CrowdStrike To Acquire Onum For Next-Gen SIEM Expansion

The cybersecurity giant says the planned acquisition aims to bring enhanced data pipeline and filtering capabilities to its fast-growing SIEM platform.

CrowdStrike announced Wednesday it has reached a deal to acquire a startup that provides data pipeline management, Onum, to boost its Falcon Next-Gen SIEM offering.

Terms of the acquisition deal were not disclosed.

Onum was founded in 2022 by Pedro Castillo, who had previously founded Devo, a well-known provider of cloud-native SIEM (security information and event management). In 2024, Onum took part in the AWS and CrowdStrike Cybersecurity Startup Accelerator for Europe, Middle East and Africa.

For CrowdStrike, the planned addition of Onum will bring capabilities for both data pipeline management as well as data filtering, the company said in a news release.

The combination of Onum’s technology with CrowdStrike’s Falcon Next-Gen SIEM platform will enable the vendor to “stream high-quality, filtered data directly into the platform to drive autonomous cybersecurity at scale,” said CrowdStrike co-founder and CEO George Kurtz in a quote included in the release.

The acquisition comes during a year when Next-Gen SIEM has been a key focus area for expansion at CrowdStrike. In an interview with CRN in March, Kurtz pointed to a major opportunity for solution and service provider partners when it comes to Next-Gen SIEM.

“Having the partners to help transition customers from their legacy, people-intensive processes — to a much more automated and AI-led process — is critically important,” he told CRN at the time. “There’s big opportunity and big dollars as companies look to build practices [valued in the] hundreds of millions of dollars” around products such as Next-Gen SIEM.

That same month, CrowdStrike unveiled its new Services Partner Program, which involves the company relying on partners to predominantly deliver the services around its fast-growing Falcon Next-Gen SIEM offering.

The company is taking a “partner-first approach on services” for Next-Gen SIEM with the program, in a move to more heavily depend on the channel for services ranging from consulting and implementation to managed services around SIEM, said Daniel Bernard, chief business officer at CrowdStrike, in an interview at the time.