With the acquisition of Kenna Security, Cisco is getting its hands on its data science-based security risk management technology that the OEM plans to integrate into its Secure X platform.
The Cisco equipment manufacturer continues to expand its security portfolio. This week, the equipment manufacturer finalized the acquisition, for an amount which has not been made public, of the Californian risk management company Kenna Security. Kenna’s risk-based vulnerability management system collects and analyzes security data to provide security teams with threat intelligence so they can prioritize remediation and better understand risk.
Kenna Security’s technology will be integrated into Cisco’s SecureX service, which already includes many security components. According to Cisco, this open, cloud-native system makes it possible to detect and remediate threats on Cisco and third-party products from a single interface. The SecureX Dashboard displays operational metrics, triggers alerts on emerging threats, and accelerates threat investigation and incident management by aggregating and correlating global intelligence with local context in a single view.
Integration with Secure X
Additionally, according to Cisco, SecureX provides access to more than 30 pre-built security workflows, 40 turnkey integrations, and orchestration capabilities to automate and orchestrate cloud security management, network, applications and enterprise endpoints. “By harnessing real-world threat intelligence and data science, Kenna has demonstrated the ability to process data from a multi-vendor environment and provide a comprehensive view of IT vulnerability risk,” wrote Gee Rittenhouse, senior vice president and general manager of Cisco’s Security Business Group in a blog post about the acquisition.
“Kenna Security’s integration with Secure X bridges Cisco’s threat management and Kenna’s risk-based vulnerability management and strengthens Cisco’s overall platform,” he said. -he adds. “Additionally, by combining Kenna Security with SecureX, customers will be able to address critical challenges by generating prioritized lists of vulnerabilities, streamlining collaboration between security and IT teams, and automating corrective actions to improve their overall security posture,” said Rittenhouse.
Acquisitions follow one another
Over the past two years, Cisco has made several acquisitions in the security space. Examples include Banzai Cloud, which allows customers to monitor application development, deployment, and execution as well as security workflows; Portshift, a Kubernetes-native security platform for application security; or Duo, whose Zero Trust solution improves access security and provides multi-factor authentication via security keys or biometric capabilities.