BlueVoyant offers a cyberdefense platform that allows users to detect and respond to internal and external cybersecurity events, including supply chain vulnerabilities and threats existing in both the open and dark web. The solution is cloud native, it embeds machine learning (ML), AI, and automation, and it provides a single pane of control to allow clients to consolidate multiple tools and to simplify cyber risk management. Along with marking its fifth anniversary in 2022, BlueVoyant raised $250 million in a Series D funding round. According to the company, it identifies security and vulnerability risks for more than 1 million entities.
BlueVoyant’s AI-Powered Cyberdefense Platform Responds to Threats
Specifically, the cyberdefense offering includes:
- Managed detection and response solutions for Microsoft, Splunk, and endpoints. The service is deployed on the customer’s infrastructure and utilizes the existing tools they have implemented. It includes 24×7 real-time monitoring for internal and external threats, as well as end-to-end consulting and implementation and unlimited remote lifecycle support for incident response that can accelerate the triaging of incidents.
- Fully-managed supply chain defense services to continuously monitor the third-party vendor and supplier ecosystem to identify and remediate cybersecurity issues that could result in financial losses, regulatory fines, and reputational damage. AI and ML are used to evaluate suppliers’ entire digital footprints and to prioritize issues and avoid false positives. This includes mapping against industry-standard risk control frameworks. BlueVoyant has a Risk Operations Center that is responsible for ensuring the accuracy of findings and engaging with third parties for resolution. From this standpoint, BlueVoyant offers technical diligence, continuous assessment and monitoring, risk prioritization, and zero-day remediation, to help customers more efficiently scale supply chain defense across vast supply chains against the backdrop of limited in-house IT staff.
- Along a similar vein, BlueVoyant also offers a digital risk protection service. The service maps the organization’s attack surface to uncover external threats, and it monitors for and alerts about leaked data, including customer personally identifiable information (PII) and corporate executives’ data. It also proactively detects and initiates takedown requests of phishing attacks and spoofed domains. AI and ML are used to detect threats, and BlueVoyant analysts are utilized to reduce false positives.
The Futurum Group attributes BlueVoyant’s success to date primarily to its ability to offer a solution to pressing SecOps problems. Notably, we see CISOs looking to implement layered defense models for resiliency against the onslaught of cyber-attacks. However, this means cultivating large, expert teams that are capable of finding a needle in a haystack in terms of sifting through a sea of signals to uncover relevant attacks. It is notable that BlueVoyant operates approximately 40 security analysts at their Security Operations Center (SOC), which has approximately 145 industry certifications and over 10 years working with highly-regulated and secure organizations including the US Department of Defense (DOD). When coupled with BlueVoyant’s AI and ML, this means more comprehensive and faster issue identification and resolution.
Technologically speaking, BlueVoyant’s differentiators include its ability to meet customers where they are. This is in terms of allowing customers to utilize their existing security solutions, such as SIEM tools and others, rather than requiring them to redeploy new technologies. Additionally, clients still own their data; they do not need to migrate it to a BlueVoyant cloud. Rather, BlueVoyant acts as a tenant helping to manage risk and compliance.
Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.
Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.
Other insights from The Futurum Group:
Kyndryl and Common Services Centres Launch Cyber Rakshak, a Cybersecurity Training Program for Women
Spectrum Enterprise and Cisco Give Business Cybersecurity Protection Ease and SASE Appeal
Author Information
With a focus on data security, protection, and management, Krista has a particular focus on how these strategies play out in multi-cloud environments. She brings approximately 15 years of experience providing research and advisory services and creating thought leadership content. Her vantage point spans technology and vendor portfolio developments; customer buying behavior trends; and vendor ecosystems, go-to-market positioning, and business models. Her work has appeared in major publications including eWeek, TechTarget and The Register.
Prior to joining The Futurum Group, Krista led the data protection practice for Evaluator Group and the data center practice of analyst firm Technology Business Research. She also created articles, product analyses, and blogs on all things storage and data protection and management for analyst firm Storage Switzerland and led market intelligence initiatives for media company TechTarget.