Channel investors, Content, MDR

eSentire Acquires CyFIR; Launches Cyber Investigation Services

eSentire, a Top 250 MSSP and Top 40 MDR (managed detection and response) service provider, has acquired digital forensics and investigative tools provider CyFIR, and launched an associated Cyber Investigations Portfolio. Financial terms of the deal were not disclosed.

This is technology M&A deal number 346 that MSSP Alert and sister site ChannelE2E have covered so far in 2021. See all technology M&A deals for 2021 and 2020 listed here. Also, we’ve tracked more than 60 MSSP mergers and acquisitions here.

CyFIR, founded in 2018, has 16 employees listed on LinkedIn, and was backed by debt funding of under $1 million, according to PitchBook. The company's headquarters in Washington, D.C., will become eSentire's second U.S.-based Technical Center of Excellence.

CyFIR's products and services will be support and rebranded under eSentire's Cyber Investigations Portfolio in the months ahead, the buyer said. Exact timing of the rebranding was not disclosed.

The overall eSentire business now supports more than 1,000 customers in 70 countries globally.

eSentire Cyber Investigations Portfolio: More Details

The CyFIR technology aligns with eSentire's Atlas XDR platform and new Cyber Investigations Portfolio -- which spans Emergency Incident Response, Digital Forensics Investigations and Security Incident Response Planning services, eSentire says. Moreover, the strategy includes a four-hour remote threat suppression service level agreement (SLA).

Bryan Sartin,
Bryan Sartin, chief services officer, eSentire

In a prepared statement about the threat suppression strategy, eSentire Chief Services Officer Bryan Sartin said:

“When faced with a security incident, how quickly an organization can contain and recover is paramount to limiting business disruption and reputational damage. eSentire is extending our unmatched capabilities in cyber response into the domain of digital forensics. We are leaning into an engagement model that converges Incident Response, Threat Intelligence and our 24/7 SOC Cyber Analyst expertise with advanced technology to deliver time to value in terms of threat suppression, and complete incident resolution. We are making 4-hour remote threat suppression a reality, anywhere in the world.”

Sartin, the former leader of Verizon Cybertrust, oversees the eSentire Artemis Incident Response (IR) team.

Kerry Bailey, CEO eSentire

Added eSentire CEO Kerry Bailey:

“In today’s threat environment, detection isn’t enough. There is no end to cyber risk, so organizations need to prepare for an emergency scenario by hardening their defenses, and becoming cyber resilient through the adoption of technologies, sound processes and expert-level support. eSentire goes beyond the market’s capabilities in Managed Detection and Response. We are delivering what we like to refer to as MDR3 – Response. Remediation. Results. In the event of a breach or security incident, no other service provider matches our depth of visibility and speed to resolution. We have been an innovator in Managed Detection and Response services for over two decades and now we’re disrupting the market with unparalleled time to resolution in Incident Response and Digital Forensics.”

eSentire: Key Hires for Business Expansion

eSentire also is investing in executive talent. The company in April 2021 hired Digital Defense veteran Bob Layton as chief channel officer; and Herjavec Group veteran Erin McLean as chief marketing officer.

Since that time, eSentire has launched a new corporate website, and a branding campaign that positions the company as "the Authority in Managed Detection and Response (MDR)."

In some ways, eSentire's combination software and cyber investigation strategy counters FireEye -- which offers security products and Mandiant consulting services (though that company is heading for a breakup). Moreover, eSentire has bet the business on MDR -- with a heavy dose of automation.

Joe Panettieri

Joe Panettieri is co-founder & editorial director of MSSP Alert and ChannelE2E, the two leading news & analysis sites for managed service providers in the cybersecurity market.