Christmas got here early for 3 distributors within the risk intelligence and assault floor administration area this previous week. In a reported all-cash $500 million deal (no want for layaway when your market cap is north of $2 trillion), Microsoft acquired risk intelligence and assault floor administration vendor RiskIQ. In Europe, Swedish vulnerability threat administration agency Outpost24 introduced its acquisition of risk intelligence supplier Blueliv. At the moment, Rapid7 introduced its acquisition of risk intelligence agency IntSights. The roughly $900M (Forrester’s estimate) spent on risk intelligence indicators how the pandemic has elevated the significance and worth of assault floor administration and risk intelligence in lowering vulnerability dangers and defending manufacturers.
Cyber risk intelligence distributors want entry to telemetry to repeatedly determine, monitor, and mannequin cyber threats. Smaller cyber risk intelligence distributors with out managed safety service suppliers/managed detection and response providers or a software-as-a-service (SaaS) safety management providing must get inventive with their assortment plan — or they’ll get acquired by a longtime safety vendor with a strong suite of SaaS safety controls and managed providers. IntSights’ acquisition by Rapid7 and Blueliv’s acquisition by Outpost24 ought to have large advantages for all bases. With extra risk intelligence capabilities, vulnerability threat administration distributors ought to enhance their prioritization fashions to focus much more on exploitation, somewhat than Widespread Vulnerability Scoring System scores.
Current acquisitions of assault floor administration distributors (Palo Alto Networks acquired Expanse final yr) counsel these merchandise are extra useful as elements of bigger safety ecosystems, with restricted futures as impartial corporations. As an assault floor is extra than simply what’s Web-accessible, there may be large alternative to combine the exterior visibility from assault floor administration with the interior safety controls to utterly map all of the connections and belongings of an enterprise. I can consider a number of ways in which RiskIQ’s expertise will be built-in with Microsoft’s safety controls to ship immense worth. Alternatively, RiskIQ may give Microsoft a chance to make extra of its immense safety telemetry out there to the safety neighborhood. Jess Burn and I are scrambling to replace our in-progress analysis on assault floor administration. Watch this area for the ultimate report this summer time — until there may be one other acquisition to weblog about within the meantime!