SimSpace shifting to continuous validation

This move would shift SimSpace from a periodic training budget into the day to day control plane for proving whether security defenses actually work. Its core advantage is that it can mirror a customer’s real environment, generate realistic user and network activity, and run live attack paths in that copy, which makes it useful not just for team drills but for checking whether tools like EDR, SIEM, email security, and segmentation catch what they should.

• AttackIQ, SafeBreach, and Cymulate are built around continuous validation. They run automated attack scenarios against production safe environments and report where controls fail. That defines the category SimSpace is moving into, but SimSpace comes from a cyber range starting point with fuller environment emulation.
  5 attackiq 6 safebreach 7 cymulate
• In practice, the buyer is a security team that wants evidence, not theory. They run simulations after changing an EDR policy, adding a new firewall rule, or preparing for an audit, then inspect dashboards showing which attack steps were blocked, missed, or only partially detected.
  5 attackiq 6 safebreach 7 cymulate
• That expansion matters because continuous validation is easier to justify as recurring operating spend than one off training. SimSpace was at about $50M ARR in 2023, so turning simulation into an always on validation workflow would deepen usage inside the same enterprise accounts.
  1 sacra 3 sacra

The market is heading toward continuous exposure management, where security leaders are expected to validate controls constantly and show proof to boards, regulators, and insurers. If SimSpace keeps translating its high fidelity range into faster, repeatable validation workflows, it can evolve from a specialist training product into a broader security operations platform.