Tenzir

I've written about the security data fabric market a couple times now, and one thing is clear: There's a lot of confusion about what a 'security data fabric' actually is. We need a clear set of core capabilities. Here's a summary of my definition for a security data fabric — roughly translated from Gartner's definition of the Data Fabric architecture with adaptations for cybersecurity use cases. → Integration and Connectivity The whole point of a security data fabric is to reduce the effort required to integrate and move security data. That means pre-built connectors for the hundreds of potential sources for logs and other data, both on-premise and cloud. If you (or a SI) has to build a bunch of custom integrations or model your own schema, it's probably not a *security* data fabric. Collecting data is required. Delivering data is technically optional (according to Gartner). It's not really optional for most security teams, especially those moving towards data lakes (Snowflake, Databricks, etc.) for their security use cases. → Data Handling Security data fabrics need to have their own data model to standardize, enrich, and reduce the volume of log data. For example, recognizing an endpoint or identity has been seen before and correlating events for it across different log sources. Security teams also need flexibility in the data model to support downstream systems. You want the security data fabric to support the destination's data model so you don't have to transform data yourself. → Security Data Observability and Governance A security data fabric has to come with data observability and governance built in. It's responsible for a company's most critical and sensitive security data. There can be no blind spots, missing data, or issues with sensitive data correction. → Reliability and Performance Security data fabrics move data from a lot of sources. Built-in fault tolerance, scaling, and high availability are foundational. You don't want to have yet another tool in the mix to monitor the health and performance of your security data integrations. → AI/ML Support Use of AI/ML for data structuring and enrichment is a core data fabric feature from Gartner, so we should expect this from security data fabrics too. An emerging use case is using AI to learn from the data streams and provide insights across data sources on the fly. --- By this definition, I'd say companies like DataBahn.ai have focused on building a complete product/platform. Other companies like Tenzir, Prevalent AI, Observo AI, and more have also built several of the capabilities that I have listed here. Now that we have a directional definition in place, I'll be working on a more detailed market map. Stay tuned.

𝗧𝗲𝗻𝘇𝗶𝗿'𝘀 𝗝𝗼𝘂𝗿𝗻𝗲𝘆 𝗶𝗻 𝗖𝘆𝗯𝗲𝗿𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 In the wake of a significant cyber-attack on the Hamburg University of Applied Sciences, the importance of robust cybersecurity has never been clearer. Tenzir, a Hamburg-based startup, is at the forefront of this battle. Tenzir provides innovative solutions to protect data infrastructures against inevitable cyber threats. With a strong research background from Berkeley University, Tenzir bridges the gap between data management and security. Tenzir was founded in Hamburg in 2017 by Matthias Vallentin. The company then needed a manager, who is familiar with administrative issues. Tenzir found the right support within its own ranks when Matthias brought his sister, the lawyer Julia Vallentin, on board the deep-tech company.  Initially funded by the Hamburgische Investitions- und Förderbank (IFB Hamburg) and angel investors, Tenzir has grown into a professional enterprise with a focus on rapid scaling and innovation. 👉 Read more about their story: https://lnkd.in/ehnBmy9T #startupcityhamburg #StartedInHamburg  #Cybersecurity #DataProtection photo © Tenzir

Attention! Returning Community Friend Sponsor, Tenzir, deserves all the hype and recognition! We want to thank you for supporting SuriCon each year and we can’t wait to meet up in Madrid! Like us, Tenzir supports the open source community providing tools for those to easily connect to open source security solutions like Suricata! You are an inspiration to us and we can’t tell you enough how thankful we are to have you backing #SuriCon2024! Learn more about Tenzir here: https://tenzir.com/ #SuriCon #Sponsors #Suricata #OISFoundation Open Information Security Foundation

In London next week? Come find us and book a meeting with Johan Hesse and me. We're eager to talk with you about the latest in #SecDataOps at Tenzir. 👉 https://lnkd.in/eUQPxArW #Infosec2024 #Infosecurity

In London next week? Come find us and book a meeting with Johan Hesse and me. We're eager to talk with you about the latest in #SecDataOps at Tenzir. 👉 https://lnkd.in/eUQPxArW #Infosec2024 #Infosecurity