‘Autonomous SOC’ on the cards after Devo acquires AI-powered security automation innovator
- Published: Friday, 22 April 2022 08:25
Devo Technology, the cloud-native logging and security analytics company, has announced the acquisition of Kognos, the autonomous threat hunting pioneer. Financial terms were not disclosed. The acquisition aims to deliver on what Devo calls the ‘autonomous SOC’.
Devo collects data from across the entire attack surface, from any source, at massive scale, and provides the advanced analytics and detections that feed directly into the Kognos AI engine. Kognos knows the questions and data analysts use and applies AI to automatically triage and investigate alerts and create attack stories—a key component of the autonomous SOC. This powerful combination automates key aspects of the threat lifecycle—detection, triage, investigation and hunting—eliminating the repetitive manual tasks that lead to analyst burnout and SOC inefficiency.
“For analysts to have any chance of keeping up with today’s adversaries, we need to shift the SOC’s focus from weeding through thousands of alerts every day to actionable attack stories—the full sequence of steps taken to carry out an attack and an understanding of its impact,” said Devo CEO Marc van Zadelhoff. “Kognos does exactly this with AI that understands attack scenarios in real-time and anticipates the questions analysts ask of their data. Pairing Kognos with Devo enables analysts to move beyond focusing on just alerts and empowers them to take quick, decisive action against threats.”