Our fiscal year just ended, but let’s recap what happened over the past year.
When we started Tamnoon, the thesis was simple: the cloud security industry doesn’t have a detection problem. It has a remediation problem.
CNAPPs can tell you what’s wrong, but almost nobody can safely fix these problems at scale. We set out to change that, and in 2025, we did.
Here’s what we saw in 2025:
- The average cloud security team receives over 11,000 alerts per day, but only 4% are investigated
- Less than 1% actually get fixed
- The industry average MTTR sits at 203 days
- Backlogs continue to grow at 40% year-over-year
We wanted to create a better way, so we did.
Here’s how we got there, the product decisions behind the shift, the impact on our customers, and what’s coming in 2026.
How We Went From a Managed Service to an AI Platform
The biggest change at Tamnoon in 2025 was a fundamental shift in how cloud remediation works.
At the start of the year, we were operating at what we call Level 2 autonomy. That meant our security experts were still doing the heavy lifting, using automation to help with prioritization, and training our AI on investigation patterns and remediation logic.
The platform was learning. Humans were driving.
By the end of 2025, we reached Level 4.
The platform now handles 100% of prioritization and 100% of investigation on its own. Our AI agent Tami was trained on millions of real-world remediation outcomes executed by security experts. That’s what powers the end-to-end prioritization and investigation.
Humans didn’t leave the picture. They moved to where they matter most, validating remediation actions, handling edge cases that require judgment, and continuously training the AI with new patterns. The platform monitors the flows. The experts focus on safe remediation at scale.
This is what we mean when we talk about Human-Calibrated AI. It’s not a marketing phrase, but rather a key design principle. Every automated action carries the weight of expert knowledge behind it. Every remediation goes through validation before it touches production.
In 2025, we scaled to millions of managed workloads, roughly 400% growth, with flat operational costs. Not because we cut corners, but because the platform got smarter while keeping humans exactly where they need to be.
What Changed for Our Customers
These changes had a direct, measurable impact on how customers investigate and remediate risk. Here’s what we saw:
- 66–92% reduction in critical and high alerts resolved at root cause, not suppressed or snoozed. They don’t come back.
- 76.8% lower MTTR compared to the industry average. What used to take months was getting done in days.
- Zero production incidents across millions of workloads and thousands of remediations. That’s the number we’re most proud of. Speed and safety aren’t a tradeoff. You can have both if the system is built with the right guardrails.
One customer put it simply: “What started as 130,000 alerts got consolidated down to 4% actionable items. Weeks of investigation work compressed into days.”
We also saw drastic improvements to our efficiency ratios, which ranged from 32:1 to 142:1, meaning for every initiative a team worked on, dozens to over a hundred raw alerts were consolidated and resolved. That’s the difference between a team spending their days triaging and a team spending their days actually reducing risk.
For the full data behind these results, see our 2025 Tamnoon Wrapped.
Where Remediation Demand Grew
In 2025, we expanded across five industries: entertainment, pharmaceuticals, healthcare, manufacturing, and insurance.
What connected them was a shared reality: tight regulation, high stakes, and environments where a misconfiguration quickly becomes a compliance event, a data risk, or operational downtime.
Remediation has to be safe before it’s fast, and delays carry real consequences.
Building an Ecosystem With Our Partners
None of this happens in isolation. Remediation only works when it’s deeply connected to the detection tools teams already rely on, and we’re fortunate to work alongside some of the best in the industry.
In 2025, we deepened our partnerships with Wiz, CrowdStrike, Palo Alto Networks, Upwind, Cyera, and Orca. These integrations allow Tamnoon to take findings from across the security stack and turn them into validated, completed, and safe fixes. Our partners make detection excellent. We make sure that work doesn’t stop at an alert.
We’re especially proud to have received the Wiz Customer Educator Award this year for helping joint customers get more value from their security investments. We were also named a Segment Leader in cloud security remediation.
To every partner who bet on remediation as the next frontier, thank you. We’re building this together.
What’s Next for Tamnoon in 2026?
If 2025 was the year we proved AI-powered remediation can be safe and effective at scale, 2026 is about making safe remediation accessible to every cloud security team.
On the product side, we’re working toward Level 5 autonomy, fully autonomous remediation where the platform doesn’t just investigate and prioritize, but executes validated fixes with minimal human intervention for known, repeatable patterns. The goal is to focus human expertise on novel problems and strategic decisions, while the platform reliably handles tasks it has already proven safe to automate.
We’re also expanding Tami’s capabilities toward proactive prevention. Instead of waiting for a CNAPP to flag an issue, we want to catch and fix misconfigurations as they’re introduced, before they ever become alerts.
On the market side, we’re growing our footprint in healthcare and pharmaceuticals, expanding into new geographies, and building out the partner ecosystem for managed cloud security.
New Year, Same Mission
We set out to make remediation as seamless as detection. 2025 proved it’s possible. 2026 is about making it the standard.
To our customers who trusted us to finish what their CNAPPs started, thank you. To our partners who believed in a better together approach to cloud security, we’re just getting started. And to the Tamnoon team, what you built in 2025 is changing how this industry works.
Want to see the full picture? Check out our 2025 Wrapped for the highlights, milestones, and the data behind the year.
Curious about the state of cloud remediation? Our State of Cloud Remediation 2025 Report breaks down the industry trends, benchmarks, and the gap between detection and resolution that’s still growing.
Ready to stop managing alerts and start eliminating risk? Book a demo and see what safe remediation looks like at cloud speed.
