Automated endpoint security corporation SentinelOne has obtained Scalyr, a log management and details analytics platform, for $155 million in fairness and funds.
Scalyr, started by previous Google executives Steve Newman and Steven Czerwinski, gives a program-as-a-service answer that incorporates log aggregation, lookup and analysis, server metrics, dashboards and alerts and external checking. Its main celebration database attribute, in accordance to the company’s site, is developed to pull facts from a large range of resources, which include an agent put in specifically onto consumer servers to collect logs and server metrics, Scalyr’s own screens that can probe servers or import Amazon cloud metrics and an SSL-based mostly Application Programming Interface.
SentinelOne promises the technology will permit it to get rid of most data schema needs and provide an XDR system that can ingest logs and other unstructured information in real time from just about any resource or database, anything the company is eager to incorporate into its prolonged detection and reaction platform.
SentinelOne Chief Working Officer Nick Warner said in an job interview that the “magic” powering Scalyr’s answer lies in its capability to query unstructured information as its remaining indexed, one thing that could help save valuable time in the course of danger searching and detection pursuits. He also mentioned organization executives were being attracted to a number of core abilities in Scalyr’s solution that they believe will aid differentiate them in the automatic detection and reaction marketplace: namely its ability to ingest details from any resource, regardless of format or form, approach that info at the similar variety of pace as attackers and do it at scale.
“We evaluated the current market and it turned apparent to us quite promptly that Scalyr was the only [company] that existed in the globe that was acquirable and had this kind of technology,” he mentioned.
Warner stated in addition to incorporating Scalyr’s tech into Singularity, SentinelOne’s enterprise security platform, SentinelOne plans to hold all of the close to 50 Scalyr personnel on staff, wherever they will proceed to operate as a independent small business unit serving present prospects “over the quick time period and extended term.”
The corporation has an intense timeframe for integrating Scalyr’s capabilities into Singularity, declaring clients must count on to see “a big, big evolution” in prolonged detection and response abilities by summertime 2021.
Bigger business buyers, Warner said, “really discussed to us that at the end of the information, security is a knowledge problem, and if you can crack the code on analyzing, adjusting and using action on knowledge far better and more quickly than any individual else, then that is heading to be an tremendous advantage for us in the market…and that’s what we come to feel like we’re solving for with Scalyr.”
Handling and processing voluminous log data is generally cited as a single of the most tricky duties for firms on the reduce close of the security maturity spectrum. Alyssa Miller, Business Information and facts Security Officer for S&P World wide Scores, informed SC Media final thirty day period that corporations who are much less security-focused routinely undervalue the huge quantity of data their IT assets deliver on a day by day foundation and normally absence a technique for processing it.
“If you are likely to do this appropriate from the get started, you would genuinely have to be contemplating from working day 1 as you start off to spin up a network, ‘how am I likely to regulate all of the log knowledge that arrives from this network?’” she said. “And which is where no a single ever begins, ever. Which is the very last thing someone’s contemplating about when they’re going to commence creating a network.”
In the meantime, a number of security vendors told SC Media late past calendar year that a absence of standardized data formats is a person of the major inhibitors avoiding providers from further automating small-stage menace intelligence facts sorting. In the SANS 2020 Once-a-year Cyber Threat Intelligence survey, nearly fifty percent (47.8%) of contributors cited deficiency of interoperability and automation issues as roadblocks to employing powerful risk intelligence programs.
Some elements of this write-up are sourced from: