2016 Security 100: 20 Coolest SIEM And Threat Detection Vendors

Coolest SIEM And Threat Detection Vendors

With an escalating amount of threats hitting businesses every day, the importance of security incident and event management and threat detection technologies are on the rise. The numbers show it: The SIEM market is expected to hit $4.54 billion by 2019, up from around $2.47 billion in 2014, according to research firm MarketsandMarkets. The SIEM and threat detection vendors on CRN's inaugural Security 100 list are all looking bring a piece of that market opportunity to their partners, with a range of traditional, next-generation and just downright cool solutions. Take a look at 20 of the coolest SIEM and threat detection vendors from this year's Security 100 list.

Alert Logic

Gray Hall, Chairman, President, CEO

Headquarters: Houston

Aimed at the small- and midsize-business market, Alert Logic's security-as-a-service solutions look to fill the gaps around cloud security, network threat detection, Web application security and vulnerability management. The company's 24x7 monitoring and log management capabilities help businesses stay on top of the threats in their environment.

AlienVault

Barmak Meftah, President, CEO

Headquarters: San Mateo, Calif.

AlienVault offers a Unified Security Management platform, as well as a large crowd-sourced threat-intelligence network called Open Threat Exchange, both geared toward midmarket and smaller enterprise companies. The company landed $52 million in funding in August.

Cybereason

Lior Div, Co-Founder, CEO

Headquarters: Boston

Cybereason is an endpoint detection and response company that was co-founded by former Unit 8200 members, Israel's equivalent to the NSA. The company's solution is a "super analyst in a box," providing full visibility by identifying the root cause, timeline, endpoints affected and tools behind an attack. It landed $25 million in funding in May.

Cyphort

Manoj Leelanivas, CEO

Headquarters: Santa Clara, Calif.

Founded by former government intelligence agency officials and network security company veterans, Cyphort provides advanced threat protection solutions that guard customers against zero-day and targeted attacks. The Cyphort Platform uses behavioral analytics, intelligence and malware detection to spot attacks across virtual, physical and cloud infrastructure.

EiQ Networks

Vijay Basani, Co-Founder, CEO

Headquarters: Boston

EiQ Networks offers a series of security solutions aimed at helping midmarket customers get their security posture up to par with the enterprise. The SaaS service includes critical security controls auditing, co-managed SIEM and log management, continuous vulnerability management, 24/7 security monitoring, incident analysis and remediation guidance, and compliance reporting.

Exabeam

Nir Polak, Co-Founder, CEO

Headquarters: San Mateo, Calif.

Exabeam is working to "put the brain on SIEM" technology, using user behavior analytics to build patterns and pinpoint behavior that is out of the ordinary. The company recently landed $25 million in VC funding, some of which will be put toward channel investments.

FireEye

Dave DeWalt, Chairman, CEO

Headquarters: Milpitas, Calif.

One of the heavyweights in the security industry, FireEye led the way into the advanced threat protection market with its Threat Prevention Platform. It has since expanded its line to include endpoint, mobile and file security, as well as a robust security services business through its Mandiant acquisition.

Fortscale

Idan Tendler, Co-Founder, CEO

Headquarters: San Mateo, Calif.

Fortscale is one of the larger startups looking to capitalize on a growing trend in the security market for user behavior analytics (UBA) technologies. The startup has garnered high praise, most recently being named as a finalist in the 2016 RSA Conference Innovation Sandbox competition. It started a push into the channel last fall and hopes to embrace a channel-first go-to-market stance.

Hewlett Packard Enterprise

Meg Whitman, CEO

Headquarters: Palo Alto, Calif.

HP Security has been ramping up its data and analytics push in an effort to arm its SIEM solution ArcSight with stronger security capabilities, launching multiple new solutions in recent months. HP Security also reinforced its commitment to the channel, moving thousands of direct accounts over to partners in a move that should shift $30 million of sales to the channel.

Huntsman Security

Peter Woollacott, Co-Founder, CEO

Headquarters: Sydney, Australia

Huntsman Security launched into the U.S. market last April from Australia, where it is known as Tier-3. The Huntsman Unified Console aggregates the output of SIEM environments from multiple vendors, including Splunk, HPE ArcSight, Q1 Labs and Huntsman Security's own technology, into a single dashboard for a consolidated view of enterprise threats.

Intel

Christopher Young, GM, Intel Security

Santa Clara, Calif.

Intel Security's McAfee Enterprise Security Manager is a "leader" in the Gartner Magic Quadrant for SIEM technology. However, it is only one part of a large security portfolio, which Intel Security has been focusing on under a new strategy around the full protection, detection and correction life cycle.

LightCyber

Gonen Fink, CEO

Headquarters: Los Altos, Calif.

LightCyber is an up-and-coming security startup that provides an easy-to-use breach-detection and remediation solution called Active Breach Detection. Since launching two years ago, the company has already gained attention from some of security's biggest investors, including a recent personal equity investment from renowned security investor Shlomo Kramer.

LogRhythm

Andy Grolnick, President, CEO

Boulder, Colo.

LogRhythm brings together security intelligence and analytics into a single SIEM platform to help companies detect, prioritize and deal with security threats. The company most recently expanded its offerings by adding the Endpoint Threat Analytics Module for endpoint behavioral anomaly detection.

Rapid7

Corey Thomas, President, CEO

Headquarters: Boston

Rapid7 was one of the few security vendors to take the IPO plunge in 2015, launching into the public market in July. The company offers a security data and analytics solutions to better detect attacks and provide visibility into vulnerabilities. The company also offers security advisory services and incident response solutions.

SafeBreach

Guy Bejerano, Co-Founder, CEO

Headquarters: Sunnyvale, Calif.

SafeBreach looks to quantify an organization’s risk of a successful attack and launch simulated attacks to test its readiness. Similar in principle to penetration testing, SafeBreach differentiates itself by providing continuous visibility into weaknesses and providing actionable insights to improve a company's security posture.

SolarWinds

Kevin Thompson, CEO

Headquarters: Austin, Texas

As part of its IT management software business, SolarWinds offers a portfolio of security solutions that includes a SIEM, patch manager, secure file transfer, user device tracker, and a network configuration manager. The company says it differentiates itself with an affordable price range and easy-to-use solutions.

Sumo Logic

Ramin Sayar, CEO

Headquarters: Redwood City, Calif.

Sumo Logic looks to bring the power of big data down to security. The company's cloud-based machine- learning and analytics capabilities help companies better protect their data and meet compliance standards. Sumo Logic announced $80 million in funding in 2015.

TrapX Security

Gregory Enriquez, CEO

Headquarters: San Mateo, Calif.

TrapX Security uses deception technology to detect and protect against zero-day and APT attacks. The company's DeceptionGrid solution works by hiding malware traps throughout the environment, triggering an alert and automatic isolation if an attacker is found. The startup has been working with the channel since the launch of its partner program in 2014.

Vectra Networks

Hitesh Sheth, President, CEO

Headquarters: San Jose, Calif.

Vectra Networks uses data analytics and machine learning to identify cyberattacks as they are happening. The company's X-Series is deployed in passive mode near the WAN gateway and takes a snapshot of the network and then monitors it for threat indicators, such as a cybercriminal's lateral movement to a server containing sensitive data.

Vijilan Security

Rogerio Reis, CEO

Headquarters: Fort Lauderdale, Fla.

Vijilan Security launched in May with a solution to help MSPs move into security. The company's channel-only flagship offering ThreatRespond collects log and configuration data and sends it to a SIEM in the cloud, where it is then analyzed by Vijilan security engineers. If a problem is found, Vijilan will walk MSP partners through remediation.