Cybersecurity & Startups
Europe's once-austerity founders are about to get 10,000 cybersecurity bodies, for free
A European initiative backed by VCs plans to train 10,000 cybersecurity specialists for startups by 2026, tackling the talent shortage that leaves many digital companies vulnerable to attacks.

For years, startups have struggled to hire cybersecurity talent. They simply can't match the salaries or perks of Big Tech. A new program called CyberStart wants to change that. By July 10, 2026, it aims to train 10,000 cybersecurity specialists, all for the startup ecosystem across Europe.
CyberStart is a collaboration between several European venture capital firms, cybersecurity training academies, and startup accelerators. The program will offer free, intensive bootcamps in ethical hacking, cloud security, and compliance, including GDPR and the EU's Digital Operational Resilience Act, or DORA. The curriculum is designed to be completed in 12 to 16 weeks, with a strong focus on hands-on labs and real-world simulation exercises.
The initiative also includes a placement guarantee for graduates, connecting them with portfolio companies of the participating VC firms. The first cohort is expected to begin in early 2025, with the goal of placing at least 2,000 candidates into startup roles before the end of the year.
According to a 2024 survey by the European Cybersecurity Organization, 43% of startups that experienced a data breach went out of business within six months. Many early-stage companies rely on open-source tools and shared cloud infrastructure, which can introduce vulnerabilities if not properly configured.
"Startups cannot afford the CISO-level salaries offered by banks or Big Tech, but they are equally exposed to threats," said Dr. Elena Martens, cybersecurity lead at Berlin-based VC fund Lighthouse Ventures, one of the backers. "This program creates a pipeline of job-ready security engineers who understand the startup environment, lean, fast-moving, and often operating with legacy-free infrastructure."
The training covers three main tracks:
- Security Operations: Incident detection, SIEM tools, log analysis, and threat hunting
- Cloud and DevOps Security: Kubernetes hardening, IAM policies, secrets management, and CI/CD pipeline security
- Compliance and Governance: GDPR implementation, SOC 2 audits, vendor risk management, and data mapping
Participants who complete the program will earn a CyberStart certificate, which is being endorsed by the European Startup Network and several national cybersecurity agencies. The certificate is designed to be stackable toward more advanced certifications such as CISSP or OSCP.
The program initially launched in Germany, France, and the Benelux region, with plans to expand to Southern and Eastern Europe by mid-2026. Participating VCs include Lighthouse Ventures, Paris-based Elaia Partners, and Amsterdam-based Speedinvest.
European startups currently face an average of 7.2 months to fill a cybersecurity role, compared to 3.8 months for a software engineer. CyberStart's founders believe that reducing that gap to 2 months will significantly improve the security posture of the European startup ecosystem and reduce the number of breaches that force early-stage companies to shut down.
The program also aims to increase diversity in the cybersecurity field. Thirty percent of the training slots are reserved for women and underrepresented minorities, a move that organizers hope will bring fresh perspectives to security challenges common in startups.
CyberStart is not just a training program but a broader push to make cybersecurity a core competency for every startup founding team. Organizers plan to release a free online toolkit for non-technical founders to assess their security risks and a mentorship network that pairs CyberStart alumni with experienced CISOaaS (CISO as a Service) professionals.
"Cybersecurity is often an afterthought in the race to ship products and raise funding," said Martens. "We are building an ecosystem where security is a differentiator, not a burden."