Thursday, July 18 2024

Devo Technology, the cloud-native logging and security analytics company, today announced the acquisition of Kognos, the autonomous threat hunting pioneer. Financial terms were not disclosed. Kognos CEO Rakesh Nair, the former Head of Engineering at Netwitness/RSA, will join Devo as Vice President, Engineering.

This acquisition combines Devo, the industry’s most scalable cloud-native logging and security analytics platform, with Kognos to deliver on what Devo calls the “autonomous SOC.” Devo collects data from across the entire attack surface, from any source, at massive scale, and provides the advanced analytics and detections that feed directly into the Kognos AI engine. Kognos knows the questions and data analysts use and applies AI to automatically triage and investigate alerts and create attack stories—a key component of the autonomous SOC. This powerful combination automates key aspects of the threat lifecycle—detection, triage, investigation and hunting—eliminating the repetitive manual tasks that lead to analyst burnout and SOC inefficiency.

“For analysts to have any chance of keeping up with today’s adversaries, we need to shift the SOC’s focus from weeding through thousands of alerts every day to actionable attack stories—the full sequence of steps taken to carry out an attack and an understanding of its impact,” said Devo CEO Marc van Zadelhoff. “Kognos does exactly this with AI that understands attack scenarios in real-time and anticipates the questions analysts ask of their data. Pairing Kognos with Devo enables analysts to move beyond focusing on just alerts and empowers them to take quick, decisive action against threats.”

It’s no secret that security analysts have been grappling with a rapidly expanding threat landscape that has led to analyst burnout and increasing turnover rates—the third annual Devo SOC Performance Report found this reality causing more than 60% of respondents to consider changing careers or leaving their jobs. By building an autonomous SOC—with complete visibility, automation, analytics, and open access to community expertise and content—security leaders can retain talent and combat threats.

“We set out to give analysts an incredibly efficient ‘second brain’ to not just automate, but amplify their ability to rapidly hunt the most pressing threats to an organization,” said Nair. “By becoming part of Devo, we get to fuel the Kognos engine with the best and most comprehensive data and visibility, and give customers unprecedented optimization of their security teams and maximize their security investments.”

Rakesh Nair, chief executive officer at Kognos
Previous

alphaMountain.ai Raises $2.7M Seed Round FOR CYBER PROTECTION PLATFORM

Next

Sophos Acquires SOC.OS to Advance threat detection capabilities

Check Also

Widget

Don’t Miss

Sevco Security Platform Product Review

Ellie Buscemi

What is the Sevco Security Platform? The Sevco Security Platform is a cyber asset attack service management (CAASM) product that focuses on aggregating and correlating data from across a company’s cybersecurity infrastructure to give cybersecurity professionals a better sense of what the company’s infrastructure looks like as a whole. The platform’s sources include a company’s […]

Cyber Deals: Huntress, Cyberhaven, and SpyCloud

CISOstack

Cybersecurity Surge: Top Funding Rounds and Strategic Acquisitions Fuel Growth in AI, Cloud Security, and Threat Prevention Solutions

Fidelis Elevate: A Deep Dive

Ellie Buscemi

What is Fidelis Elevate? Fidelis Elevate is an open extended detection and response (open XDR) solution focusing on network protection, endpoint security, and cyber attacker deception. The platform aims to protect various elements of a company’s infrastructure, such as devices and servers while tracking suspicious behavior and preventing access to cyber criminals. What features does […]

Partially closed laptop screen

Best Extended Detection and Response (XDR) Solutions

Lara Oporto

What is Extended Detection and Response and how does it work? Extended Detection and Response (XDR) is a cybersecurity system that gathers information from different places like computers, networks and emails. Unlike other security tools that focus on one area like computers or networks, XDR looks at everything together. The comprehensive approach helps to find […]

Close up of computer chip

Best Managed Detection and Response (MDR) Solutions

Lara Oporto

What is Managed Detection and Response? Managed Detection and Response (MDR) is a cybersecurity service that provides continuous monitoring, threat detection and incident response capabilities. MDR achieves these capabilities through the deployment of advanced technologies such as machine learning and behavioral analytics as well as analysis from security professionals. MDR is a cybersecurity service that […]

Best Hyperconverged Infrastructure Software

Ellie Buscemi

What is Hyperconverged Infrastructure and how does it work? Hyperconverged infrastructure (HCI) is a software that provides computing, storage and network operations for a company from a single point on a company’s hardware. Originally, computing, storage and network operations were divided in a company’s hardware infrastructure and potentially provided by separate vendors with different management […]