Vectra Networks

Vectra AI From Wikipedia, the free encyclopedia Jump to navigationJump to search Vectra AI Type Privately Held Industry Information Security Founded 2012; 8 years ago (incorporated) Founders Mark Abene, James Harlacher, Marc Rogers, Ivan Wick [1] Headquarters San Jose, California, U.S. Area served North America, Europe, Middle East, Africa, Australia/New Zealand, Japan and Asia-Pacific Website www.vectra.ai Vectra AI, Inc. applies artificial intelligence that detects and responds to hidden cyberattackers inside cloud, data center and enterprise networks. The company’s Cognito platform is designed to detect cyberattacker behaviors in these infrastructures and allow security analysts to conduct incident investigations and hunt for hidden threats using security-enriched metadata. To augment the Cognito platform, Vectra threat researchers identify and investigate cyberattacks, vulnerabilities and malicious behaviors that are unknown to the world. With data sets from this research, data scientists develop the machine learning algorithms and behavioral analysis that drive the Cognito platform. Investors in Vectra include Khosla Ventures, TCV, Accel Partners, IA Ventures, AME Cloud Ventures, DAG Ventures, Wipro Ventures, Atlantic Bridge, the Ireland Strategic Investment Fund, Nissho Electronics, and Silver Lake. Contents 1 History 2 Products 3 Technology 4 Attacker Behavior Industry Reports 5 Awards and Honors History Vectra was founded in 2010 as TraceVector LLC in New York City and was incorporated in 2012 under the name Vectra Networks. The company is headquartered in San Jose, Calif., with facilities in Austin, Texas, Boston, Mass., Ireland, Switzerland, Germany, the United Kingdom and France.[2] Vectra’s team includes threat researchers, white hats, data scientists, security engineers, and user interface designers. Key executives are Hitesh Sheth, president and chief executive officer; Jennifer Geisler, chief marketing officer; Oliver Tavakoli, chief technology officer; Howie Shohet, chief financial officer; Jodi Sutton, vice president of business operations; Jennifer Wang, vice president of customer success; Kevin Kennedy, vice president of product management; Jason Kehl, vice president of engineering; Aaron Bean, vice president of human resources; and Gerard Bauer, vice president of EMEA sales. Board members include Hitesh Sheth, president and CEO of Vectra; Bruce Armstrong, operating partner, Kholsa Ventures; Kevin Dillon, co-founder and managing partner of Atlantic Bridge; Charles Giancarlo, CEO of Pure Storage; Brad Gillespie, general partner at IA Ventures; Tim McAdam, general partner TCV; Jim Messina, founder and CEO of the Messina Group; and Eric Wolford, venture partner at Accel Partners. Products The Cognito platform from Vectra provides continuous, automated threat surveillance to expose hidden and unknown cyberattackers that actively spread inside networks. Cognito analyzes network traffic[3] in private data centers, public clouds and enterprise environments to detect hidden cyberattacker behaviors. The Cognito platform identifies and prioritizes all threat detections based on severity and certainty scores, which empowers IT security teams to prevent data loss by quickly mitigating the most serious attacks first.[4] Threat behaviors and cyberattack techniques detected by Cognito include botnet command-and-control communications, botnet monetization, internal reconnaissance, lateral movement, and data theft, or exfiltration. Vectra offers three applications on the Cognito platform to address use cases: Cognito Stream delivers enterprise-scale network metadata enriched with security insights in Zeek format to data lakes and security information and event management (SIEM) applications without the complexity, constant tuning and scale limitation of open-source Zeek. [5] Cognito Recall gives security analysts a logical starting point to perform AI-assisted threat hunting and conclusive incident investigations. [6] Cognito Detect automates the real-time detection of hidden attackers in cloud and data center workloads and user and internet-of-things devices.[7] Using AI for incident detection and triage in its security operations center has helped one Vectra customer – Texas A&M University System – resolve an incident in 10 to 20 minutes, rather than hours or days.[8] Technology Vectra AI combines data science, machine learning and network behavioral analysis technologies[9] to identify patterns that characterize malicious behavior within a network. Cognito uses artificial intelligence, including supervised learning, unsupervised machine learning, and deep learning techniques, to detect and respond to advanced cyberattacks. Remediation actions are taken with security information and event management (SIEMs), firewalls, endpoint security enforcement, network access control, and orchestration, which are integrated with Cognito via an application programming interface. Vectra was issued ten U.S. patents for advanced cyber security analytics capabilities automated by AI: