The 20 Coolest Risk, Threat Intelligence And Security Operations Companies Of 2022: The Security 100

From protecting assets and quantifying risk to automating security operations, here’s a look at the 20 coolest risk, threat intelligence and security operations companies.

Strengthening Security Operations

The need for continuous monitoring and incident response, enhanced regulatory requirements, and the issues associated with maintaining certifications and managing logs have driven demand for security operations. The SIEM market is expected to grow at a compound annual growth rate of 6.8 percent over the next several years, going from $3.94 billion in 2020 to $6.44 billion in 2027, Valuates Reports found.

Six companies on our list got major funding rounds, including: Arctic Wolf, which got $150 million on a $4.3 billion valuation; Axonius, which got $100 million on a $1 billion valuation; BitSight, which got $250 million on a $2.4 billion valuation; Devo, which raised $250 million on a $1.5 billion valuation; Exabeam, which raised $200 million on a $2.4 billion valuation; and SecurityScorecard, which raised $180 million.

Two companies in the security operations, risk and threat intelligence space are going public, with KnowBe4 raising $152 million in April initial public offering that valued the security awareness training vendor at $2.6 billion. And threat intelligence vendor ZeroFox plans to go public in the first half of 2022 at a $1.4 billion valuation by merging with special purpose acquisition company L&F Acquisition Corp.

As part of CRN’s 2022 Security 100, here’s a look at the 20 coolest risk, threat intelligence and security operations companies.

Arctic Wolf

Nick Schneider

President, CEO

Arctic Wolf Managed Security delivers security awareness training, phishing simulation and account takeover monitoring as a concierge service. The company raised $150 million in July to grow its presence in the orchestration, remediation, deception and cloud security spaces through acquisitions.

AT&T Cybersecurity

John Stankey


AT&T Managed Endpoint Security with SentinelOne offers comprehensive protection against ransom ware, while also detecting threats in an enterprise network. AT&T Threat Detection and Response for Government uses the automation capabilities of the AT&T Unified Security Management platform to detect and respond to threats.


Dean Sysman

Co-Founder, CEO

Axonius in March closed a $100 million funding round as the cybersecurity asset management startup looks to scale growth globally and expand its platform. The company in November partnered with Amazon Inspector to help mutual customers understand and manage vulnerabilities across their AWS infrastructure.


Steve Harvey


BitSight in September purchased cyber-risk assessment startup VisibleRisk and received a $250 million investment from Moody’s to help customers identify and quantify risk. The company said it planned to create a Risk Solutions division to help chief risk officers, CISOs, C-suite executives and boards of directors financially quantify risk.


Jim Rosenthal

Co-Founder, CEO

In May, BlueVoyant launched its Modern Security Operations Center with a portfolio of consulting, implementation and managed detection and response services powered by Microsoft technology. In October it acquired 202 Group to enable government entities to continuously monitor their supply chains for risks.

Devo Technology

Marc van Zadelhoff


The Devo Content Stream gives security teams instant, continuous access to prebuilt alerts and threat intelligence that can be operationalized in seconds. The company in October raised $250 million to boost the speed and scalability of its platform and make it easier for third parties to develop content and applications.


Michael DeCesare

President, CEO

Exabeam Fusion XDR and Exabeam Fusion SIEM solve threat detection, investigation and response without disrupting a customer’s existing technology stack. The company in June raised $200 million and brought in former Forescout CEO Michael DeCesare to lead the security analytics and automation vendor.

IBM Security

Arvind Krishna

Chairman, CEO

The IBM Security Hybrid Cloud Blueprint helps organizations modernize their security programs with visibility and control over sensitive data and activities as they migrate to the cloud. The company in November agreed to purchase ReaQta to expand in the extended detection and response market.


Stu Sjouwerman

Founder, CEO

KnowBe4 Compliance Plus helps risk, compliance and HR executives struggling with lack of employee engagement around compliance training. The company in November purchased security awareness startup SecurityAdvisor for $80 million to better identify and correlate human-behavior-driven security alerts.


Kevin Mandia

Board Director, CEO

Mandiant Cyber Risk Management Services equips executives, boards of directors and security leaders with data and advice to build effective and balanced security programs. Mandi ant Ransomware Defense Validation allows ransomware to be tested to determine whether a customer’s existing controls can stop an attack.


Corey Thomas

Chairman, CEO

Rapid7 purchased Velociraptor for $3 million in April to give digital forensics and incident response workers an efficient way to hunt for and monitor malicious activities across endpoints. It spent $335 million in July to acquire IntSights and give customers a unified view into attack surface monitoring and proactive threat mitigation.

Recorded Future

Christopher Ahlberg

Co-Founder, CEO

Recorded Future in March acquired fraud analytics provider Gemini Advisory for $52 million to provide organizations with a critical view into the criminal underground. The company in January purchased SecurityTrails for $65 million to help businesses manage key assets and shadow infrastructure.


Aleksandr Yampolskiy

Co-Founder, CEO

Security Scorecard in March closed a $180 million Series E funding round to expand globally, invest across new product lines and broaden its partner ecosystem. The company in June rolled out the SecurityScorecard Sentinel scanning engine that continuously monitors the global IP address space.


Sachin Nayyar

Co-Founder, CEO

Securonix Jupiter lets ccustomers detect and respond to advanced threats more quickly and deliver better time-to-value for security analysts. Securonix Open XDR provides the detection and response capabilities needed to respond swiftly to threats across endpoints, networks and hybrid cloud environments.


Bill McDermott

President, CEO

ServiceNow in May partnered with Microsoft to help security operations teams make smarter decisions across security planning, management and incident response. The process is simplified by deploying central platforms for detection and response, which cuts errors by automating and orchestrating incident response workflows.


Graham Smith

Interim CEO, Chair

Splunk Security Cloud delivers advanced security analytics, automated security operations and integrated threat intelligence with an open ecosystem. The company rolled out updates to drive digital transformation by providing the security visibility needed to accelerate time to detection, investigation and response.

Sumo Logic

Ramin Sayar

President, CEO

Sumo Logic bought DFLabs in March for $41.7 million to help security operations centers automate and orchestrate security operations and incident response processes. The company purchased Sensu in June for $32.7 million to give customers an affordable and scalable tool for infrastructure and application monitoring.


Amit Yoran

Chairman, CEO

Tenable purchased startup Accurics for $160 million to remediate policy violations and breach paths before infrastructure is provisioned. The company has rolled out new features for Terrascan to mitigate risk before infra structure is provisioned by embedding security into the DevOps tooling, pipeline and supply chains.


Jeff Hudson


Venafi delivers a software only offering that protects private keys when they are distributed to cloud ser vices or used in runtime, even in untrusted, shared cloud environments. The tool is built on Intel SGX and helps protect machine identities while reducing the cost associated with traditional hardware security modules.


James Foster


ZeroDF bought dark web threat intelligence company Vigilante in July to capitalize on its experience in targeted threat hunting and cultivating trusted personas in the underground economy. In December it unveiled plans to go public at a $1.4 billion valuation by merging with a special purpose acquisition company. operations. From protecting assets and quantifying risk to automating security operations, here’s a look at the 20 coolest security operations, risk and threat intelligence companies.