AI Infrastructure
Protecting AI Infrastructure
AI-native OT security for the power layer — see, protect, and manage every power-consuming node.
The OT security platform for the AI data center power layer. Bringing the SIEM-replacement playbook to the layer beneath Armis and Claroty. Hardware-agnostic agent at the BMC senses PMBus telemetry. AI engine at the Edge reasons over it. Platform integrations push signal into Armis, Astera Labs COSMOS, NVIDIA Mission Control, Splunk, Sentinel, and ServiceNow — making PowerGuard the source of truth for the power surface across the ecosystem you already run.
Every server rack — from enterprise to hyperscale AI — runs power controllers communicating via PMBus: a protocol with zero authentication and zero commercial security monitoring. Silicon is today's installed base. GaN is tomorrow's AI infrastructure. Both run PMBus. Both completely unmonitored. In 2025, SMIF released PMBus 1.5. No enforcement tool exists.
University of Birmingham (2023) permanently destroyed two Intel Xeon CPUs via PMBus overvoltage — zero physical access required. CVE-2022-43309 assigned.
CVE-2022-43309SMIF released PMBus 1.5 in 2025 with security features. Every CISO must answer: "Are we compliant?" Zero commercial tools exist to answer this question.
PMBus 1.5 · 2025Counterfeit power controller chips — silicon and GaN — are undetectable at procurement without power signature fingerprinting. Bloomberg identified Chinese supply chain infiltration as a critical defense risk.
Defense · BloombergPower layer attacks look identical to natural hardware failure. Without a telemetry baseline, detection is impossible. 45% of data center outages are power-related (Uptime Institute 2025).
Uptime Institute 2025PowerGuard operates at Layer 2 — the PMBus power controller layer — the layer that feeds every CPU, GPU, TPU, APU, and Power Card. Every other security player operates at Layer 3 (network) or above. Nobody monitors the layer beneath. PowerGuard does — across every silicon family, hardware-agnostic by design.
Monitors all PMBus power controllers via I²C at 100ms. Power signature fingerprinting. Anomaly detection via Mahalanobis distance. Firmware integrity via SHA-256. Zero new hardware. Single Docker command.
75–80% marginAutomated compliance assessment against PMBus 1.5. PDF report for every CISO audit. Self-selling — the compliance mandate creates the pull. Our PCI-DSS moment.
90%+ marginHealth score 0–100 per PMBus controller. Predicts failure 24–72 hours ahead. Workload migration recommendation. Based on Hitachi Data Systems predictive architecture.
85–90% marginGaN chip vendors certify through PowerGuard. Infineon, TI, Navitas pay per certification. IP royalty scales with every GaN chip shipped worldwide. Zero incremental S&M cost.
90–95% marginActive PMBus command interception. Whitelist/blacklist rules. Accept or reject commands in real time. The full enforcement vision — from monitoring to blocking.
80–85% marginPMBus has been running inside every server power controller since 2005. Twenty years without authentication. Zero commercial monitoring tools.
Two things changed in 2025. SMIF released PMBus 1.5 — the first version with security requirements. Every data center operator must now answer a question they cannot yet answer: are our power controllers compliant? No tool exists.
On April 20, 2026 — ServiceNow acquired Armis for $7.75B at 22× ARR. Five days earlier — Artemis raised $70M in six months to bring AI-native detection to SecOps. OT security is going AI-native across every adjacent surface. The PMBus power-controller layer beneath Armis and Claroty remains completely open. The same acquirers and the same investors are looking for exactly one more layer.
18 to 24 months before Hitachi, Nozomi, and NVIDIA complete their combined OT+IT+AI platform and look down at the power layer. PowerGuard must own that layer first.
This problem required a founder who could see it from both sides of the stack simultaneously.
Shimon Eidelman built predictive failure systems at Hitachi Data Systems and lawful intercept platforms at ECTel — passive protocol monitoring, statistical baseline, anomaly detection, compliance reporting. That exact architecture is PowerGuard applied to PMBus. He also built Bareket Semiconductor at the FAB level, working directly with power semiconductors. No pure software founder and no pure hardware engineer could have connected those two perspectives.
Neta Heled — six years in Unit 8200 — builds the agent. Ilai Kamarani leads R&D, specializing in real-time high-frequency data processing and the 6D Mahalanobis power fingerprinting engine. Michael Weizmann drives commercial execution and investor relationships. Menachem Berrebi translates deep technical capability into enterprise narratives that reach CISOs and board level.
"Five people. Each covers a gap the others cannot. None of them is interchangeable."
| DIMENSION | ARMIS (2015–2026) | POWERGUARD (2026–) |
|---|---|---|
| Core insight | IoT/OT devices invisible to security teams | PMBus power controllers invisible to security teams |
| Market at founding | ~$14B OT security TAM | $50B+ OT+AI security TAM — 3.5× larger |
| Compliance tailwind | None in 2015 | PMBus 1.5 creates mandate — 2025 ✓ |
| Distribution model | Direct enterprise sales — 40–50% S&M | Direct enterprise sales — 40–50% S&M |
| Competition at entry | Claroty, CyberX, Indegy existed | Zero commercial solutions — category wide open |
| Exit target | $7.75B · 22× ARR · ServiceNow · 2026 | $300M–500M+ · same acquirers · Year 4–6 |
Platform distribution via NVIDIA + Astera + Armis enables 16% S&M vs Armis 40–50%. EBITDA positive from Year 1. 85%+ gross margin across five revenue streams.
Direct sales model · $44M total capital · S&M 16% · EBITDA positive Y1 · Exit base case $360M (18× ARR)
Whether you are a CISO, infrastructure operator, investor, or potential partner — we want to hear from you.
Thank you for reaching out. Shimon Eidelman will reply to within 24 hours.