eSentire, a Top 250 MSSP and Top 40 MDR (managed detection and response) service provider, has acquired digital forensics and investigative tools provider CyFIR, and launched an associated Cyber Investigations Portfolio. Financial terms of the deal were not disclosed.
CyFIR, founded in 2018, has 16 employees listed on LinkedIn, and was backed by debt funding of under $1 million, according to PitchBook. The company’s headquarters in Washington, D.C., will become eSentire’s second U.S.-based Technical Center of Excellence.
CyFIR’s products and services will be support and rebranded under eSentire’s Cyber Investigations Portfolio in the months ahead, the buyer said. Exact timing of the rebranding was not disclosed.
The overall eSentire business now supports more than 1,000 customers in 70 countries globally.
eSentire Cyber Investigations Portfolio: More Details
The CyFIR technology aligns with eSentire’s Atlas XDR platform and new Cyber Investigations Portfolio — which spans Emergency Incident Response, Digital Forensics Investigations and Security Incident Response Planning services, eSentire says. Moreover, the strategy includes a four-hour remote threat suppression service level agreement (SLA).
Bryan Sartin, chief services officer, eSentire
In a prepared statement about the threat suppression strategy, eSentire Chief Services Officer Bryan Sartin said:
“When faced with a security incident, how quickly an organization can contain and recover is paramount to limiting business disruption and reputational damage. eSentire is extending our unmatched capabilities in cyber response into the domain of digital forensics. We are leaning into an engagement model that converges Incident Response, Threat Intelligence and our 24/7 SOC Cyber Analyst expertise with advanced technology to deliver time to value in terms of threat suppression, and complete incident resolution. We are making 4-hour remote threat suppression a reality, anywhere in the world.”
Sartin, the former leader of Verizon Cybertrust, oversees the eSentire Artemis Incident Response (IR) team.
Kerry Bailey, CEO eSentire
Added eSentire CEO Kerry Bailey:
“In today’s threat environment, detection isn’t enough. There is no end to cyber risk, so organizations need to prepare for an emergency scenario by hardening their defenses, and becoming cyber resilient through the adoption of technologies, sound processes and expert-level support. eSentire goes beyond the market’s capabilities in Managed Detection and Response. We are delivering what we like to refer to as MDR3 – Response. Remediation. Results. In the event of a breach or security incident, no other service provider matches our depth of visibility and speed to resolution. We have been an innovator in Managed Detection and Response services for over two decades and now we’re disrupting the market with unparalleled time to resolution in Incident Response and Digital Forensics.”
Since that time, eSentire has launched a new corporate website, and a branding campaign that positions the company as “the Authority in Managed Detection and Response (MDR).”
In some ways, eSentire’s combination software and cyber investigation strategy counters FireEye — which offers security products and Mandiant consulting services (though that company is heading for a breakup). Moreover, eSentire has bet the business on MDR — with a heavy dose of automation.