Devo Technology, the cloud-native logging and security analytics company, today announced the acquisition of Kognos, the autonomous threat hunting pioneer. Financial terms were not disclosed. Kognos CEO Rakesh Nair, the former Head of Engineering at Netwitness/RSA, will join Devo as Vice President, Engineering.
This acquisition combines Devo, the industry’s most scalable cloud-native logging and security analytics platform, with Kognos to deliver on what Devo calls the “autonomous SOC.” Devo collects data from across the entire attack surface, from any source, at massive scale, and provides the advanced analytics and detections that feed directly into the Kognos AI engine. Kognos knows the questions and data analysts use and applies AI to automatically triage and investigate alerts and create attack stories—a key component of the autonomous SOC. This powerful combination automates key aspects of the threat lifecycle—detection, triage, investigation and hunting—eliminating the repetitive manual tasks that lead to analyst burnout and SOC inefficiency.
“For analysts to have any chance of keeping up with today’s adversaries, we need to shift the SOC’s focus from weeding through thousands of alerts every day to actionable attack stories—the full sequence of steps taken to carry out an attack and an understanding of its impact,” said Devo CEO Marc van Zadelhoff. “Kognos does exactly this with AI that understands attack scenarios in real-time and anticipates the questions analysts ask of their data. Pairing Kognos with Devo enables analysts to move beyond focusing on just alerts and empowers them to take quick, decisive action against threats.”
It’s no secret that security analysts have been grappling with a rapidly expanding threat landscape that has led to analyst burnout and increasing turnover rates—the third annual Devo SOC Performance Report found this reality causing more than 60% of respondents to consider changing careers or leaving their jobs. By building an autonomous SOC—with complete visibility, automation, analytics, and open access to community expertise and content—security leaders can retain talent and combat threats.
“We set out to give analysts an incredibly efficient ‘second brain’ to not just automate, but amplify their ability to rapidly hunt the most pressing threats to an organization,” said Nair. “By becoming part of Devo, we get to fuel the Kognos engine with the best and most comprehensive data and visibility, and give customers unprecedented optimization of their security teams and maximize their security investments.”