Devicie is building endpoint security for an AI-driven world

Cybersecurity efforts used to focus on defending an organization’s central infrastructure and on-premise networks. But today, endpoint devices — laptops, tablets, and mobile phones — are the primary point of entry for attackers, accounting for up to 90% of all successful cyberattacks.

“These endpoints are now seen by security teams as open barn doors for attacks,” says Alex Hesterberg, CEO of Devicie, a device security management platform. Devicie was founded to close these doors by helping companies manage hundreds of security controls and software updates across their end-user devices.

Failure to update software presents a major threat, as software developers often publish details of the vulnerabilities each update fixes, and cyberattackers monitor these threads.

In 2025, exploitation of unpatched vulnerabilities accounted for 20% of all breaches, up by 34% from the previous year.

Patching with permanence

Devicie began inside an Australian cybersecurity consultancy run by Martin McGregor, Jason Fairburn, and José Schenardie. Their work helped enterprises defend against threats like ransomware and phishing attacks, where endpoint devices were consistently the weak link.

It was time-intensive to manually configure devices and patch vulnerabilities, only for similar challenges to arise in the next environment. Rather than continue to burden human consultants with recurring issues, the trio wanted to build a scalable, automated software solution to permanently solve the problem.

The intersection of patching, compliance, and security

Modern IT teams face the intensifying challenge of configuring, updating, and monitoring thousands of devices, often across multiple operating systems and regulatory environments. The scale creates complexity, and that complexity causes vulnerability.

With Devicie, when an employee gets a new laptop, tablet, or phone, the device configures itself automatically over the internet without IT teams needing to manually set it up.

The software works behind the scenes to continuously update applications, patch vulnerabilities, and enforce security rules across the entire company, ensuring that every device is safe and compliant without interrupting the employee’s work.

“We operate at the intersection of…application patching, compliance management and policy management, and security,” says Hesterberg.

“Devicie is the next generation of configuration management.”

Traditionally, configuration management and cybersecurity have operated in separate domains. “We’ve seen these two worlds coming together for the last 24 to 36 months, fairly aggressively,” Hesterberg says. “There’s definitely a double down opportunity in closing the gap.”

Zero-touch security

A central part of Devicie’s approach is its relationship with Microsoft Intune, a cloud-based endpoint management solution that, though widely adopted by enterprises, is often underutilized due to its complexity.

“There are many thousands of configuration settings,” says Hesterberg. “That’s a lot of configuration settings.”

Devicie operates on top of Intune, simplifying its capabilities without requiring customers to replace their existing systems.

“Customers get to benefit not just from simpler patching and fixing of applications, firmware, and operating systems, but also enforcing policies, enforcing compliance, and also integrating into the security platforms that our customers have invested in today,” says Hesterberg.

“Customers want to be able to see the enriched data within those platforms, within their own interfaces, within their own workbooks and workflows. They don’t want to have to log into something else.”

Devicie’s model is built around automation, and what it calls a zero-touch approach to endpoint management: Set policies once and enforce them consistently across devices.

“And if there’s ever a deviation,” says Hesterberg, “there’s a self-healing that takes place right away and a log to make sure that there’s trackability.”

Building momentum

Devicie scaled quickly. The company reached more than AU$1M in ARR within its first nine months and has expanded into enterprises spanning multiple industries.

In August 2022, Devicie raised AU$14M (US$10M) in a Series A led by Insight Partners to fund its expansion in the United States and the United Kingdom. Insight made a second growth investment in April 2025, as Devicie moved its headquarters to Florida to better serve the U.S. market.

The following year, Hesterberg, a veteran enterprise software leader with more than 25 years in the business, was hired as the company’s first U.S.-based CEO to accelerate Devicie’s global expansion.

Partnerships have played a significant role in that growth, particularly through integration with the Microsoft ecosystem and a global network of channel partners that bring the platform into enterprise environments.

“We’re setting up customers for success from day one.”

As its customer list has grown, Devicie has also expanded its capabilities. “We have a library that’s gone from 400 to 500 applications…into thousands,” says Hesterberg. “Every month, we are adding more…to this list, which means our customers can patch and fix and roll out with absolute confidence.”

According to Hesterberg, roughly 40 to 50% of Devicie’s prospective customers are trying to migrate from legacy, on-premise tools like system center configuration managers (SCCMs) to cloud-based Intune. The process can be lengthy, as it involves translating years of configurations into a new environment, he says.

“This is a complex migration.” But Devicie makes it simple. “We’ve done that literally thousands of times. We’re very, very good at making sure that policies are maintained.”

The next threat surface

The environment Devicie operates in is always evolving, and the rise of AI tools has changed how employees interact with software, introducing new risks.

“We’re looking at the new digital frontiers where AI threats can potentially take place…even into browsers,” says Hesterberg. Through a partnership with Microsoft Edge for Business, Devicie can monitor browser activity to offer a view into how users are interacting with applications and identify potential threats.

Devicie already uses AI-driven processes internally to accelerate R&D and support case resolution, says Hesterberg. “We have an agentic team of developers that are constantly pushing out new code.”

A three-pronged approach

With organizations managing a wider range of devices across a more widely distributed workforce under stricter regulatory requirements, the demand for endpoint management is growing.

Hesterberg has three priorities going forward: consistency across platforms, stronger compliance capabilities, and tighter alignment between device management and security systems.

“Everything has got to be cross-platform and…an even and customer-friendly experience.”

Devicie is building toward all of these. Its platform is designed to operate across devices, geographies, and regulatory environments. Its focus on automation aligns with how companies want to approach security — moving away from reactive measures and towards systems that operate continuously in the background.

Endpoint devices remain one of the biggest vulnerabilities in modern organizations, and addressing that risk at scale requires a new approach. Devicie’s zero-touch model is paving the way.

*Note: Insight Partners has invested in Devicie.