SecBI is taking on DarkTrace, Vectra Networks and other vendors in automated cyberthreat detection and investigation with its two main channel streams.
The company delivers automated threat detection and investigation for security operations centers (SOCs) and MSSPs. Doron Davidson, its co-founder, and vice president of business development and customer success, has more than 15 years of experience in IT security and telecommunications.
Last fall, SecBI partnered with Tokyo-based reseller Intelligent Wave to offer its autonomous investigation technology to organizations and enterprises throughout Japan. It also announced the availability of its autonomous investigation app for the Palo Alto Networks Application Framework.
Before joining SecBI, Davidson held operational, and profit-and loss-responsibilities for RSA’s EMEA professional security service practices. In that role, he worked with some of the world’s largest security teams and helped them to establish the systems and business processes at the heart of their incident-response operations.
In a Q&A with Channel Partners, Davidson talks about how his company works with partners and the advantages it has over its competitors.
Channel Partners: Tell us what customers love about your product or service. What’s the secret selling sauce?
Doron Davidson: Customers love the simplicity of our automated threat remediation and investigation solution. The fact that, within a few minutes, cybersecurity analysts understand the full scope of an attack, as well as the affected entities (for example, users and servers), enables them to completely eliminate the cyberthreat from the network. Typically, alert systems leave the security analyst to manually piece together forensic information, threat intelligence and log data to come up with a full picture — a process which typically takes from days to months, and often leaves remnants of the attack in the network.
|“7 Minutes” is a feature where we ask channel executives from startups – or companies that may be new to the Channel Partners audience – a series of quick questions about their businesses and channel programs.**|
SecBI’s simple integration with an enterprise’s existing equipment allows for fast installation in the cloud or on premises. Within a few hours, an enterprise is prepared for tomorrow’s stealthy attacks, with its security operations center achieving higher return on investment (ROI) from a streamlined, efficient process. In short, our technology helps security analysts provide faster and better value to their organization — better security, more efficiently. As it can be deployed in the cloud, it’s easy for many channels to develop new revenue streams or optimize existing ones by providing new services based on SecBI’s solution, including hunting, incident response and more. In addition, the cloud allows channels to benefit from more business-model options.
CP: Describe your channel program — metal levels, heavy on certifications, open or selective, unique features?
DD: SecBI has two main channel program streams. The first is intended for MSSPs whose business model is “SOC as a service.” SecBI makes it easy for them to recommend enhanced cyber defense such as automated hunting or incident response. The second stream is for MSSPs who run the security services at the customers’ site, or VARs who sell …