CyberSeQ
AI-powered post-quantum cryptography migration platform for enterprises.
Website: https://www.cyberseq.io
Cover Block
PUBLIC
| Field | Value |
|---|---|
| Name | CyberSeQ |
| Tagline | AI-powered post-quantum cryptography migration platform for enterprises |
| Headquarters | Hamburg, Germany |
| Founded | 2021 |
| Stage | Pre-Seed |
| Business Model | SaaS |
| Industry | Cybersecurity |
| Technology Type | Quantum Computing / Post-Quantum Cryptography |
| Geography | Western Europe |
| Growth Profile | Venture Scale |
| Founding Team | Co-Founders (2): Mark Tehrani, Mahkame Houmani |
Links
PUBLIC
- Website: https://www.cyberseq.io/home
- LinkedIn: https://de.linkedin.com/company/cybersec-dms
- Founder LinkedIn (Mark Tehrani): https://www.linkedin.com/in/madjid-tehrani/
Executive Summary
PUBLIC
CyberSeQ is a Hamburg-based cybersecurity company building tooling to help enterprises migrate from classical to post-quantum cryptography (PQC), a transition that the U.S. National Institute of Standards and Technology has already begun standardizing and that large regulated buyers will be required to plan for over the coming decade. The company was co-founded in 2021 by Mark Tehrani and Mahkame Houmani and operates from the Hamburg startup ecosystem [Dealroom.co]; [Startup City Hamburg]. Its product centers on what the company describes as a modular platform combining cryptographic asset discovery and inventory (CADI) with automated refactoring, positioned for enterprise PQC compliance [CyberSeQ website, retrieved 2026]. The founding CEO, Dr. Mark Tehrani, holds a PhD from The George Washington University and serves as an Adjunct Professor of Cloud Security at GWU, lending the team relevant academic depth in the discipline [LinkedIn, retrieved 2026]. Public databases currently list CyberSeQ as unfunded, with no disclosed institutional rounds [Tracxn, retrieved 2026]. In October 2025, the company announced a partnership with Quantum Brilliance and Luxembourg-based HPC operator LuxProvide to integrate certified quantum random numbers into a PQC reference architecture running on the MeluXina supercomputer [HPCwire]; [The Quantum Insider, October 2025]. Over the next 12 to 18 months, the items most worth tracking are a first priced funding round, named pilot or design-partner customers in regulated European verticals, and whether the partnership consortium converts into a referenceable deployment.
Data Accuracy: GREEN -- Confirmed by Dealroom.co, PitchBook, Tracxn, HPCwire, and the company's own website.
Taxonomy Snapshot
| Axis | Value |
|---|---|
| Stage | Pre-Seed (no disclosed rounds) |
| Business Model | SaaS |
| Industry / Vertical | Cybersecurity, Post-Quantum Cryptography |
| Technology Type | Quantum Computing-adjacent, AI-assisted code refactoring |
| Geography | Western Europe (Hamburg, Germany) |
| Growth Profile | Venture Scale |
| Founding Team | Two co-founders, technical/academic background |
| Funding | None publicly disclosed |
Company Overview
PUBLIC
CyberSeQ was founded in 2021 in Hamburg, Germany by Mark Tehrani and Mahkame Houmani, and is registered in the Hamburg startup directory under the categories of quantum machine learning, cybersecurity, post-quantum cryptography, blockchain security, and cloud security [Startup City Hamburg]; [PitchBook]. PitchBook and Tracxn both list 2021 as the founding year and confirm Hamburg as the company's operating base [PitchBook]; [Tracxn, retrieved 2026]. The company positions itself as a provider of quantum computing cybersecurity solutions, with a specific focus on the migration problem facing enterprises that have decades of code, certificates, and key material built on cryptographic primitives such as RSA and ECC that are considered vulnerable to a sufficiently capable quantum computer.
The most prominent public milestone to date is the October 2025 announcement of a tri-party partnership with Quantum Brilliance, an Australian-German manufacturer of room-temperature diamond-based quantum hardware, and LuxProvide, the Luxembourg national high-performance computing operator behind the MeluXina supercomputer [HPCwire]; [Quantum Brilliance]; [The Quantum Insider, October 2025]. The consortium's stated objective is to integrate certified true random numbers, generated from quantum sources, into a reference PQC architecture. In the announcement, Mark Tehrani is quoted as Founder and CEO describing the offering as "quantum-secure, AI-smart, and cloud-native" [HPCwire]. Beyond this consortium, no other named customers, pilots, or commercial contracts have been disclosed in public sources reviewed for this report.
Data Accuracy: GREEN -- Confirmed by PitchBook, Tracxn, Dealroom.co, and Startup City Hamburg, with milestone activity corroborated across HPCwire, The Quantum Insider, and Quantum Brilliance press releases.
Product and Technology
MIXED
The CyberSeQ product, as described on the company's own website, is a modular platform addressing the end-to-end lifecycle of a post-quantum cryptography migration [PUBLIC] [CyberSeQ website, retrieved 2026]. Two components are named publicly: a cryptographic asset discovery and inventory function the company calls CADI, and an automated refactoring layer intended to update vulnerable cryptographic implementations in enterprise codebases [PUBLIC] [CyberSeQ website, retrieved 2026]. The marketing claim attached to the platform is that it is "90% faster than traditional crypto audits" [PUBLIC] [CyberSeQ website, retrieved 2026]. That figure is a company-stated metric without an independent benchmark in the public record, and should be read as a vendor claim rather than a verified result.
The broader technical architecture, as conveyed through the LuxProvide and Quantum Brilliance partnership, is a cloud-native PQC reference stack that ingests certified randomness generated by quantum hardware, with MeluXina identified as the HPC environment in which random numbers are generated and stored [PUBLIC] [HPCwire]; [The Quantum Insider, October 2025]. The integration of certified quantum randomness into key generation is a recognized topic in the PQC research community, since the security of post-quantum schemes still depends on the quality of underlying entropy. The specific implementation details, supported algorithm families (for example, ML-KEM, ML-DSA, SLH-DSA from the NIST PQC standards), and the languages or runtimes targeted by the refactoring engine are not disclosed in public sources reviewed.
No public job postings were surfaced from the company's careers page or major applicant tracking systems at the time of research, which limits the ability to infer the underlying technology stack from hiring signals [PUBLIC]. The product's commercial packaging, pricing model, and deployment topology (SaaS, on-premise, or hybrid) are not described in the public materials reviewed beyond the SaaS taxonomy assignment used by Dealroom.co and Tracxn [PRIVATE-leaning, but reported in public databases].
Data Accuracy: YELLOW -- Core product description corroborated by company website and Dealroom.co; quantitative performance claim is single-sourced to the company.
Market Research and Opportunity
PUBLIC
The migration from classical to post-quantum cryptography is shifting from a research topic to a procurement requirement, and the timing of that shift is what makes the category investable today. In August 2024, the U.S. National Institute of Standards and Technology finalized its first three post-quantum cryptographic standards (FIPS 203, 204, and 205), starting the regulatory clock for federal agencies and, by extension, their suppliers [NIST, August 2024]. In Europe, the German Federal Office for Information Security (BSI) and France's ANSSI have both published guidance recommending that operators of critical infrastructure begin cryptographic inventory and hybrid-PQC pilots well before the end of the decade [BSI guidance, 2024]. In May 2024, U.S. agencies were directed under National Security Memorandum 10 to inventory cryptographic systems and prepare migration plans, a model that European supervisors are now mirroring.
The specific demand drivers most relevant to CyberSeQ are three. First, the "harvest now, decrypt later" threat model, in which adversaries collect encrypted traffic today to decrypt once a cryptographically relevant quantum computer exists, has moved PQC up the agenda for sectors with long data confidentiality horizons such as defense, healthcare, financial services, and intellectual-property-heavy manufacturing. Second, the sheer scale of the cryptographic refactoring problem inside large enterprises (legacy systems, embedded certificates, hardware security modules, third-party libraries) creates demand for tooling rather than purely consultative engagements. Third, regulators are converging on the expectation that organizations produce and maintain a cryptographic bill of materials (CBOM), which directly maps to the discovery layer CyberSeQ describes [CyberSeQ website, retrieved 2026].
Third-party sizing of the dedicated PQC migration tooling market is still thin, because the category is new. Adjacent and analogous markets give some sense of scale: the global cryptography market and the broader application security testing market are both measured in single-digit billions of U.S. dollars annually by major analyst firms, and the post-quantum-specific subset is widely expected to grow at outsized rates from a small base over the next five to seven years. Because no single named third-party report is included in the structured facts for this company, specific TAM figures are not asserted here.
| Catalyst | Year | Relevance to CyberSeQ |
|---|---|---|
| NIST finalizes FIPS 203 / 204 / 205 PQC standards | 2024 | Removes algorithm uncertainty for buyers |
| U.S. NSM-10 cryptographic inventory mandate | 2022-2024 | Validates discovery (CADI-style) tooling |
| BSI / ANSSI PQC migration guidance | 2024 | Creates EU regulatory pull in CyberSeQ's home market |
| Quantum Brilliance / LuxProvide consortium | October 2025 | Anchors a referenceable EU HPC deployment |
The takeaway from the regulatory calendar is that buyer urgency in 2026 to 2028 is a function of compliance deadlines and supplier requirements rather than the arrival date of a working quantum computer, which means a tooling vendor does not need to wait for hardware breakthroughs to generate enterprise demand.
Data Accuracy: YELLOW -- Regulatory milestones are widely reported in public policy documents; specific TAM figures intentionally omitted given absence of a single canonical sizing report in the structured facts.
Competitive Landscape
MIXED
CyberSeQ is entering a category where the competition is a mix of well-funded PQC pure-plays, the cryptography arms of large incumbents, and the consulting practices of the global systems integrators, and its positioning rests on tooling depth in a niche that the incumbents have historically served with services. The structured facts for this report do not name specific competitors, so the comparison below is written as analyst prose grounded only in publicly known category participants rather than rendered as a side-by-side table.
In the PQC pure-play segment, the most frequently cited names in industry coverage include PQShield (Oxford, UK), which has raised substantial venture capital and supplies PQC IP cores and SDKs, and SandboxAQ, the Alphabet spin-out that markets a cryptographic management and PQC migration suite to large enterprises and governments [PUBLIC, widely reported in trade press]. These competitors have meaningful advantages in capital and brand, and SandboxAQ in particular has built out a discovery and inventory product that overlaps with the CADI layer CyberSeQ describes. CyberSeQ's defensible edge in this segment, to the extent one exists today, is geographic and architectural: a Hamburg base inside the German cybersecurity sovereignty conversation, plus the announced HPC integration with LuxProvide, which is harder for a U.S.-headquartered vendor to replicate quickly [HPCwire]; [The Quantum Insider, October 2025].
The second segment is incumbent cryptography and PKI vendors (for example, the certificate-authority and key-management businesses operated by larger security companies), which are extending their existing key and certificate inventories into PQC readiness assessments. Their advantage is distribution: they already sit inside the buyer's certificate lifecycle and can attach a PQC module to a renewal conversation. CyberSeQ does not own that channel, which is its most material competitive exposure. The third segment is the global systems integrators and Big Four advisory practices, which are selling PQC readiness as a consulting engagement; their advantage is relationships at the CISO and board level, and a credible counter-positioning for CyberSeQ is to become the tooling layer underneath those engagements rather than to compete head-on for the advisory budget.
The most plausible 18-month competitive scenario looks like this. Winner if X: CyberSeQ converts the LuxProvide consortium into one or two named, regulated European reference customers (for example, a Luxembourg or German financial institution running a hybrid-PQC pilot on MeluXina), which would let it raise a priced seed round on a real enterprise logo rather than on team and thesis alone. Loser if Y: a better-capitalized competitor such as SandboxAQ or PQShield signs a framework agreement with a major European bank or telecom before CyberSeQ does, which would compress the window for a category-defining EU-native PQC tooling vendor and likely push CyberSeQ toward a narrower OEM or partnership posture.
Data Accuracy: ORANGE -- No competitors named in the structured facts; segment-level analysis is grounded in widely reported category participants but is not corroborated by a single comparison source for this company.
Opportunity
PUBLIC
If CyberSeQ executes, the prize is becoming the European-native, tooling-first standard for enterprise post-quantum cryptography migration in a market that regulators are actively pushing buyers into.
The headline opportunity. The single largest plausible outcome is for CyberSeQ to become the default PQC migration platform for regulated mid-market and large European enterprises, the segment that will be required by national supervisors to produce cryptographic inventories and migration plans but that is too small to absorb a multi-year SandboxAQ-scale engagement and too regulated to send sensitive cryptographic asset data to a U.S.-headquartered vendor. The cited evidence makes this reachable rather than aspirational on three points: NIST has removed algorithm uncertainty by finalizing the first PQC standards in 2024, BSI and ANSSI have given EU enterprises explicit regulatory cover (and pressure) to start now, and CyberSeQ has already anchored itself inside a sovereign EU HPC stack via the MeluXina partnership [HPCwire]; [The Quantum Insider, October 2025]; [CyberSeQ website, retrieved 2026].
Growth scenarios.
| Scenario | What happens | Catalyst | Why it's plausible |
|---|---|---|---|
| EU sovereign PQC stack | CyberSeQ becomes the discovery/refactoring layer bundled with EuroHPC sites and national clouds | A second EuroHPC operator joins the LuxProvide-style integration | LuxProvide consortium already signed [HPCwire] |
| Regulated mid-market wedge | CyberSeQ wins 20-50 named German and Benelux financial / industrial customers via CBOM compliance | BaFin or ECB issues PQC inventory expectation | BSI guidance already published [BSI, 2024] |
| OEM / embed motion | CADI is embedded inside a larger PKI or HSM vendor's PQC module | Distribution partnership with an incumbent CA | Incumbents lack a discovery-first product today |
What compounding looks like. The flywheel in cryptographic asset management is data: every additional enterprise scan enriches the library of cryptographic patterns, vulnerable library versions, and refactoring recipes the platform can apply. That dataset is far harder for a late entrant to assemble than the underlying PQC algorithms, which are public NIST standards. A second compounding loop is the consortium structure: integration with LuxProvide's MeluXina creates a reference deployment that other European HPC operators can copy, which lowers the marginal cost of each subsequent sovereign-cloud integration [HPCwire].
The size of the win. Public comparables in cryptographic management and PQC give a rough frame for the upside. SandboxAQ has been valued in the multi-billion-dollar range in private secondary reporting, and PQShield has raised at valuations consistent with a late-stage deep-tech security company. Translating those reference points into a scenario, not a forecast: if CyberSeQ achieves the EU sovereign PQC stack scenario above by 2028, a venture outcome in the high hundreds of millions to low billions of euros of enterprise value is in the range that public peers have demonstrated for the category (scenario, not a forecast). The downside counterweights to that upside, including funding gap, team depth, and competitive timing, are addressed in the private half of this report.
Data Accuracy: YELLOW -- Catalysts and partnership facts are confirmed by multiple public sources; valuation comparables are directional industry references, explicitly framed as scenarios.
Sources
PUBLIC
[PitchBook] CyberSeQ 2026 Company Profile: Valuation, Funding & Investors | https://pitchbook.com/profiles/company/589299-67
[Dealroom.co] CyberSeQ company information, funding & investors | https://app.dealroom.co/companies/cyberseq
[Startup City Hamburg] CyberSeQ profile | https://startupcity.hamburg/startups-ecosystem/cyberseq
[CyberSeQ website, retrieved 2026] Post-Quantum Cryptography Migration Platform | https://www.cyberseq.io/home
[Tracxn, retrieved 2026] CyberSeQ - 2025 Company Profile, Team & Competitors | https://tracxn.com/d/companies/cyberseq/__rxI7QoPJHwAer8iTlYD_QIWVDmJDJjx8m9QGVkzM1Zk
[HPCwire] Quantum Brilliance, CyberSeQ and LuxProvide Partner to Advance Post-Quantum Cryptography with Certified Randomness | https://www.hpcwire.com/off-the-wire/quantum-brilliance-cyberseq-and-luxprovide-partner-to-advance-post-quantum-cryptography-with-certified-randomness/
[LinkedIn, retrieved 2026] Dr. Mark Tehrani profile | https://www.linkedin.com/in/madjid-tehrani/
[SCynergy] Mark Tehrani speaker profile | https://www.scynergy.events/speaker/6dffd9e8-7d1c-f011-8b3d-6045bdf3ac94/mark-tehrani
[The Quantum Insider, October 2025] Quantum Brilliance, CyberSeQ And LuxProvide Partner to Advance Post-Quantum Cryptography With Certified Randomness | https://thequantuminsider.com/2025/10/01/quantum-brilliance-cyberseq-and-luxprovide-partner-to-advance-post-quantum-cryptography-with-certified-randomness/
[Quantum Brilliance] Press release: PQC partnership with CyberSeQ and LuxProvide | https://quantumbrilliance.com/press-release/quantum-brilliance-cyberseq-and-luxprovide-partner-to-advance-post-quantum-cryptography-with-certified-randomness
[Quantum Computing Report] Quantum Brilliance, CyberSeQ, and LuxProvide Partner on PQC with Certified Randomness | https://quantumcomputingreport.com/quantum-brilliance-cyberseq-and-luxprovide-partner-on-pqc-with-certified-randomness/
[Digital Infra Network] Quantum Brilliance, CyberSeq & LuxProvide combat against threats to cybersecurity and encryption | https://digitalinfranetwork.com/news/quantum-brilliance-cyberseq-luxprovide-combat-against-threats-to-cybersecurity-and-encryption/
[LinkedIn] CyberseQ company page | https://de.linkedin.com/company/cybersec-dms
Articles about CyberSeQ
- CyberSeQ Is Racing Hamburg's Enterprises to Rewrite Their Encryption Before Quantum Breaks It — A two-person team in Germany is building an AI auditor that hunts down vulnerable cryptography inside enterprise codebases.