01 · IDEATE
Sharpen the wedge.
One sentence. One buyer. One pain. If it doesn't survive ten conversations with your target buyer, it doesn't get built.
Whiteboard writes the first check for security founders before the deck is finished — backed by a network of ethical CISOs who are true partners.
FIRST CHECK THESIS
We invest before the round is named. Pre-formation, pre-deck, sometimes pre-cofounder. The bar isn't traction — it's that you've spent enough time inside the security problem to know which version of the answer is worth building.
What we look for
You've operated inside a security team or shipped a security product. You know the buyer's calendar, not just their title. The wedge is specific — “AI-native security platform” is not a wedge; “how an AppSec team approves the 14th LLM tool this quarter” is.
What we bring beyond the check
Direct intros to operating CISOs from CISO Ventures — design partners and early customers, not LinkedIn icebreakers. Operator review of your wedge, GTM, and product roadmap from a team of industry leaders.
What we don't bring
A “platform team,” a Slack of four hundred portfolio CEOs, or generic GTM playbooks recycled from non-security companies. We stay narrow on purpose.
CISO VENTURES · THE MOAT
CISO Ventures is the invite-only network of ethical senior security leaders we've built around the firm. Members come for peer time. Founders we back get introduced where intros actually convert: across the table at a twelve-person dinner, not in a LinkedIn cold message.
Accelerate your journey to meet design partners.
Visit cisoventures.com ↗IDEATE → EXPERIMENT → MEASURE → MODIFY → SCALE
The first twelve months of a cybersecurity startup are the cheapest place to be wrong. We partner with founders to build a strong foundation by leveraging a disciplined five-step playbook.
01 · IDEATE
One sentence. One buyer. One pain. If it doesn't survive ten conversations with your target buyer, it doesn't get built.
02 · EXPERIMENT
A real buyer says yes or no. Not an MVP. A test.
03 · MEASURE
What signal advances the company? What signal kills the experiment? Decide before the data, not after.
04 · MODIFY
Adjust the wedge before you've raised the round that locks you in.
05 · SCALE
Only after the first four are honest. Headcount, ARR commitments, and category language come last, not first.
FAQ
We invest before the round is named. Pre-formation, pre-deck, sometimes pre-cofounder. The bar isn't traction — it's that you've spent enough time inside the security problem to know which version of the answer is worth building. More on the First Check Thesis →
No. The CISOs in our network advise the companies we fund as a community, not as paid advisors or investors. They are not on Whiteboard's payroll, do not receive equity from Whiteboard, and have no economic interest in the deals they help with. Their incentive is the same as yours — they want the next generation of security tools to actually be useful to the people who run security teams.
Yes. Whiteboard is a cybersecurity-focused early-stage venture firm. We invest across the cyber stack — security platforms, developer security, identity and access, security data and observability, AI safety and security — but we don't write checks outside the category. Founders who want a generalist investor are better served by a generalist fund.
They're three peer networks Whiteboard cultivates. CISO Ventures is a community of operating CISOs who advise the companies we fund. Rutgers Ventures is a community of Rutgers alumni operators and investors who back fellow Scarlet Knight founders. Parents Ventures is a community of parent founders building for families. Each network thickens our deal flow and our post-investment support; none is a separate fund.
Submit the pitch form at /apply — six fields, no deck required. If your wedge is specific and you've been inside the problem, we'll know in one read. We respond to every submission, typically within a week.
IEMMS is the discipline framework we run every company we back through, in the first twelve months: Ideate (sharpen the wedge into one buyer, one pain, one workflow), Experiment (smallest possible artifact that lets a real buyer say yes or no), Measure (pre-defined exit criteria — what advances the company, what kills the experiment), Modify (the cheap pivot, before the round that locks you in), and Scale (only after the first four are honest). It's why we say "first check, not theater" — we're a partner in the discipline, not just a wire transfer.
Three concrete things: (1) introductions to operating CISOs from CISO Ventures — real ones running security teams today, not LinkedIn icebreakers — as design partners and early customers; (2) a structured pass through the IEMMS framework on your wedge, in person or async; (3) a gut check on your first three hires before they're made. After that we stay close, but lightly — we don't take board seats at the first-check stage. We back you into your Series A; we don't lead it.
TEAM
Whiteboard is run by Abhijit Solanki. Most recently led Strategic Alliances and Business Development at Proofpoint. Before that: a $100M+ security product portfolio turnaround at Symantec, cyber investing lead at NexStar, Strategy & Corporate Development at VMware, started in McKinsey's tech practice. The deal screen is operator-grade because the operator history is real.
Operators behind the team: service providers who've worked with cyber startups — lawyers, recruiters, fractional CTOs, accountants — can add themselves to our list.
Book time with Abhi →