is a technology and cybersecurity services firm based in Boston, Massachusetts. Founded in 2015, the company specializes in providing managed solutions, cloud services, and comprehensive cybersecurity solutions primarily to clients in the financial services sector. With a strong emphasis on enhancing operational efficiency and security posture, NorthOut leverages innovative technology and expert consulting to meet the needs of hedge funds, private equity firms, and investment managers. Their cybersecurity offerings include managed XDR, dark web monitoring, and vulnerability assessments, which are designed to protect businesses from modern cyber threats. NorthOut's commitment to regulatory compliance and risk management further underscores its role as a trusted partner in the financial services industry.

13. Towerwall, Inc.

• Website: towerwall.com
• Ownership type: Private
• Headquarters: Framingham, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 100%
• Founded year: 1999
• Headcount: 11-50
• LinkedIn: towerwall-inc.

Towerwall, Inc., based in Framingham, Massachusetts, is a cybersecurity consulting firm founded in 1999. With a team of 24 employees, the company specializes in providing tailored information security solutions to businesses and organizations. Their services include risk assessments, incident response, and comprehensive security training, aimed at helping clients protect their critical data. Towerwall has worked with various industries, including healthcare, financial services, and education, demonstrating their adaptability to different security needs. They have also been involved in addressing contemporary cybersecurity challenges, such as ransomware and compliance with regulations like HIPAA and GDPR. Towerwall operates primarily in the United States, EU, and Caribbean, showcasing their international reach and expertise in managing security for a wide array of clients. As a woman-owned business, they bring a unique perspective to the cybersecurity field, emphasizing teamwork and a multi-faceted approach to security that integrates people, processes, and technology.

14. Seceon Inc.

• Website: seceon.com
• Ownership type: Private
• Headquarters: Westford, Massachusetts, United States (USA)
• Employee distribution: India 78%, United States (USA) 21%, Other 1%
• Founded year: 2015
• Headcount: 51-200
• LinkedIn: seceon

Seceon Inc., founded in 2015 and based in Westford, Massachusetts, is a cybersecurity firm specializing in advanced threat detection and response solutions. The company has developed an innovative platform that leverages artificial intelligence and machine learning to provide real-time threat management. Seceon serves a variety of sectors, including finance and healthcare, where security is paramount. Their offerings include a range of solutions such as aiSIEM, aiXDR, and aiSecurity360, which are designed to enhance the security posture of their clients. Seceon emphasizes the importance of simplifying cybersecurity operations, making it easier for organizations to manage their security needs effectively. The company has a significant presence in the cybersecurity market, with a workforce that includes a substantial number of employees based in India, reflecting a global approach to security challenges.

15. BitSight Technologies

• Website: bitsighttech.com
• Ownership type: Private
• Headquarters: Cambridge, Massachusetts, United States (USA)
• Founded year: 2011
• Headcount: 201-500
• LinkedIn: bitsight-technologies

BitSight Technologies, Inc. is a cybersecurity firm based in Cambridge, Massachusetts, founded in 2011. The company focuses on risk management and security performance solutions, offering a suite of services that includes vulnerability detection, third-party risk management, and cybersecurity analytics. BitSight's innovative approach allows organizations to assess and manage their cybersecurity risks effectively, particularly in relation to their vendors and partners. The firm has developed one of the largest datasets for risk assessment, combining real-time discovery of networks and vulnerabilities with insights from over 100 security researchers. Their products cater to various industries, including financial services, healthcare, and technology, and they have been recognized for their contributions to cybersecurity risk ratings. BitSight's emphasis on continuous monitoring and proactive risk management reflects their commitment to enhancing the security posture of their clients.

16. EiQ Networks

• Website: eiqnetworks.com
• Ownership type: Venture Capital
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: India 88%, United States (USA) 12%
• Latest funding: $9.6M, January 2016
• Founded year: 2001
• Headcount: 51-200
• LinkedIn: eiqnetworks

EiQ Networks, based in Boston, Massachusetts, is a cybersecurity consulting company founded in 2001. With a workforce of approximately 58 employees, the firm specializes in helping businesses and individuals safeguard their data from cyber threats. EiQ Networks places a strong emphasis on educating its clients about online security measures, providing valuable insights into the ever-changing world of cybersecurity. The company has also received $9.55 million in funding as of January 2016, which underscores its potential for growth and innovation in the cybersecurity sector. Their focus on practical solutions and awareness-building positions them as a relevant player in the information security industry.

17. ARIA Cybersecurity Inc.

• Website: ariacybersecurity.com
• Ownership type: Private
• Headquarters: Lowell, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 100%
• Founded year: 1968
• Headcount: 51-200
• LinkedIn: aria-cybersecurity-solutions

ARIA Cybersecurity Inc., based in Lowell, Massachusetts, is a private cybersecurity firm founded in 1968. With a workforce of around 22 employees, the company specializes in providing advanced cybersecurity solutions tailored for both IT and operational technology (OT) infrastructures. Their product lineup includes ARIA AZT PROTECT, a comprehensive AI-driven defense system, and ARIA ADR, which focuses on advanced detection and response capabilities. These solutions are designed to protect critical assets from a wide array of cyber threats, ensuring the security of their clients' operations. ARIA Cybersecurity is also involved in offering managed security service provider (MSSP) and original equipment manufacturer (OEM) solutions, further solidifying their role in the cybersecurity industry. The company has received recognition for its innovative approaches and has been active in industry discussions, highlighting its commitment to improving cybersecurity measures across various sectors.

18. Tessian

• Website: tessian.com
• Ownership type: Corporate
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: United Kingdom (UK) 79%, United States (USA) 15%, Bulgaria 6%
• Latest funding: October 2023
• Founded year: 2013
• Headcount: 201-500
• LinkedIn: tessian

Tessian, founded in 2013 and based in Boston, Massachusetts, specializes in cybersecurity with a focus on cloud email security solutions. The company employs artificial intelligence to provide protection against sophisticated email threats and to prevent data loss. Their platform is designed to enhance security awareness among users, helping organizations mitigate risks associated with email communications. Tessian serves various sectors, including finance and healthcare, and has garnered attention for its innovative approach to email security. The company has been recognized as a strong performer in the Forrester Wave for Enterprise Email Security, highlighting its effectiveness in addressing modern security challenges. With a workforce of around 201-500 employees, Tessian continues to evolve and adapt to the changing landscape of cybersecurity.

19. BNMC - Bredy Network Management Corporation

• Website: bnmc.net
• Ownership type: Corporate
• Headquarters: Woburn, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 100%
• Latest funding: May 2024
• Founded year: 1988
• Headcount: 11-50
• LinkedIn: bnmc---bredy-network-management-corporation

BNMC - Bredy Network Management Corporation, founded in 1988 and based in Woburn, Massachusetts, is an IT service provider that focuses on managed IT services, cybersecurity, and cloud computing solutions. With a team of approximately 32 employees, BNMC serves small and mid-sized businesses, educational institutions, and government organizations. Their proactive approach to IT management helps clients maintain robust IT infrastructures while enhancing security measures. BNMC's cybersecurity services include unified threat management, access control solutions, endpoint security, and compliance with various regulatory standards. The company has been recognized for its commitment to excellence and innovation, recently being named a finalist in the MSP Titans of the Industry Awards for 2024. This recognition highlights their ongoing efforts to provide effective security solutions tailored to the needs of their clients.

20. DC Consulting

• Website: dcconsulting.com
• Ownership type: Private
• Headquarters: Boston, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 100%
• Founded year: 2010
• Headcount: 201-500
• LinkedIn: dc-consulting-services-llc

DC Consulting Service, LLC, based in Boston, Massachusetts, is a cybersecurity consulting firm established in 2010. The company focuses on providing security solutions and digital transformation services to organizations across various sectors. Their offerings include incident response, penetration testing, security assessments, and security awareness training. With a team of certified security architects and technical engineers, DC Consulting aims to elevate clients' security postures through innovative strategies and technologies. They emphasize a thorough understanding of clients' environments and risks, ensuring that their solutions are tailored to meet specific needs. The firm operates with a commitment to customer service and ongoing support, helping organizations navigate the complexities of cybersecurity. DC Consulting has not reported any funding, indicating a self-sustained operational model.

21. CompuWorks

• Website: compuworks.biz
• Ownership type: Corporate
• Headquarters: Pittsfield, Massachusetts, United States (USA)
• Employee distribution: United States (USA) 100%
• Latest funding: October 2023
• Founded year: 1987
• Headcount: 11-50
• LinkedIn: compuworks-ltd-

CompuWorks, now known as Sourcepass, is an IT service provider based in Pittsfield, Massachusetts, founded in 1987. The company has a workforce of approximately 30 employees and focuses on managed IT and cybersecurity solutions. Sourcepass offers a wide array of services, including managed security services, security assessments, and governance, risk, and compliance services. Their client base spans various sectors, such as healthcare, finance, and education, indicating their capability to address the unique security challenges faced by different industries. The company has not reported any recent funding, suggesting a stable operational model that relies on its established service offerings and client relationships.

Information Security Insights: Key Companies in Massachusetts

Company	Headquarter	Size	Founded	Ownership
RSA Security	Bedford, Massachusetts, United States (USA)	1001-5000	1982	Private Equity
Lookout	Boston, Massachusetts, United States (USA)	201-500	2007	Private Equity
Q1 Labs (IBM Security)	Waltham, Massachusetts, United States (USA)	10001+	2001	Private
Onapsis	Boston, Massachusetts, United States (USA)	201-500	2009	Private Equity
ReversingLabs	Cambridge, Massachusetts, United States (USA)	201-500	2009	Private Equity
Eci	Boston, Massachusetts, United States (USA)	501-1000	1995	Private
CSO Online	Needham, Massachusetts, United States (USA)	11-50	2002	Private
ObserveIT	Boston, Massachusetts, United States (USA)	51-200	2006	Corporate
North Atlantic Networks	North Attleborough, Massachusetts, United States (USA)	11-50	1994	Private
Thrive	Foxborough, Massachusetts, United States (USA)	201-500	2000	Private
Thrive	Foxborough, Massachusetts, United States (USA)	1001-5000	2000	Private Equity
NorthOut, an ECI Company	Boston, Massachusetts, United States (USA)	201-500	2015	Corporate
Towerwall, Inc.	Framingham, Massachusetts, United States (USA)	11-50	1999	Private
Seceon Inc.	Westford, Massachusetts, United States (USA)	51-200	2015	Private
BitSight Technologies	Cambridge, Massachusetts, United States (USA)	201-500	2011	Private
EiQ Networks	Boston, Massachusetts, United States (USA)	51-200	2001	Venture Capital
ARIA Cybersecurity Inc.	Lowell, Massachusetts, United States (USA)	51-200	1968	Private
Tessian	Boston, Massachusetts, United States (USA)	201-500	2013	Corporate
BNMC - Bredy Network Management Corporation	Woburn, Massachusetts, United States (USA)	11-50	1988	Corporate
DC Consulting	Boston, Massachusetts, United States (USA)	201-500	2010	Private
CompuWorks	Pittsfield, Massachusetts, United States (USA)	11-50	1987	Corporate

Want to Find More Information Security Companies?

If you want to find more companies that offer products like identity management, cloud security, and threat intelligence services you can do so with Inven. This list was built with Inven and there are hundreds of companies like these globally.

With Inven you'll also get to know the company's:

• Detailed Ownership: Who owns the company? Is it a public or private company? What is the ownership structure?
• Contact data: Who are the founders and CEO's? What are their emails and phone numbers?
• Financials: How do these companies perform financially? What are their revenues and profit margins?

...and a lot more!