Sublime Security is an adaptive, AI-powered email security platform that combines transparent Detection-as-Code with autonomous threat engineering to stop Business Email Compromise (BEC), phishing, malware, and account takeover attacks. The platform features Message Query Language (MQL), the first universal domain-specific language for email security, enabling security teams to write, test, and deploy custom detections in minutes rather than months, similar to how osquery works for endpoints or YARA for binaries.

Sublime's multi-agent AI system includes the Autonomous Security Analyst (ASA) for automated triage of user-reported emails and the Autonomous Detection Engineer (ADÉ) that analyzes attack patterns and generates new detection rules. The platform combines AI-driven detection using Natural Language Understanding (NLU), Computer Vision, OCR, and QR code analysis with behavioral analysis and threat hunting capabilities. Unlike black-box solutions, every detection is human-readable and auditable, with approximately 200 community-contributed detections published on GitHub.

Founded in Washington, DC in 2019, Sublime serves Spotify, Reddit, Brex, Elastic, and Ramp, growing entirely through word-of-mouth without cold outreach or paid advertising. The company raised $60 million Series B in December 2024 led by IVP, bringing total funding to $93.8 million. Sublime offers a self-hosted Core platform free at any scale, with the first 100 inboxes free in its SaaS environment.