in ,

Incident Response | Top Companies Providing Incident Response Solutions

Define: Incident management?

An incident is an event that could lead to loss of, or disruption to, an organization’s operations, services or functions. Incident management (IcM) is a term describing the activities of an organization to identify, analyze, and correct hazards to prevent a future re-occurrence. These incidents within a structured organization are normally dealt with by either an incident response team (IRT), an incident management team (IMT), or Incident Command System (ICS). Without effective incident management, an incident can disrupt business operations, information security, IT systems, employees, customers, or other vital business functions.

(Source)

Top Incident Response Companies and Solutions

This article showcases Threat.Technology’s top picks for the best Incident Response solutions. We selected these companies for exceptional performance in one of these categories:

  • Innovation
    • Innovative ideas
    • Innovative route to market
    • Innovative product
  • Growth
    • Exceptional growth
    • Exceptional growth strategy
  • Management
  • Societal impact

Data sourced from Crunchbase and SemRush.

enSilo

enSilo

Crunchbase | Website | Twitter | Facebook | Linkedin

enSilo protects businesses around the world from data breaches and disruption caused by cyber attacks.

Ensign InfoSecurity

Ensign InfoSecurity

Crunchbase | Website | Twitter | Facebook | Linkedin

Ensign InfoSecurity is the largest pure-play end-to-end cybersecurity services provider in Asia. Headquartered in Singapore, Ensign offers bespoke solutions and services to address their clients’ cybersecurity needs.

Their core competencies are in the provision of cybersecurity advisory and assurance services, architecture design and systems integration services, and managed security services for advanced threat detection, threat hunting, and incident response. Underpinning these competencies is in-house research and development in cybersecurity.

Ensign has two decades of proven track record as a trusted and relevant service provider, serving clients from the public and private sectors in the Asia Pacific region.. .

Arbor Networks

Arbor Networks

Crunchbase | Website | Twitter | Facebook | Linkedin

Company Description Arbor Networks secures the world’s most demanding and complex networks from DDoS attacks and advanced threats. Solutions Overview Arbor Networks customers gain a micro view of their own network, through their suite of products, combined with a macro view of global Internet traffic and emerging threats, through their ATLAS threat intelligence infrastructure.

See, understand and solve more security threats with Arbor Networks. ATLAS provides a comprehensive, aggregated view of global traffic and threats.

330+ service provider customers contribute 120 Tbps of global traffic intelligence, enabling Arbor’s Security Engineering & Response Team (ASERT) to develop threat protections that are delivered directly into customer products to stop DDoS attacks and malware campaigns. Arbor DDoS Solutions are proven on the world’s most demanding networks.

their portfolio offers complete deployment flexibility to meet the needs of any organization, from virtual solutions, network-embedded solutions within Cisco’s ASR 9000 routers, to appliances for enterprises and carrier-class scrubbing centers. In Arbor Cloud, they offer a best-practice DDoS defense service that tightly integrates on-premises and cloud-based mitigation in a single solution.

Ensure the availability of your critical infrastructure with the world’s most broadly deployed DDoS mitigation technology. Arbor Advanced Threat Solutions leverage integrated Netflow and Packet Capture technology for network-wide situational awareness, broad and deep traffic visibility and security intelligence that transforms threat detection and incident response through real-time and historical insights, stunning visualization and forensics.

Protect your most critical assets from advanced threats that are within your network right now.. .

IntelliGO Networks

IntelliGO Networks

Crunchbase | Website | Twitter | Facebook | Linkedin

IntelliGO Networks is an award-winning Canadian cybersecurity services firm that specializes in Managed Detection and Response. Their service is oriented towards small to medium-sized enterprises with business-critical IT operations, sensitive data, or regulatory compliance requirements.

The service is powered by their proprietary technology stack, developed in Toronto, Ontario. Servicing clients around the world, IntelliGO Networks maintains a state-of-the-art operation strategically located in Toronto, Ontario, and Sunnyvale, California.

www.intelligonetworks.com.. .

IBM Resilient

IBM Resilient

Crunchbase | Website | Twitter | Facebook | Linkedin

IBM Resilient provides incident management software empowering organizations to thrive in the face of cyberattacks and business crises.

Loki Labs

Loki Labs

Crunchbase | Website | Twitter | Facebook | Linkedin

Loki Labs provides managed cybersecurity services that make organizations of all sizes more secure. Founded by cyber specialists from the U.S.

National Security Agency and Department of Defense, Loki provides best-of-breed security monitoring and response solutions protecting SMBs without the cost or complexity of internal security personnel and monitoring solutions. Loki’s 24x7x365 Security Operations Center (SOC) identifies attacks and vulnerabilities on networks and devices in real-time and alerts Loki’s in-house analysts who expertly respond to contain and mitigate the threat.

Loki also provides cyber risk assessments and post-attack investigation and reporting as well as other compliance services that keep stakeholders informed and enables firms to improve their security posture. Loki also provides a full suite of cybersecurity services including security assessments, emergency incident response and Range-as-a Service solutions..

GreyCastle Security

GreyCastle Security

Crunchbase | Website | Twitter | Facebook | Linkedin

GreyCastle Security is a leading service provider dedicated exclusively to cybersecurity and the practical management of cybersecurity risks. Our company was established to counter rapidly evolving cyber threats and to deliver cybersecurity solutions effectively, practically and continuously.

GreyCastle Security provides Risk Assessment, Awareness, Vulnerability Assessment, Penetration Testing, ISO and Incident Response services to businesses throughout North America. Our team is comprised solely of certified professionals and former security officers who bring a client perspective to everything that they do..

Cycura Inc.

Cycura Inc.

Crunchbase | Website | Twitter | Facebook | Linkedin

Cycura is a Toronto-based cyber security company that specializes in Offensive Cyber Security. We have a team of some of the best security professionals in the industry.

At Cycura, we take an offensive approach to security, both creating and implementing break-through technologies. We provide advanced, customized, and confidential cyber security services, cyber investigation services, and digital forensic services to governments, companies, and organizations.

We focus on these types of services: Security Audits; Forensics and Incident Response; Malware Analysis and Reverse Engineering; Continuous Monitoring; and Security Training Services. What makes us different? Cycura’s approach to security begins in our R&D labs.

Our security researchers understand computer code from the inside out. Our experts don’t use garden variety, “off-the-shelf” security tools.

Cycura continuously and relentlessly identifies new vulnerabilities, develops new exploits and creates proprietary scanning and monitoring tools and software. The firm serves organizations with particularly high intellectual property (IP) value, as well as critical data protection needs, including: software and technology companies; startups; airports; defense & homeland security; financial institutions; power generation and transmission; oil & gas facilities; refineries & the petrochemical industry; seaports; telecommunications; and water utilities..

Vijilan Security, LLC.

Vijilan Security, LLC.

Crunchbase | Website | Twitter | Facebook | Linkedin

Vijilan’s 24/7 cyber-security monitoring services monitors and responds to threats through its own US based Security Operations Center (SOC) in Florida. Vijilan offers cloud based Security Information and Event Management (SIEM) and an expertly trained Incident Response Team (IRT).

This world class service is available for all IT companies, Managed Service Providers and Value Added Resellers for only a low monthly subscription.. .

Attivo Networks

Attivo Networks

Crunchbase | Website | Twitter | Facebook | Linkedin

Attivo Networks provides required visibility and actionable, substantiated alerts to detect, isolate, and defend against cyber attacks. Attivo Networks, the leader in deception technology, provides accurate in-network threat detection, analysis, and accelerated response to advanced, credential, insider, and ransomware attacks.

The Attivo Deception and Response Platform provide continuous visibility and efficient threat management for user networks, data centers, cloud, branch, IoT, ICS-SCADA, and POS environments. Camouflage dynamic deception sets high-interaction traps to misdirect and lure attackers into revealing themselves.

The solution’s advanced attack analysis and lateral movement tracking automate investigation, deliver evidence-based alerts, and in-depth forensic reports. Incident response is simplified with ThreatOps™ playbooks and 3rd party integrations for automated attack blocking, quarantine, and threat hunting..

UnderDefense Cybersecurity

UnderDefense Cybersecurity

Crunchbase | Website | Twitter | Facebook | Linkedin

UnderDefense is a boutique cybersecurity company specialized in Threat Hunting, Incident Response and Cloud based Security Operations (SecOps). UnderDefense offer 24/7 security monitoring with Incident Detection and response, CISO, compliance audits, assessments and penetration testing.

We are in Top 3 out of 2200+ cybersecurity companies by Clutch. View the feedback from our clients on executed projects here https://clutch.co/profile/underdefense#reviews..

Elvidence Computer Forensics

Elvidence Computer Forensics

Crunchbase | Website | Twitter | Facebook | Linkedin

Australian Computer Forensic Expert company. It is located in Sydney’s East Suburbs.

The company provides Computer Forensic Expert services to Australian law firms and businesses. The range of services currently offered: Digital Forensic Investigations, Mobile Phone Forensics, eDiscovery, Incident Response, Computer Expert Witness and related legal and court technical assistance.

Elvidence computer forensic specialists are highly experienced, mostly with law enforcement background.. .

InteliSecure

InteliSecure

Crunchbase | Website | Twitter | Facebook | Linkedin

InteliSecure is a Managed Security Service Provider (MSSP) to challenge the status quo in cybersecurity by delivering a hybrid application of expert human intelligence with a proven Critical Asset Protection Program methodology. These innovative Managed services are supported by Consulting, Technical, Incident Response, and Security Assessment services that prevent data loss, protect the privacy, and safeguard critical assets.

InteliSecure focuses on business outcomes by providing data and reports that make sense to business and security executives alike. They make data security and compliance easy by providing effective data protection at a lower cost, eliminating the strain on IT organizations, and reducing the risk of confidential information getting into the wrong hands.

The company was founded in 2002 and is headquartered in Greenwood Village, Colorado, United States.. .

Solis Security

Solis Security

Crunchbase | Website | Twitter | Facebook | Linkedin

Solis Security operates as an incident response provider.

Context Information Security

Context Information Security

Crunchbase | Website | Twitter | Facebook | Linkedin

Context is independently operated with FTSE250 backing. An exceptional level of technical expertise informs all our work and our strong track record is based above all on the technical skills, professionalism, independence and integrity of our consultants.

Many of the world’s most successful organisations turn to us for advice, technical assurance, incident response and investigation services, because they believe Context sets the standards that others within the industry strive to follow. Context helped to establish CREST, we helped to shape the development of the Bank of England’s CBEST scheme and was one of the first companies to be certified as an approved supplier of the UK Government’s Cyber Incident Response (CIR) Scheme..

NRD Cyber Security

NRD Cyber Security

Crunchbase | Website | Twitter | Facebook | Linkedin

NRD Cyber Security is a cybersecurity technology consulting, incident response and applied research company. The company focuses on services for specialized public service providers (law enforcement, CERTs, telecoms, regulators, national CI), the finance industry and corporations with high data sensitivity.

NRD Cyber Security is controlled by INVL Technology.. .

Mandiant

Mandiant

Crunchbase | Website | Twitter | Facebook | Linkedin

Mandiant is the information security industry’s leading provider of incident response and computer forensics solutions and services. Headquartered in Alexandria, Va., with offices in New York, Los Angeles and San Francisco, Mandiant provides products, professional services and education to Fortune 500 companies, financial institutions, government agencies, domestic and foreign police departments and leading U.S.

law firms. Mandiant comprises one of the industry’s largest incident response and forensics forces.

The authors of nine books, Mandiant security consultants and engineers hold top government security clearances and certifications and advanced degrees from some of the most prestigious computer science universities.. .

ForeScout Technologies

ForeScout Technologies

Crunchbase | Website | Twitter | Facebook | Linkedin

ForeScout is transforming security through visibility. We help make the invisible visible by providing Global 2000 enterprises and government agencies with agentless visibility and control of traditional and IoT devices the instant they connect to the network.

Our technology integrates with disparate security tools to help organizations accelerate incident response, break down silos, automate workflows and optimize existing investments.. .

I-Tracing

I-Tracing

Crunchbase | Website | Twitter | Facebook | Linkedin

Founded in 2005 and headquartered in Paris, I-TRACING is an innovator and market leader addressing customer needs for IT security and data tracking, Internet security, e-discovery solutions, deep-packet inspection, log management and intelligence (LMI), security forensic analysis, SOC solutions (build & run). SInce 2013 I-TRACING Ltd is the UK and international business subsidiary.

I-TRACING, a pure-service oriented company, encompass the information (data) traceability , IT legal compliance (PCI, SOX, Basel, ISO2700x, data privacy,…), lawful inspection, IT security operations such as SOC and Incident Response, fraud management, vulnerability assesments, threat control, etc.. .

Delta Risk

Delta Risk

Crunchbase | Website | Twitter | Facebook | Linkedin

To successfully adopt cloud and enable your teams to move at competitive speed, you need a partner who can help you develop a security plan or supplement your existing security solution. Delta Risk has you covered with ActiveEye Cloud Infrastructure Security, ActiveInsight cloud security assessments, and ActiveResponse services.

We are also an Amazon Web Services (AWS) Advanced Technical Partner. Delta Risk provides cloud security, managed security services, and professional security consulting services to government and commercial clients.

Formed in 2007, Delta Risk brings together leaders from the cyber policy, infrastructure protection, and technical security expert communities to help clients secure their networks and data. Our core areas of expertise include managed security services, cloud monitoring of SaaS and cloud infrastructure environments, managed detection and response (MDR), Security Orchestration Automation and Response (SOAR), SOC-as-a-Service, endpoint and network security, penetration testing, exercises and training, vulnerability assessments, threat hunting, and incident response..

RADAR

RADAR

Crunchbase | Website | Twitter | Facebook | Linkedin

RADAR®, a patented SaaS-based incident response management platform that simplifies and streamlines compliance with data breach laws. The RADAR Breach Guidance Engine™ leads users through an intuitive workflow that profiles and scores data privacy and security incidents and generates incident-specific notification guidelines to help ensure compliance with data breach laws as well as contractual notice obligations.

Fortune 100 companies and other organizations from heavily regulated industries in finance, healthcare, insurance, and beyond rely on RADAR for an efficient and consistent process for incident response.. .

AccessData

AccessData

Crunchbase | Website | Twitter | Facebook | Linkedin

AccessData Group has pioneered computer forensics and litigation support for more than twenty years. Over that time, they have grown to provide a broad spectrum of stand-alone and enterprise-class solutions that enable digital investigations of any kind, including computer forensics, incident response, eDiscovery, legal review, IP theft, compliance auditing and information assurance.

More than 100,000 customers in law enforcement, government agencies, corporations, consultancies, and law firms around the world rely on AccessData software solutions, as well as their premier hosted review and digital investigations services. AccessData Group is also a leading provider of digital forensics training and certification, with their much sought after AccessData Certified Examiner program..

Netscylla Cyber Security Ltd

Netscylla Cyber Security Ltd

Crunchbase | Website | Twitter | Facebook | Linkedin

IT cyber security consultancy, specialising in red teaming, penetration testing, incident response and cyber security consultancy

National Cyber Security Centre

National Cyber Security Centre

Crunchbase | Website | Twitter | Facebook | Linkedin

The National Cyber Security Centre (NCSC) is the UK’s authority on cyber security. It is a part of GCHQ.

The NCSC brings together and replaces CESG (the information security arm of GCHQ), the Centre for Cyber Assessment (CCA), Computer Emergency Response Team UK (CERT UK), and the cyber-related responsibilities of the Centre for the Protection of National Infrastructure (CPNI). The NCSC has access to some of the most sophisticated capabilities available to government.

It acknowledges the sensitivity of these resources, whilst working to make the benefits of its expertise as widely available as possible. The NCSC is open and accessible.

It works collaboratively with other government agencies and departments, law enforcement, defense, the UK’s intelligence and security agencies, and its international partners. The NCSC recognizes the value of diversity and different perspectives and bring together a unique range of talents, skills, and experience to tackle the hardest cyber security challenges.

The NCSC’s main purpose is to reduce the cyber security risk to the UK by improving its cyber security and cyber resilience. It works together with UK organisations, businesses, and individuals to provide authoritative and coherent cyber security advice and cyber incident management.

This is underpinned by world class research and innovation. It recognizes that, despite all its efforts to reduce risks and enhance security, incidents will happen.

Swimlane

Swimlane

Crunchbase | Website | Twitter | Facebook | Linkedin

Swimlane develops a security automation and orchestration platform to combat rapidly evolving cyber threats.

BlackBag Technologies

BlackBag Technologies

Crunchbase | Website | Twitter | Facebook | Linkedin

Develops digital forensic and incident response software for analyzing traditional device data and memory (Malware).

Ekran System

Ekran System

Crunchbase | Website | Twitter | Facebook | Linkedin

Ekran System is a universal insider threat protection solution to help with the employee monitoring, third-party service provider control and regulation compliance. Monitoring user activity on both servers and desktops, Ekran System provides comprehensive screen video log for each user session together with synchronized multilayered metadata such as started application names, keystrokes, visited URLs, connected devices, entered commands, started scripts and more.

Advanced search options, real-time alerts on suspicious events, and interconnected reports make activity analysis and incident investigations efficient and effective. Besides investigation tools, Ekran System provides in-built access management and incident response functionality including manual and automated user blocking, device management and more.

Ekran System is an efficient user-based risk detection solution granting you true visibility into who-when-what context of any incident within your corporate infrastructure.. .

Tetra Defense

Tetra Defense

Crunchbase | Website | Twitter | Facebook | Linkedin

Tetra Defense is a cyber incident response and proactive cybersecurity consulting company.

CISOSHARE

CISOSHARE

Crunchbase | Website | Twitter | Facebook | Linkedin

CISOSHARE is driven to improve our world as the leading provider of cyber security services for rapidly growing organizations. Located in Southern California and recently ranked in 2018 as the 6th fastest-growing private organization in Orange County, our team establishes a culture of continuous learning and teaching in ourselves, our clients, and our community.

Our employees are veterans, students, and leading experts in the cyber security discipline. Our clients require the best in cyber security advice and service, and we work with passion every day to deliver it.

CISOSHARE’s primary service pillars offer best practice program assessments, technical vulnerability and penetration testing services, incident response and remediation retainers, as well as large-scale professional services in security program and security architecture development. Our team also offers managed services such as security program process or role performance for clients.

CISOSHARE also has a security program development application that focuses on program measurement and improvement that integrates into our managed service offering and offers advice and services.. .

NCC Group

NCC Group

Crunchbase | Website | Twitter | Facebook | Linkedin

NCC Group provides information assurance solutions to organizations worldwide. The company operates through three segments: group escrow, assurance testing, and domain services.

It offers software escrow and verification services such as software escrow, registry data escrow, software-as-a-service assured, and software verification as well as single and multi licensee escrow agreements; and security testing, audit, and compliance services comprising technical security assessment and penetration testing, information security software, forensic and cyber incident response, and managed security services as well as audit, compliance, and governance services. NCC Group also provides software testing services; website performance optimization and monitoring, and website load testing services; and trust domain and domain abuse monitoring services.

NCC Group was founded in 1999 and is headquartered in Manchester, United Kingdom.. .

Securicon

Securicon

Crunchbase | Website | Twitter | Facebook | Linkedin

Securicon combines a seasoned, knowledgeable technical staff with sound, tested methodologies and comprehensive strategies — and an ability to balance information and operational security needs with business and other functional requirements. The driving force behind their success is their cadre of highly qualified and experienced IT and OT security engineering professionals.

Dedicated to constantly refining and expanding its skills, the Securicon Team has decades of combined experience in system administration, network engineering, industrial control system assessments, application and operating system programming, penetration testing, vulnerability assessments, security and network architecture design, security policy development, incident response and forensics. The depth and breadth of their experience allows us to provide a comprehensive “real-world” approach that few companies can match.

Their security architecture designs and policies benefit from experience gained in multiple penetration testing and incident response engagements — meaning that their findings and recommendations are based on demonstrated facts, not theory. In addition, when standard strategies are not practical in a customer’s environment, their experience allows us to recommend and develop smart alternative approaches..

The Shadowserver Foundation

The Shadowserver Foundation

Crunchbase | Website | Twitter | Facebook | Linkedin

The Shadowserver Foundation is a non-profit security organization that gathers, tracks, and reports on malware, botnet activity, and electronic fraud. It aims to improve the security of the internet by raising awareness of the presence of compromised servers, malicious attackers, and the spread of malware.

The foundation is responsible for capturing and receiving malicious software, or information related to compromised devices; disassembling, sandboxing, and analyzing viruses and Trojans; monitoring and reporting on malicious attackers; tracking and reporting on botnet activities; disseminating cyber threat information; and coordinating incident response. The Shadowserver Foundation works alongside other security agencies to develop strategies against the threats and to form action plans to help mitigate the threats as they develop.

The Shadowserver Foundation was established in 2004 and is based in California, United States.. .

CrowdStrike

CrowdStrike

Crunchbase | Website | Twitter | Facebook | Linkedin

CrowdStrike is a cybersecurity technology firm pioneering next-generation endpoint protection, delivered as a single integrated cloud-based solution. CrowdStrike’s Falcon platform stops breaches by detecting all attacks types, even malware-free intrusions, providing five-second visibility across all current and past endpoint activity while reducing cost and complexity for customers.

CrowdStrike’s Falcon platform is delivered via the security industry’s only 100% native cloud architecture, integrated with 24/7 managed hunting capabilities and in-house threat intelligence and incident response teams. CrowdStrike’s unique Threat Graph harnesses the cloud to instantly analyze data from billions of endpoint events across a global crowdsource community, allowing detection and prevention of attacks based on patented behavioral pattern recognition technology..

Alpine Security

Alpine Security

Crunchbase | Website | Twitter | Facebook | Linkedin

Alpine Security (“Alpine”) is a Service-Disabled Veteran-Owned Small Business providing full-spectrum cybersecurity services and training. Alpine’s goals are to help organizations reduce cybersecurity risk and empower cybersecurity professionals with the skills necessary to effectively assist their organizations.

Alpine’s cybersecurity services include penetration testing, incident response, risk assessments, virtual CISO, and auditing. Alpine’s highly certified and experienced team uses a proven and trusted methodology.

Alpine has experience assessing, testing, and working in complex and high-risk environments, such as offshore drilling platforms, commercial and military aircraft, medical devices (deployed and in-development), blockchain, ICS/SCADA, and embedded systems. Alpine’s medical device penetration division aims to improve patient safety while reducing medical device manufacturer and healthcare provider risk.

Alpine’s cybersecurity training focuses on cybersecurity certifications, such as Certified CISO, CISSP, CEH, Security+, and Advanced Penetration Testing. Alpine Security is headquartered in the Greater St.

Louis / Scott Air Force Base Area.. .

JPCERT Coordination Center

JPCERT Coordination Center

Crunchbase | Website | Twitter | Facebook | Linkedin

JPCERT Coordination Center gathers computer security information, supports incident response, and sends out computer security information. JPCERT Coordination Center coordinates with network service providers, security vendors, government agencies, and industry associations.

JPCERT Coordination Center started in 1992 and is headquartered in Tokyo, Japan.. .

Intezer

Intezer

Crunchbase | Website | Twitter | Facebook | Linkedin

Intezer introduces a Genetic Malware Analysis technology, revolutionizing cyber threat detection and response. By identifying the origins of software, Intezer equips enterprises with an advanced way to detect modern cyber threats, while providing deep context on how to effectively respond to incidents.

Intezer offers solutions for incident response automation, cloud workload protection, threat intelligence, and more. For more information, visit www.intezer.com..

Cofense

Cofense

Crunchbase | Website | Twitter | Facebook | Linkedin

Cofense, formerly PhishMe, provides phishing threat management for organizations concerned about human susceptibility. Cofense’s intelligence-driven platform turns employees into an active line of defense by enabling them to identify, report, and mitigate spear phishing, malware, and drive-by threats.

Cofense’s customers include the defense industrial base, energy, financial services, healthcare, and manufacturing industries, as well as other Global 1000 entities that understand changing user security behavior, will improve security, aid incident response, and reduce the risk of compromise.. .

Nettitude

Nettitude

Crunchbase | Website | Twitter | Facebook | Linkedin

Nettitude is a global leader in the delivery of cyber security testing, risk management, compliance and incident response services.

Onapsis

Onapsis

Crunchbase | Website | Twitter | Facebook | Linkedin

Onapsis provides cybersecurity and compliance solutions for cloud and on-premise ERP and business-critical applications. Its solutions include the Onapsis Security Platform, a widely-used SAP-certified cyber-security solution in the market.

Unlike generic security products, Onapsis’ context-aware solutions deliver both preventative vulnerability and compliance controls, as well as real-time detection and incident response capabilities to reduce risks affecting critical business processes and data. The company was founded in 2019 and is headquartered in Boston, Massachusetts.

Onapsis has offices in Heidelberg, Germany, and Buenos Aires, Argentina.. .

RedWolf Security

RedWolf Security

Crunchbase | Website | Twitter | Facebook | Linkedin

RedWolf Security is the global leader in Cyber Security Testing. The RedWolf SaaS platform includes collection of micro-services for Discovery, Modeling, Monitoring, Internal and External attack Simulation and Incident Response.

RedWolf’s next-generation platform is trusted by hundreds of Fortune 2000 companies. With it you can safely validate your defense performance, improve alerting and detection, calibrate mitigation systems, optimize operational responses and confirm SLAs and controls..

Komodo Consulting

Komodo Consulting

Crunchbase | Website | Twitter | Facebook | Linkedin

Komodo Consulting specializes in Penetration Testing and Red-Team Exercises, Cyber Threat Intelligence, Incident Response and Application Security, serving Fortune 500 companies in Europe, US and Israel. Komodo was founded by leading consulting experts with decades of experience.

Our team includes seasoned security specialists with worldwide information security experience along with military intelligence experts. Komodo provides services across many verticals including banking, insurance, hi-tech, automotive, energy, communication, critical infrastructures, healthcare, and international mega-brands..

GreatHorn

GreatHorn

Crunchbase | Website | Twitter | Facebook | Linkedin

GreatHorn is a computer software company that provides protection for cloud email systems, via advanced threat detection, automated defense, and integrated incident response. The company specializes in the fields of machine learning, information security, predictive security, and cybersecurity.

GreatHorn was founded in 2015 and headquartered in Waltham, Massachusetts.. .

Compass IT Compliance

Compass IT Compliance

Crunchbase | Website | Twitter | Facebook | Linkedin

Compass IT Compliance is a leading IT Audit, Security, and Compliance Firm.

Blueliv

Blueliv

Crunchbase | Website | Twitter | Facebook | Linkedin

Blueliv is a leading cyber threat intelligence provider with a world-class in-house Labs team. We scour the web, the deep web and the dark internet to deliver fresh, automated and actionable threat intelligence to organizations to protect their networks from the outside in.

Our scalable cloud-based platform turns global threat data into sophisticated and relevant intelligence, enabling organizations to save time and resource by improving their incident response performance and empowering their Security Operations team with real-time intelligence. Configure a solution bespoke to your needs with a choice of modules.

Quantify and qualify malicious attack vectors with our plug and play MRTI feed; delivered in STIX/TAXII standard, integration is easy. The Blueliv Threat Exchange Network is a strong, collaborative community of security researchers and malware analysts.

We want you to be a part of it – join community.blueliv.com. Start detecting external threats and join the fight against cybercrime today.

Blueliv is a Gartner Cool Vendor 2015 and Go-Ignite winner 2016.. .

PentesterSpace

PentesterSpace

Crunchbase | Website | Twitter | Facebook | Linkedin

We work together to provide a hack-proof security to our clients that will keep them safe from malicious hackers. We provide advanced techniques to manage cyber security risks, access control, network and system infrastructure and other components of technology.

Sustaining efficiency of monitoring system and security operations in an organisation, cyber security solutions play the role in automated mode that provides the advantages to cyber security professionals and for this reason incident response process pushed forward and faster to recover the affected systems.. .

The Crypsis Group

The Crypsis Group

Crunchbase | Website | Twitter | Facebook | Linkedin

The Crypsis Group is a security advisory firm focused on data breach response and risk management company. The company is built based on a shared vision of creating a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services.

It aims to fight cybercrime and they help and protect their clients by defending against and responding to severe cybersecurity threats. Staying ahead of the rapidly evolving threat landscape requires elite cybersecurity expertise, global response capability, and constant innovation.

These competencies comprise their core values. Out of this vision, Crypsis has grown into a national force with offices across the U.S.

in Washington D.C., New York, Chicago, Austin, and Los Angeles, and from which their expanding corps of elite cybersecurity experts help and protect organizations worldwide. The Mclean, Virginia-headquartered company was established in 2015..

ProtectWise

ProtectWise

Crunchbase | Website | Twitter | Facebook | Linkedin

ProtectWise™ provides Cloud-Powered Network Detection and Response (NDR). Organizations can achieve defense-in-depth via advanced analytics on cloud, hybrid and enterprise traffic with real time and retrospective detections.

Full-fidelity packet captures, indexed and retained indefinitely, create a perfect, rapidly searchable network memory. Analytics and forensics unified in an intuitive and immersive visualizer enable rapid and more effective incident response and threat hunting.

Founded in April 2013, ProtectWise is based in Denver and led by a team of security and SaaS industry veterans from McAfee, Palo Alto Networks, and Symantec. The company launched the Immersive Security movement in 2017 to build a new path forward for the security industry.

ProtectWise has raised more than $70 million in funding.. .

Forum of Incident Response and Security Teams

Forum of Incident Response and Security Teams

Crunchbase | Website | Twitter | Facebook | Linkedin

FIRST is the Forum of Incident Response and Security Teams

Tall Poppy

Tall Poppy

Crunchbase | Website | Twitter | Facebook | Linkedin

Tall Poppy builds tools and services to help companies protect their employees against online harassment and abuse. It combines proactive security training, threat monitoring, and detection with incident response when an individual comes under attack.

In addition to its standard service, it also offers additional capabilities for high-profile or executive staff who face increased risk.. .

BlueVoyant

BlueVoyant

Crunchbase | Website | Twitter | Facebook | Linkedin

BlueVoyant is a cybersecurity company that enables cybersecurity defense and protection through technology and tailored services. The company provides advanced cyber threat intelligence managed security services and proactive professional services with forensic capabilities for incident response and remediation.

They help large enterprises with impactful intelligence and offer small and medium enterprises the same kind of software and level of services that large enterprises enjoy all from a world-class team of experts that would be challenging to amass directly. BlueVoyant offers increased visibility, professional insights, and targeted responsiveness.

The company was founded in 2017 and is headquartered in New York, NY, USA.. .

Code42

Code42

Crunchbase | Website | Twitter | Facebook | Linkedin

Code42 provides data loss protection, visibility, and recovery solutions. Its data loss protection solution rapidly detects insider threats, satisfies regulatory compliance requirements and speeds incident response, all without lengthy deployments, complex policy management or blocks on user collaboration.

Its security, IT and compliance professionals can protect endpoint and cloud data from loss, leak and theft while maintaining an open and collaborative culture for employees. Founded in 2001, more than 50,000 organizations worldwide, including the most recognized brands in business and education, rely on Code42 to safeguard their ideas.

The company is headquartered in Minneapolis, Minnesota, and backed by Accel Partners, JMI Equity, NEA and Split Rock Partners.. .

Comae Technologies

Comae Technologies

Crunchbase | Website | Twitter | Facebook | Linkedin

Digital Forensics and Incident Response (DFIR) professionals need Windows memory forensics knowledge and capabilities to be leaders in the industry. Investigators who do not look at volatile memory are leaving evidence at the crime scene.

System memory is the only reliable repository for evidence of user actions, evil processes and furtive behaviors implemented by malicious code. It is this evidence that often proves to be the smoking gun that unravels the story of what happened on a system.

The Comae Memory Forensics Software Platform provides the necessary tools for digital forensics examiners and incident responders to successfully perform live system memory triage and analyze captured memory images to identify malware and threats. The platform is built to be the most powerful and comprehensible memory platform in the industry.

Memory forensics is a critical process for DFIR investigators who want to tackle advanced forensics, trusted insider, and incident response cases for Law Enforcement and Enterprises of all sizes. Comae provides responsive capabilities to Law Enforcement and Enterprises, helping them to investigate and to respond to cyber incidents and attacks..

CNCERT

CNCERT

Crunchbase | Website | Twitter | Facebook | Linkedin

The National Computer Network Emergency Response Technical Team/Coordination Center of China (known as CNCERT or CNCERT/CC) was founded in September 2002. It is a non-governmental non-profit cybersecurity technical center and the key coordination team for China’s cybersecurity emergency response community.

As a national CERT, CNCERT strives to improve nation’s cybersecurity posture, and protect critical infrastructure cybersecurity. CNCERT leads efforts to prevent, detect, warn and coordinate the cybersecurity threats and incidents, according to the guideline of “proactive prevention, timely detection, prompt response and maximized recovery”.

CNCERT has branches and offices in 31 provinces, autonomous regions and municipalities across mainland China. As the key coordination organization of China’s cybersecurity emergency response system, CNCERT organizes enterprises, schools, non-governmental groups and research institutes that are specialized in cybersecurity and coordinates ISPs, domain name registrars and other emergency response organizations in a joint effort to build the cybersecurity emergency response system of China and handle major cyber security incidents.

As an important non-governmental organization to assist in the cross-border handling of cyber security incidents, CNCERT actively carries out international cooperation in cybersecurity and is committed to establishing a mechanism of prompt response and coordinated handling for cross-border cybersecurity incidents. CNCERT is a member of the world-renowned Forum of Incident Response and Security Teams (FIRST) and one of the founders of Asia Pacific Computer Emergency Response Team (APCERT).

As of 2013, CNCERT has established “CNCERT International Cooperation Partnership” with 127 organizations in 59 nations and regions.. .

Infocyte

Infocyte

Crunchbase | Website | Twitter | Facebook | Linkedin

Infocyte is a cybersecurity company providing the leading platform for Incident Response and delivering cost-effective MDR services.

Sera-Brynn

Sera-Brynn

Crunchbase | Website | Twitter | Facebook | Linkedin

Sera-Brynn® is a global Cybersecurity Audit and Advisory firm. Their team of professionals is dedicated to helping their clients secure their computing and network environments and meet applicable, and in some cases mandatory, industry and government compliance requirements.

They believe cyber security demands a holistic approach, which is why they routinely work with legal counsel, the insurance industry, accounting firms, and law enforcement at all levels to provide the best protection possible to their clients. Additionally, Sera-Brynn offers Penetration Testing, Incident Response, Post-Breach Forensics, and Security Consulting..

VMRay

VMRay

Crunchbase | Website | Twitter | Facebook | Linkedin

The VMRay Platform is a breakthrough solution for dynamic analysis of advanced threats, including zero day and targeted attacks. By surmounting inherent flaws that plague other products, VMRay Analyzer has become the gold standard for malware sandboxing among leading DFIR teams worldwide.

The core of the VMRay Platform is an agentless, hypervisor-based sandbox, which is unique in combining near-total evasion resistance with full visibility into malware behavior: a trait we call X-Ray Vision. Because nothing touches or modifies the analysis environment, monitoring is invisible, and even the most evasive malware strains fully execute in the sandbox.

By monitoring every interaction between malware and the target system, VMRay captures a complete and accurate record of threat behavior – data that enriches detection, incident response, digital forensics, and threat intelligence. VMRay Intelligent Monitoring excels over other solutions in distinguishing between malicious behavior and legitimate activity.

As a result, VMRay Analyzer delivers precise, noise-free output that reduces false positive rates to near zero. This shortens investigations, enhances efficiency and prevents legitimate traffic from being blocked.

Group-IB

Group-IB

Crunchbase | Website | Twitter | Facebook | Linkedin

The company’s presence spans across the globe, including France, Italy, Vietnam, Malaysia, the Netherlands, Russia, South Africa, Spain, the United Kingdom, in addition to Singapore, where its global headquarters is located. Group-IB is ranked among the best threat intelligence vendors in the world by Gartner, IDC, Forrester, Cyber Defense Magazine, and SC Media.

Group-IB’s technological leadership is built on the company’s 17 years of hands-on experience in threat research, analysis, cybercrime investigations around the world and 65 000 hours of cyber security incident response. Group-IB is a partner of INTERPOL and Europol and has been recommended by the OSCE as a cybersecurity solutions provider..

Netsecurity

Netsecurity

Crunchbase | Website | Twitter | Facebook | Linkedin

Netsecurity expertise in security intelligence, consulting, endpoint security, incident response, firewall auditing and backup services.

Cyber Defense Group

Cyber Defense Group

Crunchbase | Website | Twitter | Facebook | Linkedin

CDG offers Cloud Security, Virtual CISO (vCISO) and Incident Response services

MixMode

MixMode

Crunchbase | Website | Twitter | Facebook | Linkedin

MixMode is a developer of a predictive cybersecurity platform designed to reduce the number of alerts.

Team T5 Inc.

Team T5 Inc.

Crunchbase | Website | Twitter | Facebook | Linkedin

TeamT5 is a professional cyber security solution provider. Compared with other cyber threat intelligence (CTI) vendors, TeamT5 has the deepest understanding of cyber espionage in the Asia-Pacific region.

Our world-class research team has dedicated to malware research and security incident response for more than 10 years. With solid technical background and frontline expertise, our portal ThreatVision delivers the best CTI, and ThreatSonar offers the most effective APT hunting solutions.

With TeamT5, you are able to being ahead of your threats.. .

FlexibleIR

FlexibleIR

Crunchbase | Website | Twitter | Facebook | Linkedin

The Flexible IR is a web-based cyber Incident Response platform that allows first responders to coordinate unknown and large-scale breaches and incidents. At the core of the system is the Kanban board, which displays real-time information, such as incident tasks, status, strategies and artifacts.

Key is for responding entities to have both visibility into the entire incident and the opportunity to focus on their own area of interest. With IN-PREMISE setups your confidential data never leaves your system.

They also enable planned IR skill development.. .

Semperis

Semperis

Crunchbase | Website | Twitter | Facebook | Linkedin

Semperis is the pioneer of identity-driven cyber resilience for cross-cloud and hybrid environments. The company provides cyber preparedness, incident response, and disaster recovery solutions for enterprise directory services—the keys to the kingdom.

Semperis’ patented technology for Microsoft Active Directory protects over 40 million identities from cyberattacks, data breaches, and operational errors. Semperis is headquartered in New York City and operates internationally, with its research and development team distributed between San Francisco and Tel Aviv.

Semperis hosts the award-winning Hybrid Identity Protection conference (https://www.hipconf.com). The company has received the highest level of industry accolades; most recently being named “Best Business Continuity / Disaster Recovery Solution” by SC Magazine’s 2020 Trust Awards.

Semperis is accredited by Microsoft and recognized by Gartner.. .

Redscan

Redscan

Crunchbase | Website | Twitter | Facebook | Linkedin

Redscan is a multi-award-winning provider of managed security services, specialising in threat detection and integrated incident response. Possessing a deep knowledge of offensive security, Redscan’s experts are among the most qualified in the industry, working as an extension of clients’ in-house resources to expose and address vulnerabilities plus swiftly identify and shut down breaches.

Services offered include CREST accredited Penetration Testing, Red Teaming and Managed Detection and Response. By understanding how attackers operate, leveraging cutting-edge threat intelligence, and offering clear and actionable advice, Redscan’s cyber security professionals can be trusted to provide the high-quality insight needed to successfully mitigate information security risk and achieve compliance standards..

Critical Start

Critical Start

Crunchbase | Website | Twitter | Facebook | Linkedin

Critical Start is a network security consulting company focused on helping customers improve security capability. It is a fastest-growing cybersecurity integrator in North America with a mission to protect customer’s brand and reduce business risk.

They help organizations of all sizes determine their security readiness condition using its framework, the Defendable Network. Critical Start delivers managed security services, incident response, professional services, and product fulfillment..

Aujas Networks

Aujas Networks

Crunchbase | Website | Twitter | Facebook | Linkedin

Aujas Networks Pvt. Ltd.

offers information technology digital security solutions and services for enabling digital defense to clients. The company offers services in the areas of security vulnerability, security content management, and identity and access management.

Its consulting services include preventive consulting, such as strategy consulting, enterprise risk, management, technology, consulting, and DR/BCP consulting; reactive consulting, including security postures, security audit, and recovery strategy; and detective consulting, such as incident response solutions. The company’s preventive implementation solutions comprise SCM/SAMIIAM, secure products, and compliance solutions.

Its detective implementation solutions include application code review solutions. The company’s management solutions comprise preventive management, including enterprise risk, ODC security, and security operations; recovery services; and forensics services.

It also offers education services, such as process, implementation, management, standards, technology, and application security services. The company provides specialized security services to technologies, including core wireless networks, VOIP, RFID, cyber forensics, and the risk management.

It serves telecom, banking, financial services, insurance, enterprise, and government sectors. The company was founded in 2008 and is based in Bangalore, India..

Binalyze

Binalyze

Crunchbase | Website | Twitter | Facebook | Linkedin

It has been more than two decades since our team started helping people and companies around the world. The combination of our experience in Digital Forensics, Cyber Security and Incident Response was our key to success in any DFIR case we were involved in.

Handling more than 2000 cases, we have started thinking about making our own lives easier by developing a suite of tools that will help us automate our daily job and let us focus on catching bad guys before they do more harm to our clients. That was the point we started developing our products with the aim of making Incident Response easier than ever!.

CRFT

CRFT

Crunchbase | Website | Twitter | Facebook | Linkedin

CRFT enables teams of all sizes to ease the burden of repetitive and time-consuming tasks without custom code development or lengthy consulting engagements. As a result, CRFT helps focus on strategic and proactive efforts rather than playing “catch up” while streamlining operations and reducing analyst burn-out.

CRFT supports a wide variety of advanced automation use cases in key areas of cybersecurity management, including Threat Remediation, Incident Response, Provisioning, Governance.. .

Shift5

Shift5

Crunchbase | Website | Twitter | Facebook | Linkedin

Intrusion detection, intrusion prevention, alerting and incident response for operational technology (OT) platforms

CounterCraft

CounterCraft

Crunchbase | Website | Twitter | Facebook | Linkedin

Advanced adversaries and targeted attacks threaten large organisations on a daily basis. CounterCraft is a pioneering provider of full-spectrum cyber deception, ground-breaking threat hunting and cyber counterintelligence to detect, investigate and control targeted attacks.

The award-winning solution combines powerful campaign automation with controlled synthetic environments to allow attackers to penetrate organizations without doing real damage. CounterCraft’s Threat Deception platform builds and deploys buffer zones that fool threat actors into engaging with false information and fake digital assets instead of real operational systems and data.

The solution uses groundbreaking security engineering for Threat Detection, Threat Intelligence and Threat Response. Key stakeholders get more time to respond to advanced and rapidly evolving threats.

The platform continuously generates highly relevant threat intelligence elicited from threat actors. Defenders benefit as CounterCraft integrates with incident response workflows and proactively reconfigures defensive systems in real time to mitigate risks from ongoing attacks.

CounterCraft operates in Fortune500 companies globally, including major financial institutions, critical infrastructures, governments and Law Enforcement Agencies. Founded in 2015, the company is present in London, Madrid and Washington DC, with R&D in San Sebastian..

THETA432™

THETA432™

Crunchbase | Website | Twitter | Facebook | Linkedin

THETA432 is an information security, network management, and consulting firm specializing in cyber defense systems with an emphasis on the attack lifecycle with managed detection, deception and response services. THETA432™ builds out your cyber defense capability ranging from incident response to cyber threat hunting.

THETA432™ goes Beyond Visibility!™ in-house, remote, hybrid or on-demand.. .

Mission Secure

Mission Secure

Crunchbase | Website | Twitter | Facebook | Linkedin

Mission Secure®, an OT cybersecurity leader, is setting a new standard in OT cyber-protection stopping OT cyber threats head-on. The Mission Secure Platform backed by 24/7 Managed Services is the first to seamlessly integrate OT visibility, segmentation, protection, threat hunting, and incident response, delivering military strength, industrial grade OT protection.

With Mission Secure, customers keep critical operations up and running and safe from harm. Learn more at https://www.missionsecure.com..

Encode

Encode

Crunchbase | Website | Twitter | Facebook | Linkedin

Encode specializes on Targeted Cyber Threats and stands out with its proprietary technology, expertise on cyber security and multiyear experience across vertical industries, coupled with on-going, innovative security research and its highly qualified and talented people. * Cutting-edge Security Analytics & Response Orchestration platform Built by experts in data analytics, cyber offensive techniques and cyber security operations, Enorasys platform effectively automates and streamlines the “proactive threat hunting” and incident handling processes, providing Security Operations Center (SOC) and Incident Response teams with the means to hunt, track down and surgically respond to hard-to-spot malicious activity as never before.

* Unprecedented Insight on Advanced Cyber Threats Gained through hundreds of active APT simulation tests and more than 10 years of experience in responding to and assisting our clients in mitigating advanced cyber threats, our team of experts has accumulated an insight on such threats, second to none. Moreover, Encode Threat Labs enable us to stay ahead of the threat landscape, through ongoing research and development on new attack and control evasion techniques.

* Unique combination of Offensive and Defensive Expertise A key factor of our solutions is that they all encapsulate our extensive offensive and defensive expertise; knowledge build through thousands of successful engagements, ranging Extrusion Testing™ (APT Simulation Testing) and digital forensic engagements to end-to-end Cyber Defense architectures and SOC implementations for major organizations around the world. * Next Generation Managed Security Services Our 24×7 Cyber Operations & Intelligence services “even up the score” and by fusing together cutting-edge technology with best of breed cyber security operations and talent ensures that our clients will never get caught unprepared while minimizing their security management investment..

Cyberkov Information Technology W.L.L

Cyberkov Information Technology W.L.L

Crunchbase | Website | Twitter | Facebook | Linkedin

Cyberkov is a professional IT security firm, providing highly targeted set of security services.

The DigiTrust Group

The DigiTrust Group

Crunchbase | Website | Twitter | Facebook | Linkedin

The DigiTrust Group is a leading global provider of offensive cyber security consulting and defensive managed services with a focus on continuous incident response. We provide seamlessly integrated incident management, monitoring and response to strengthen our client organizations’ defense against cyber security breaches.

Our elite Security Operations Center teams actively hunt and eject threat actors targeting our client organizations using cutting-edge proprietary technology and processes. Our offensive teams specialize in advanced adversarial emulation using authentic adversary tactics and techniques to validate the strength of clients’ security through the perspective of a real-world threat actor.

Founded in 1998, The DigiTrust Group has witnessed, analyzed and proactively responded to threats over the past two decades. Organizations from a wide range of industries put their trust in our intelligence-focused services.

The DigiTrust Group’s highest priority is protection of our clients’ most valuable information. For more information, please visit www.digitrustgroup.com..

TruSTAR

TruSTAR

Crunchbase | Website | Twitter | Facebook | Linkedin

TruSTAR is an API-first cloud native Intelligence Management platform that operationalizes internal and external data sources through an ecosystem of partner integrations and custom API solutions to help security teams accelerate detection, incident response, investigations, and collaboration. Our Mission is to build and deliver technology so teams of security professionals canDefend Better Together.

We believe that when security professionals can integrate intelligence data into every stage of their workflow, they can make better decisions faster. Founded in 2014 by a mix of seasoned entrepreneurs, former security and intelligence specialists, and killer product developers, TruSTAR is building a platform that operationalizes internal and external data sources through an ecosystem of integrations to help you gain control of your data..

Perception Point

Perception Point

Crunchbase | Website | Twitter | Facebook | Linkedin

Perception Point is a Prevention-as-a-Service company, offering fast interception of any content-based attack across all collaboration channels including email, cloud storage, CRM apps, and messaging platforms. We prevent phishing, BEC, spam, malware, Zero-days, N-days well before it reaches the enterprise’s end-users.

Deployed in minutes with no change to the enterprise’s infrastructure, our solution confirms with any policy and requires zero fuss from IT teams. On top of that, we offer a significant added value service through our Incident Response team that serves as a force multiplier to the enterprise’s SOC team.

Our unique technology, which folds 7 different detection layers to provide a single verdict, has been recognized by Gartner and has proven time and time again to deliver the most effective ROI when compared to leading cyber solutions. As a result, the company now serves many global enterprises from all sizes and across all verticals, including Telecom, Food & Beverage, Tech, Healthcare, and more.

H-X Technologies

H-X Technologies

Crunchbase | Website | Twitter | Facebook | Linkedin

CYBERSECURITY SERVICES We perform information security audits, assessment, implementation, certification, training, monitoring, investigation and recovery for organizations, networks, applications, and websites. Start with our free organizational and technical security assessment of your assets.

SECURITY ASSESSMENT AND AUDIT Security audit of organization Vulnerability scanning Penetration testing Red Team pentest Source code security audit Audit of smart contracts Audit of configurations Industrial IT audit REQUEST MANAGED SECURITY AND COMPLIANCE ISO 27001 implementation PCI DSS, HIPAA, GDPR Consulting on VDA ISA, ENX TISAX® Remote security manager Training for programmers Training for pen-testers Reputation management Risk management GET A QUOTE IT SECURITY AND DEVELOPMENT Virtualization and Clouds Website protection Application security Software development Development of smart contracts Security hardening Industrial IT security Cyber incident response Forensic investigations. .

Endgame

Endgame

Crunchbase | Website | Twitter | Facebook | Linkedin

Endgame is a leading endpoint security platform that transforms security operations teams and incident responders from crime scene investigators into hunters that prevent damage and loss, and dramatically reduces the time and cost associated with incident response and compromise assessment. Endgame’s platform uses machine learning and data science to prevent and detect unique attacks at the earliest and every stage of the attack lifecycle.

Endgame’s integrated response stops attacks without disrupting normal business operations. It was founded in 2008 and has been operating in Arlington, Virginia..

SECDO

SECDO

Crunchbase | Website | Twitter | Facebook | Linkedin

SECDO transforms the way global enterprises handle incident response, allowing security teams to investigate and remediate complex threats in minutes. The SECDO Next Generation IR platform automates endpoint forensic analysis and cyber investigations to lower the skills barrier and make security teams more effective.

With SECDO, enterprises and MSSPs can instantly get the full story behind every alert and respond immediately with the most powerful set of remediation tools available.. .

Cymmetria

Cymmetria

Crunchbase | Website | Twitter | Facebook | Linkedin

Cymmetria is a cybersecurity company at the forefront of deception technology. Cymmetria’s deception products, MazeRunner and ActiveSOC, give organizations the ability to hunt attackers, detect lateral movement inside the perimeter, automate incident response, and mitigate attacks.

The company also offers deception as a service, enabling organizations to customize deception technologies for their business environment. Founded in 2014 by security expert Gadi Evron, Cymmetria is changing the asymmetry of cybersecurity, giving defenders the upper hand..

Hexadite

Hexadite

Crunchbase | Website | Twitter | Facebook | Linkedin

Hexadite solves the cybersecurity capacity problem with the first agentless intelligent security automation and orchestration platform.

CyberSponse

CyberSponse

Crunchbase | Website | Twitter | Facebook | Linkedin

CyberSponse provides a Virtual Appliance Based Security Orchestration and Automation platform that automates SecOps and incident response. The platform allows enterprises to gain full visibility and control over multiple cybersecurity data sources and provides a highly configurable incident response management system.

The company was founded in 2011 and headquartered in Arlington, Virginia.. .

Palerra

Palerra

Crunchbase | Website | Twitter | Facebook | Linkedin

Founded in 2013, Palerra believes in automating the entire security lifecycle, from threat detection to remediation, in order to effectively combat cyber crime and keep enterprises secure. Palerra is a privately held company backed by Norwest Venture Partners and Wing Venture Partners.

The funding represented the first joint Series A investment made by Palerra’s board members from Wing and NVP since investing in FireEye (FEYE) in 2005. The LORIC™ platform provides threat visibility and ensures compliance of your cloud footprint by combining threat detection, predictive analytics, security configuration management, and automated incident response into a single solution.

LORIC does not require hardware, software or agents and is not deployed inline with cloud services.. .

Syncurity

Syncurity

Crunchbase | Website | Twitter | Facebook | Linkedin

Syncurity unifies security teams with solutions that optimize and integrate people, processes, and technology to realize better cybersecurity outcomes. Their solution IR-Flow, a rapidly deployable cybersecurity incident response (IR) workspace, helps security professionals streamline their operations, embed smart compliance, and transition to a collaborative IR process to produce better outcomes.

This virtual SOC is scalable from small business to full enterprise deployments. It was acquired by Swinlane..

DTonomy Inc.

DTonomy Inc.

Crunchbase | Website | Twitter | Facebook | Linkedin

AI Assisted Security Incident Response Platform

Seculert

Seculert

Crunchbase | Website | Twitter | Facebook | Linkedin

The Seculert cloud-based security platform fills the gap left by legacy perimeter defense and Breach Detection Systems. Seculert protects distributed enterprises from advanced threats by focusing on the malicious outbound network traffic that goes undetected by legacy prevention solutions.

By combining Big Data analytics, machine learning technology and behavioral analysis, Seculert provides unique visibility on the final two stages of the malware kill chain. As a cloud-based solution, Seculert requires no hardware or software and provides full coverage for all sites and employees, including those working remotely and on personal mobile devices.

The Seculert Platform dramatically improves the productivity of scarce SOC and Incident Response resources by providing faster and more accurate malware detection. Founded in 2010 by security industry veterans, Seculert has R&D in Israel and sales offices in the US and EMEA.

Customers include leading organizations from the financial, education, healthcare, energy and aerospace industries around the world. For more information, visit www.seculert.com..

Confer Technologies

Confer Technologies

Crunchbase | Website | Twitter | Facebook | Linkedin

Confer is fundamentally changing endpoint security through the Converged Endpoint – providing advanced threat prevention and incident response for endpoints, servers. and cloud workloads.

Confer’s patented technology uses enterprise-wide telemetry and data science to analyze, adapt and eliminate manual processes, and facilitates an intelligent and efficient approach to securing the enterprise.. .

FactorChain

FactorChain

Crunchbase | Website | Twitter | Facebook | Linkedin

FactorChain provides an incident response acceleration system to delivers the speed demanded for the continuous defense at scale. The company engages in breaking the narrow sections in security operations.

It was founded in 2014 and is based in California, USA.. .

RedSocks Security

RedSocks Security

Crunchbase | Website | Twitter | Facebook | Linkedin

RedSocks Security is specialised in detecting suspicious network behaviour and combatting cybercrime. By combining Machine Learning, Artificial Intelligence and Cyber Threat Intelligence, RedSocks Security provides non-intrusive, real-time breach detection solutions and incident response services.

Our solutions are implementable within organisations of all sizes, and also serve as a tool of compliance to (information and data) privacy legislation.. .

Cydarm

Cydarm

Crunchbase | Website | Twitter | Facebook | Linkedin

Cydarm is secure by design. They know that cybersecurity is a team sport, and success requires collaboration at different levels of trust.

Cydarm’s attribute-based access control model provides flexible collaboration. The value of a collaborative incident response platform increases with the number of users.

They believe in providing fair and predictable licensing that won’t surprise you with a cost overrun, so they charge per user. Contact an expert to learn how Cydarm can provide value in your SOC.

Cydarm is interoperable with other vendor products. Every organization has a different cybersecurity technology stack and they know you will want to customize your workflows.

Cydarm has an open API, and is easy to integrate with your existing technology stack. Cydarm can be deployed anywhere.

Whether you prefer to maintain your security stack on-premises or in the cloud, Cydarm will meet your requirement. Cydarm is deployed using Docker containers, so all you need is a Docker host environment..

Cyberlytic

Cyberlytic

Crunchbase | Website | Twitter | Facebook | Linkedin

The Profiler uses AI to detect and prevent web attacks, such as SQL injection (SQLia) and cross-site scripting (XSS). It uses machine learning to detect anomalies and classify attack data.

By analysing web server traffic in real-time, the software detects and immediately determines the sophistication, capability and effectiveness of each attack. This information is translated into a risk score to prioritise incident response.

Cyberlytic’s patented classification approach is far more effective at assessing attacks than traditional signature-based security solutions and adapts to new or evolving threats without requiring manual intervention. • Advanced threat detection: Unsupervised machine learning detects anomalies in web traffic, whilst supervised machine learning classifies attacks based on threat characteristics.

• Threat analysis, visibility and prioritisation: The Profiler only alerts when a pre-defined risk threshold is exceeded and provides details of malicious web activity. • Simple deployment and zero maintenance: No rules or signatures means no additional demand on analysts to detect even the most sophisticated attacks.

The Profiler is easily deployed by installing a web server agent or by connecting to mirrored network traffic. Data is sent to the Profiler, which is hosted in Cyberlytic’s secure cloud.

Accessed via an intuitive web portal or integrated with any Security Information and Event Management (SIEM) system, the Profiler works autonomously, requiring no human intervention.. .

BISEC

BISEC

Crunchbase | Website | Twitter | Facebook | Linkedin

BISEC is a next generation cyber incident response platform for SOC and MSSPs.

Fortify 24x7

Fortify 24×7

Crunchbase | Website | Twitter | Facebook | Linkedin

Fortify 24×7 is a leading managed security services provider offering comprehensive services that cover all aspects of Prevention, Detection and Response. The company provides ‘Security as a Service’ across multiple categories including Endpoint Protection, Firewall/IDS, DLP, PAM, IAM and more via a collaborative cloud-based platform, which enables customers to tackle evolving cyber threats on a real-time basis.

Fortify 24×7 has successfully filled a gap in the industry with its dedicated 24x7x365 Security Operations Center (SOC), keeping a steady finger on the pulse of cyber threats across North America and trends across the world. Furthermore, a proactive approach has pushed the company to rapidly develop technologies in-house given the need of its customers.

Fortify 24×7 is a fully equipped and dedicated team who identifies cyber threats relevant to customer organizations, conducts analysis on impact and actively connects the dots across multiple incidents. This core incident response service is strengthened by preventive vulnerability management systems that span an organization’s cyber and domain footprint and enables our customers to be cyber resilient.

Fortify 24×7 current customer base includes SMB’s, Fortune 500 companies, healthcare (payor/provider), education, entertainment & media, and state/local government.. .

Protocol 46

Protocol 46

Crunchbase | Website | Twitter | Facebook | Linkedin

Protocol 46 is an information technology company cyber risk assessment, penetration testing, and incident response. It helps companies, businesses, and organizations on their websites and network security by providing cybersecurity services.

The company was founded in 2015 and headquartered in Minnesota, United States.. .

Retrospect Labs

Retrospect Labs

Crunchbase | Website | Twitter | Facebook | Linkedin

We help organisations improve their operational defensiveness and organisational readiness, through cyber security exercises. Our SaaS platform provides access to a range of difference exercise types and scenarios that organisations can use to conduct exercises in a repeatable and meaningful way.

Through exercises, organisations improve and uplift their incident response capability. When an incident does inevitably happen, organisations will be ready, be able to response effectively and efficiently, and minimise the impacts of an incident..

WebTotem

WebTotem

Crunchbase | Website | Twitter | Facebook | Linkedin

WebTotem is a website security platform with Automated Incident Response as a service for startups, e-commerce and even entire countries. Based on world statistics approx.

90 percent of organizations are vulnerable through their web sites. Every second 3-4 websites are getting hacked, losing their clients and, thus, their money.

WebTotem is a service which helps prevent most website cyber attacks, increases the defence barrier without requesting any special knowledge from the user, allowing him to monitor all activities on his website and most importantly it works without any human interaction. We are currently monitoring nearly 140 000 websites for one of our clients and use data from this as a learning model for cyber attack prevention in the entire country..

Fuss Development

Fuss Development

Crunchbase | Website | Twitter | Facebook | Linkedin

Fuss Development is provides cybersecurity analysis and audit services.

VisibleRisk

VisibleRisk

Crunchbase | Website | Twitter | Facebook | Linkedin

Supports Enterprise Defensibility through Enterprise Visibility, Analysis and Intelligence.

Sacumen

Sacumen

Crunchbase | Website | Twitter | Facebook | Linkedin

Sacumen specializes in working with Security Product Companies. We are working with 50+ Security Product Companies such as Symantec, Palo Alto Networks, Varonis, AlienVault, IBM, CA Technologies, ThreatConnect, SecurityScorecard, ForgeRock, Code42, BigID, Flashpoint etc in the areas of Connector Development, Connector Support, and Product Engineering.

We have built 700+ Connectors in the areas of SIEM, IAM, Ticketing Systems, Incident Response, Cloud Applications, Cloud Monitoring, Threat Intelligence Feed, Endpoint Security, Cloud Storage, GRC, Vulnerability Management, Authentication, etc.. .

Arete Advisors

Arete Advisors

Crunchbase | Website | Twitter | Facebook | Linkedin

Arete Advisors is a cybersecurity company providing an accelerated incident response for detecting and responding to cyber-attacks. The company advisor services provide legally defensible, compliant cyber strategies that assist the C-Suite and Boards of Directors to continuously improve the organizations’ cyber posture.

Arete Advisors support multiple missions in the areas of Education, Healthcare, Critical Human Needs, and the Environment. Their mission is to protect and defend organizations against the financial and reputational damages caused by data breaches.

The company core skills include triage, digital forensics, malware reverse engineering, remediation, managed detection response, hunt, and testifying expertise.. .

This article was written by Benjamin Skute from Threat.Technology. The editor for this article was Tess Page. If your company is featured in this article and you want to have amendments made please contact us on: [email protected].

Alternatively you may write to us at: Threat.Technology/Fupping Ltd, First Floor, 61-63 Rochester Pl, London NW1 9JU.

Military Security | Top Companies Providing Military Security Solutions

Penetration Testing | Top Companies Providing Penetration Testing Solutions