Shopping List: Cybersecurity Acquisitions In 2016

Uploaded on 2016-03-30 in BUSINESS-Services-Financial, FREE TO VIEW, NEWS-Cybersecurity News

Last year saw several large IPOs in the cyber security sector, including Sophos and Rapid7. This year has already seen several big companies buying up smaller, privately held firms as they look to plug the gaps in their solutions.

Four big cyber security acquisitions that have already taken place this year - and why they happened.

1. IBM: Resilient Systems
When: 29 February
How much: Although neither party confirmed the amount involved, various reports suggested that the acquisition had cost IBM more than $100 million.

What: The Massachusetts-based company automates and orchestrates the processes required during cyber incidents. The platform provides a set of response playbooks for the different types of incidents, driven by a knowledge base of regulatory and compliance requirements.

Why: Alongside the acquisition, IBM announced the X-Force Incident Response Services unit, which is a consultancy arm working directly with clients to help them prepare for and mitigate cyber attacks. Within this setup, the Resilient Systems platform will be combined with the QRadar Security Intelligence Platform.

According to Bruce Schneier, CTO of Resilient Systems, his company's platform makes QRadar actionable, while QRadar makes Resilient Systems’ platform more powerful.

2. Infoblox: IID
When: 8 February
How much: $45 million
What: IID, based in Washington, collects threat data from thousands of sources such as law-enforcement agencies, Internet infrastructure providers, and open-source providers.

The threat research team verifies and aggregates this data to create threat intelligence that works with automation standards. This threat intelligence is then distributed to customers.

Why: Infoblox, which helps clients manage DNS, DHCP and IP addresses by alerting them of suspicious activity, will use the technology to provide more context-aware security by combining contextual network data with the federated threat intelligence and dedicated threat research team.

Infoblox claims to offer enterprises better operational control, which will allow network and security teams to prioritise threat response at scale, based on the context and risk. Infoblox will also be able to go beyond protecting on-premise devices to company-managed devices that are off-premise.
 
3. BlackBerry: Encription
When: 24 February
How much: Unknown
What: Encription is a UK-based cybersecurity firm, providing a range of services including penetration testing, training and forensics.

Why: Encription will form part of BlackBerry's new consulting practice, the Professional Cybersecurity Services, which will help organisations assess and thwart cybersecurity risks. It is split into four main services: strategic, technical, automotive & IOT and detection, testing & analysis.

Strategically, BlackBerry's move into services is an attempt to pivot away from its device business. While it is still best known as a handset manufacturer, it has struggled to compete with Apple and Samsung's high-end consumer-focused smartphones in the enterprise.

Part of BlackBerry's response to this was to create its first Android phone, combining security with the user experience benefits of Google's operating system.

A larger part has been to switch to providing software and services, a segment which has seen revenues more than double year-on-year to $162 million in the company's Q3 results.
 
4. FireEye: Invotas
When: 2 February
How much: Unknown
What: Invotas works in security automation and orchestration, allowing organisations to consolidate data from multiple sources.

Why: FireEye will integrate the technology into FireEye's platform, allowing customers to purchase security technology and consolidate this into a customised incident response plan.

FireEye will be able to unify the security product, threat intelligence and incident response elements of the FireEye platform within a single console. Enterprises will then be able to respond more quickly to attacks through automation.

FireEye wants to use the technology to help customers deal with shortages of resources by automating security processes through including intelligence in their operations. Invotas should allow organisations to quickly move from alert to remediation.
 
The high level of activity among the big players is in line with expectations. According to 451 Research's survey of technology investment bankers in December 2015, cybersecurity had displaced mobility as the area where M&A spending was expected to grow over the next year.

20 percent of the investment bankers surveyed expected 'substantially more' activity, while 52 percent anticipated 'somewhat more' activity.

Part of the focus seems to be on services around cyber security rather than the technology itself. Both IBM and BlackBerry are using their new acquisitions to build new consultancy services.

Two of the acquisitions above, IBM's and FireEye's, focused on automating responses to cyber-attacks, perhaps indicating a keenness among organisations to move away from hiring security staff, who are currently in very high demand.

CBR: http://bit.ly/1UzSOJm

« Cyber Criminal Underground In The Deep Web
New British Cybersecurity Centre Has A Focus On Financial Services »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ANS Group

ANS Group

ANS are a strong team of straight-talking tech and business experts. Our mission is to make digital transformation accessible to all.

Joe Security

Joe Security

Joe Security specializes in the development of automated malware analysis systems for malware detection and forensics.

SRI International

SRI International

SRI International is a research institute performing client-sponsored R&D in a broad range of study areas including computing and cybersecurity.

National Defense Industry Association (NDIA) - USA

National Defense Industry Association (NDIA) - USA

The National Defense Industrial Association Cyber Division contributes to US national security by promoting interaction between the cyber defense industry, government and military.

European Recruitment

European Recruitment

European Recruitment is an award-winning, international recruitment agency specialising in niche technology areas including Cyber Security.

Communications Authority of Kenya

Communications Authority of Kenya

The Authority is responsible for facilitating the development of the information and communications sectors including; broadcasting, telecommunications, electronic commerce and cybersecurity.

Capy

Capy

Capy's SaaS-based security solutions will protect your website from bots, spam, humans and more.

Bace Cybersecurity Institute (BCI)

Bace Cybersecurity Institute (BCI)

Bace Cybersecurity Institute focuses on understanding, empowering and taking action across four critical areas driving continual improvement toward a safer, more secure cyber world.

Charities Security Forum (CSF)

Charities Security Forum (CSF)

The Charities Security Forum is the premier membership group for information security people working for charities and not-for-profits in the UK.

Avancer Corporation

Avancer Corporation

Avancer Corporation is a multi-system integrator focusing on Identity and Access Management (IAM) Technology. Founded in 2004.

BluescreenIT (BIT)

BluescreenIT (BIT)

BluescreenIT is an IT Security Consultancy and IT and Cyber Security Training company supporting industry, local authorities, MoD and governmental IT departments.

Menaya

Menaya

Menaya provide Ethical Hackers for leading companies while also providing cyber security solutions to help major infrastructures protect against cyber crime.

Tryaq

Tryaq

Tryaq are a group of cybersecurity experts and enthusiasts who share the mission to make the world feel safer online.

Washington Technology Solutions (WaTech)

Washington Technology Solutions (WaTech)

WaTech operates the state’s core technology infrastructure – the central network and data center, provides strategic direction for cybersecurity and protects state networks from growing cyber threats.

Knostic

Knostic

Knostic is an early stage startup developing a risk management and governance platform designed for enterprise large language models (LLM).

Bytium

Bytium

Bytium provides top-tier IT services and solutions designed to empower everyone, from individuals to global corporations. Specializing in cybersecurity and proactive IT management.