Sophos, a provider of cybersecurity solutions, has acquired Arco Cyber, a UK-based cybersecurity assurance company. The acquisition is intended to support Sophos’ CISO Advantage initiative, helping organisations strengthen cybersecurity strategy and governance.
Through this integration, Sophos can offer scalable capabilities across different organisational maturity levels, using its global partner ecosystem. CISO Advantage combines agentic AI, integrated platforms, and human oversight to provide real-time insights into security controls.
Arco Cyber will contribute by continuously validating security controls, mapping risks to compliance frameworks, and delivering executive-ready insights for decision-making. The initiative also supports managed service providers (MSPs) and managed security service providers (MSSPs) in offering CISO-level guidance as a service.
With many organisations lacking a Chief Information Security Officer (CISO), Sophos aims to provide practical guidance for risk management and decision-making. Arco Cyber’s technology will be integrated into Sophos Central, enhancing advisory services and partner-delivered security offerings.
This collaboration reflects the growing focus on combining detection, assurance, and risk-based measurement to support effective cybersecurity governance. Matt Helling, CEO of Arco Cyber, highlights that the partnership is designed to help organisations manage cybersecurity as a structured, defensible business discipline.
