The big reveal: meet LORCA’s third cohort (its most international yet)

LORCA workspace at Plexal

LORCA, the cybersecurity programme Plexal’s innovation team is delivering for the Department for Digital, Culture, Media & Sport, has just welcomed 15 scaleups to its third cohort.

If you remember, we consulted with industry to understand what sort of cyber solutions they thought the market needed most, which helped LORCA create the focus areas for its search: security by design, basics and beyond. And after an open call, we found 15 companies that not just had relevant solutions, but also showed serious scaling potential.

The fantastic 15 also happen to represent LORCA’s most international cohort to date, with companies from Italy, Spain and South Korea entering the programme. Minister for digital Margot James said the global nature of the cohort was good for both London and Britain: “Ahead of London Tech Week, it’s great to see that LORCA is now welcoming international companies to the capital, making this a truly global effort to ensure we have a Britain that’s fit for the future.”

For the next 12 months, the cohort will take part in a bespoke programme designed around their needs, which will be delivered by Plexal’s innovation team and our partners: the Centre for Secure Information Technologies (CSIT) at Queen’s University Belfast and Deloitte’s cyber team.  The cohort will also work closely with LORCA’s corporate partners Lloyds Banking Group, Dell Technologies and the Global Cyber Alliance – not to mention the funders, industry professionals and supporters from the broader tech sector who take part in LORCA’s regular forums.

Commenting on the cohort, Saj Huq, programme director of LORCA, said: “We’re particularly pleased with the international flavour which the latest group of scaleups brings to LORCA, fortifying our position as a global cyber hub and the UK’s foremost destination for the most advanced technological solutions.”

Meanwhile, Dayne Turbitt, senior vice president for enterprise UK & Ireland at Dell Technologies, said: “We are delighted to work with LORCA and its members as they launch and scale their promising new cybersecurity businesses in the UK.  Any new enterprise needs to think global from the outset and have an appetite to scale. Our sales and technology mentors know what it takes to succeed in this environment and will share their knowledge and skills with these high potential businesses.”


The full list of members for cohort three are: 

1. CounterCraft

CounterCraft’s full-spectrum Cyber Deception Platform detects, investigates and controls targeted attacks. The company enables enterprises to understand why cyber attackers are targeting them and defend their most business-critical assets.

2. CTO Technologies (CyberCentral)

The company’s CyberCentral platform enables the public and private sectors to better manage their security risks by automating manual processes – and alleviating the strain on IT teams.

3. D-RisQ

D-RisQ develops and uses automatic, high-integrity software verification tools that are focussed on embedded systems and cybersecurity. The tools have been used in a range of sectors, including autonomous vehicles, aerospace, and maritime.

4. Elemendar

Elemendar has developed an AI analyst for Cyber Threat Intelligence (CTI) that tells cyber defence tools what threats to defend against. The company’s AI makes CTI machine-readable and shares it with existing tools using open data standards. This means the customer can act on all the CTI they buy and stop threats in time – whether they have human analysts or not.

5. Hack The Box

The online platform provides labs and challenges for cybersecurity training, allowing members to exchange ideas and methodologies. By using social and gamification elements, Hack The Box makes the learning experience fun and rewarding.

6. HumanFirewall

HumanFirewall transforms employees into an organisation’s strongest line of defence. And as well as being a security awareness and training platform, it also works when real attacks strike. The company gamifies learning through training and phishing simulations, builds individual risk-profiles, rewards real-time reporting and remediates incidents instantly.

7. Messagenius

Messagenius is the enterprise messaging tool for secure, smart and integrated communications among colleagues. It looks and works just like the company’s everyday messenger while protecting sensitive information.

8. Panaseer

Panaseer’s continuous controls monitoring platform gives CISOs visibility of all assets, and the confidence that security controls are working effectively. It provides a trusted, unified view across business lines, regions and technology platforms.

9. Quant Network

Quant Network is committed to building an internet people can trust. It’s recognised for having solved interoperability through the creation of Overledger, the world’s first blockchain operating system, and is leading the way for innovation and blockchain adoption.

10. SaltDNA

SaltDNA are a multi-award-winning cybersecurity company based in Belfast, Northern Ireland, that builds secure enterprise mobile communications solutions. Its product provides secure voice, messaging, conference calling, broadcasting and image or file transfers for busy executives. Its customers include global law firms, financial institutions, defence and security clients, oil and gas companies and large enterprises.

11. Security Alliance

Security Alliance delivers cyber intelligence services across the globe and has government, healthcare, financial services, energy critical national infrastructure clients. Its cyber threat intelligence platform ThreatMatch helps security analysts, operations teams and security managers focus on cyber threats that will have the biggest impact on the organisation.

12. Storage Made Easy

Storage Made Easy’s multi-cloud software product Enterprise File Fabric provides a security and governance blanket for siloed company data. It’s a hybrid solution that gives clients intelligent, policy-based enforcement across all corporate data, be that on-premises, at a data centre or in the cloud.

13. swIDch

swIDch aims to eliminate card not present fraud (which happens when someone uses another person’s card or card details fraudulently). Its patented algorithm enables payments companies to generate Dynamic PANs in a networkless environment without the need for any additional infrastructure.

14. Threat Status

The company’s Trillion service collects, analyses and provides alerts on the billions of breached credentials from the deep web, closed forums, paste sites and the dark web,  looking for the ones that belong to its clients. Its actionable intelligence can mitigate the effect of third-party breaches on organisations. 

15. Uleska

Uleska is a scalable platform that provides continuous software security testing within DevOps software or IT projects. It automates business risk reporting and communicates security strategy value without the need for more personnel.