Thursday, April 18 2024

Devo Technology, the cloud-native logging and security analytics company, today announced the acquisition of Kognos, the autonomous threat hunting pioneer. Financial terms were not disclosed. Kognos CEO Rakesh Nair, the former Head of Engineering at Netwitness/RSA, will join Devo as Vice President, Engineering.

This acquisition combines Devo, the industry’s most scalable cloud-native logging and security analytics platform, with Kognos to deliver on what Devo calls the “autonomous SOC.” Devo collects data from across the entire attack surface, from any source, at massive scale, and provides the advanced analytics and detections that feed directly into the Kognos AI engine. Kognos knows the questions and data analysts use and applies AI to automatically triage and investigate alerts and create attack stories—a key component of the autonomous SOC. This powerful combination automates key aspects of the threat lifecycle—detection, triage, investigation and hunting—eliminating the repetitive manual tasks that lead to analyst burnout and SOC inefficiency.

“For analysts to have any chance of keeping up with today’s adversaries, we need to shift the SOC’s focus from weeding through thousands of alerts every day to actionable attack stories—the full sequence of steps taken to carry out an attack and an understanding of its impact,” said Devo CEO Marc van Zadelhoff. “Kognos does exactly this with AI that understands attack scenarios in real-time and anticipates the questions analysts ask of their data. Pairing Kognos with Devo enables analysts to move beyond focusing on just alerts and empowers them to take quick, decisive action against threats.”

It’s no secret that security analysts have been grappling with a rapidly expanding threat landscape that has led to analyst burnout and increasing turnover rates—the third annual Devo SOC Performance Report found this reality causing more than 60% of respondents to consider changing careers or leaving their jobs. By building an autonomous SOC—with complete visibility, automation, analytics, and open access to community expertise and content—security leaders can retain talent and combat threats.

“We set out to give analysts an incredibly efficient ‘second brain’ to not just automate, but amplify their ability to rapidly hunt the most pressing threats to an organization,” said Nair. “By becoming part of Devo, we get to fuel the Kognos engine with the best and most comprehensive data and visibility, and give customers unprecedented optimization of their security teams and maximize their security investments.”

Rakesh Nair, chief executive officer at Kognos
Previous

alphaMountain.ai Raises $2.7M Seed Round FOR CYBER PROTECTION PLATFORM

Next

Sophos Acquires SOC.OS to Advance threat detection capabilities

Check Also

Widget

Don’t Miss

The words Endpoint Detection and Response (EDR) on a green background with lines on the right side of the image

Best Endpoint Detection & Response Platforms

Lara Oporto

Endpoint Detection & Response platforms continuously monitor endpoints for signs of malicious activities, such as unauthorized access or unusual behavior, enabling rapid detection and response to potential cyber threats to safeguard organizational assets. What is Endpoint Detection and Response and how does it work? Endpoint Detection and Response (EDR) is a cornerstone in modern cybersecurity […]

AT&T AlienVault Products Review: OSSIM vs USM

Ellie Buscemi

AlienVault is now the technological basis for AT&T AlienLabs and provides multiple products for different companies’ cybersecurity needs. What AT&T AlienVault Products are Available? In December 2021, CISOstack reported that AT&T intended to acquire AlienVault to expand its cybersecurity offerings to more businesses. Two years later, AlienVault-based offerings make up a large portion of AT&T’s […]

Photo by Simon Kadula on Unsplash.

Navigating Manufacturing IIoT Cybersecurity Challenges

John Powers

Guarding the Gears: Government policy and industry collaboration to mitigate cyberthreats to manufacturers. The smart factory is on the rise. Production lines equipped with advanced sensors can monitor equipment health in real-time and predict potential issues before they disrupt operations. Temperature and humidity sensors can ensure the optimal environment for delicate manufacturing processes. RFID-enabled asset […]

Best Microsegmentation Software

Ellie Buscemi

Microsegmentation allows a company to divide digital assets into smaller, more secure groups, which makes it harder for cybercriminals to take over a company’s data center. What is Microsegmentation? Microsegmentation refers to cyber professionals building layers of cybersecurity protection between groups of digital assets or individual cyber assets. Adding these layers inside instead of only […]

Best Breach and Attack Simulation Platforms

Ellie Buscemi

Breach and attack simulation (BAS) platforms allow companies to see weaknesses in their cyber infrastructures before a malicious hacker can exploit them. What Is BAS – Breach and Attack Simulation? Breach and attack simulation (BAS) is an approach to cybersecurity that uses advanced tools to imitate the attacks used by cybercriminals on companies’ digital infrastructure. […]

Ofer Ben-Noon and Ohad Bobrov

Palo Alto Networks to Acquire Talon

Ellie Buscemi

On Monday, Palo Alto Networks agreed to acquire Israeli startup Talon Cyber Security, an enterprise browser platform. The deal values Talon at between $600 to $700 million, according to The Information. Palo Alto will integrate Talon’s enterprise browser solution into its Prisma SASE product. The acquisition comes among a wave of acquisitions and releases involving […]