BAE Spins Off Threat Triage Startup SOC.OS, After Internal Incubation

FavoriteLoadingInclude to favorites

Like a pocket-sized SIEM for SMEs.

BAE Systems Applied Intelligence has properly spun-off a new cybersecurity firm pursuing an internal incubation course of action, in a 1st for the British defence, protection, and aerospace subsidiary.

“SOC.OS” has gained £2 million in funding from Hoxton Ventures and Speedinvest, the firm claimed right now and also secured early adopters, including the Uk Atomic Electricity Authority.

The firm and its item are built to help internal protection groups at medium-sized enterprise manage menace defense and detection tool alerts mechanically analysing, triaging, and prioritising alerts.

The significant plan: helping overstretched groups wearing a lot of IT hats at mid-sized companies who may well be wrestling with hundreds to thousands of alerts everyday from unique protection items and instruments that are not consolidated.

(Most SIEM/SOAR choices are tailor-made to massive SOCs or internal IT protection groups, the firm argues, producing them cost-prohibitive).

SOC.OS was born within the Futures crew of BAE Systems Applied Intelligence – an internal innovation and undertaking incubation hub. The new firm released officially in June 2020, with Dave Mareels as CEO.

Hussein Kanji, founding partner at Hoxton Ventures added: “As early traders in Darktrace, we know a matter or two about identifying great Uk cyber protection expertise. We are psyched to be partnering with SOC.OS and operating with the UK’s major defence player… to spin out this distinctive firm.”

The tool performs by ingesting alerts and enriching them with third occasion menace info, associating the inform with MITRE ATT&CK menace info.

These are then clustered by shared entity and menace kind (i.e. so that these hitting your network with very similar menace varieties can be clustered alongside one another) and then rated by urgency using a info visualisation tool.

This is, arguably, almost nothing that has not been performed ahead of, but producing it perform for the tens of millions of organizations out there that are more and more the unwitting focus on of cybercriminals — but which would wrestle to indication off the spending plan for SoC guidance or a much larger protection crew — may well be a sweet place.

See also: F5 Exploits Proliferate Just after Humdinger of a Bug