Fourlaw Abogados has advised key early-stage investors in IriusRisk on the integration of the company into ThreatModeler, a transformative transaction in the global cybersecurity market. This deal, finalised at the end of 2025, brings together two of the leading threat modeling platforms under a single organisation positioned to accelerate innovation across the rapidly growing cybersecurity and AI-driven application security space.

Fourlaw’s team advised Swanlaab Venture Factory, JME Ventures, Bright Pixel Capital and Inveready — all key early-stage investors behind IriusRisk — throughout the transaction, providing legal counsel on this complex, cross-border technology deal. The matter was led by a team comprising Francisco Téllez de Gregorio, Gabriele Hofmann, Iñigo Andrés González, Paula Riverol Curbelo and David Yatskiv.

It has been particularly rewarding for the Fourlaw Abogados team to see the evolution of IriusRisk from its beginnings as a technology startup in Huesca to its consolidation as a global reference in threat modeling and cybersecurity, now entering a new chapter alongside a leading U.S.-based company. This transaction highlights the firm's strong track record in advising investors and technology companies on high-impact, international M&A transactions and further underscores its role as a trusted adviser in the fast-evolving cybersecurity and digital innovation landscape.

IriusRisk, originally founded in Huesca in 2015, has built a global reputation for its advanced threat modeling solutions that help organisations embed security into the earliest stages of software design and development. The company’s platform combines automated threat detection, compliance monitoring, and collaborative security design to streamline risk management across complex development lifecycles.

Under the terms of the integration, IriusRisk joins forces with ThreatModeler, an innovation leader in AI-driven threat modeling, significantly expanding the combined organisation’s capabilities, scale and market reach. The unified company aims to deliver a more comprehensive threat modeling solution that supports modern enterprise security needs with intelligent automation, broader global support, and enhanced scalability.

The transaction is seen as a major step forward in cybersecurity solutions, uniting complementary strengths from both platforms to meet the rapidly increasing demand for secure-by-design practices, especially in environments where AI and cloud-native technologies are accelerating development cycles. Analysts have noted that the combined entity is now positioned as a global leader in threat modeling, trusted by customers across industries including finance, healthcare and technology.