Zscaler Buys Enterprise AI Security Firm SPLX To Enhance Zero Trust Exchange

Zscaler, Inc. (NASDAQ: ZS) has acquired SPLX, an innovative AI security startup founded in 2023, for an undisclosed amount.

This acquisition integrates SPLX’s cutting-edge AI red teaming and governance tools into Zscaler’s Zero Trust Exchange platform, enabling organizations to secure AI assets throughout their lifecycle from development to deployment.

The deal addresses the exploding risks tied to AI adoption, as enterprises pour over $250 billion into AI infrastructure by year’s end, according to Goldman Sachs projections.

Shadow AI sprawl and evolving threats from large language models (LLMs), AI agents, and Model Context Protocol (MCP) servers demand proactive defenses beyond traditional security measures.

Zscaler’s CEO, Jay Chaudhry, emphasized that combining SPLX’s expertise with the platform’s native data protection will classify, govern, and prevent sensitive data loss across prompts, models, and outputs.

Strengthening AI Lifecycle Security

SPLX’s technology brings shift-left capabilities, starting with comprehensive AI asset discovery that scans beyond public generative AI apps to include private models, workflows, code repositories, retrieval-augmented generation (RAG) systems, and MCP servers.

This extends visibility into hybrid environments, identifying hidden risks early in the development process.

Automated red teaming follows, deploying over 5,000 domain-specific attack simulations to uncover vulnerabilities in real time and provide instant remediation guidance, shifting organizations from reactive to proactive security postures.

Runtime guardrails and prompt hardening build on Zscaler’s existing protections for AI apps and LLMs, adding deep development environment visibility and automated safeguards for agentic workflows.

These features block malicious attacks, enforce data policies, and ensure compliance with emerging governance frameworks, crucial as AI agents automate complex tasks.

Kristian Kamber, SPLX’s CEO and co-founder, noted the shared vision to tackle AI’s vast attack surface, accelerating secure innovation at enterprise speed.

Broader Implications For Cybersecurity

This is Zscaler’s second acquisition in 2025, following the $675 million purchase of Red Canary for managed detection and response, underscoring a focus on AI-driven security operations.

As threat actors leverage AI for phishing and exfiltration, the integration positions Zscaler to lead in zero-trust AI protection, reducing complexity while boosting productivity for global enterprises.

Forward-looking statements highlight integration challenges, but analysts see strong growth potential, with Zscaler’s revenue up 23% to $2.67 billion in the last year.

By embedding SPLX’s innovations, Zscaler empowers customers to embrace AI confidently, combating billions of daily threats through advanced zero-trust architecture.

The platform’s evolution reflects the cybersecurity industry’s pivot toward holistic AI defenses amid rapid digital transformation.