Content, Channel partners, MSSP

MSSP Security On-Demand Updates Cyber Threat Detection Platform

Peter Bybee
Peter Bybee

Security On-Demand (SOD), a San Diego-based MSSP that offers behavioral analytics technology to help organizations identify and address data breaches, has launched Version 5.0 of the ThreatWatch Platform.

ThreatWatch 5.0 enables security analysts to evaluate billions of logs to uncover and act on cyber threats in minutes, SOD said.

Key features of ThreatWatch 5.0 include:

  • Advanced threat hunting platform and service add-on.
  • Customer portal that features a simple user interface and navigation.
  • "Log Concierge" page that delivers interactive log analysis and on-the-fly reporting.
  • Reports manager with report templates.
  • Resources page that provides access to product bulletins, training videos and user training guides.
  • Support for advanced correlation use cases, including Office 365 and Azure.
  • "Threat Concierge" that provides access to interactive alert drill-downs, charts and graphs.

ThreatWatch 5.0 uses SuperScale Analytics, an approximate query database engine that conducts log queries across petabytes of log data, according to SOD. SuperScale Analytics helps security analysts collect and review over 100 billion customer log events every week, SOD said, and reduces threat detection time from months to hours or minutes.

"Most companies don't know what's in the data at their disposal. SuperScale Analytics represents a huge step forward for them, and it essentially helps them find the needle in the haystack of threat detection data," SOD CEO Peter Bybee told MSSP Alert.

ThreatWatch 5.0 will be available for full production use by customers next month.

SOD: Here's What You Need to Know

Founded in 2001, SOD is a channel-focused MSSP that integrates advanced threat detection models such as artificial intelligence (AI), human bio-immune system response and machine learning into its managed security services.

SOD was the first MSSP to provide network access control (NAC) as a managed service and first to commercialize a managed web application firewall service, according to the company. In addition, SOD represents the lone MSSP to analyze customer data using asset, network and user behavior, the company stated.

On average, SOD has experienced 40 percent per-year growth in each of the last three years, Bybee told MSSP Alert. It boasts 85 employees and continues to search for ways to extend its global reach as well.

SOD in May acquired SuperScale Analytics technology from relational database software company Infobright. The MSSP also acquired Infobright Approximate Query (IAQ) technology and other intellectual property assets as part of the transaction.

Furthermore, SOD intends to open a security operations center (SOC) in Warsaw, Poland, Bybee said. The company also expects ThreatWatch 5.1 to be available next year.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.