Sophos, backed by a private equity firm Thomas bravo, acquired Brain trace, an MSSP specializing in Network Discovery and Response (NDR) security technology. Financial terms of the deal were not disclosed.
To be clear, Sophos is not looking to become an MSSP that rivals peer MSSPs and security-conscious MSPs. Instead, the company remains largely a software and service provider that supports MSSPs and MSPs. This effort includes a multi-tenant dashboard that allows partners to support multiple customers from a single pane of glass.
How Braintrace fits into Sophos
As part of the agreement, Braintrace developers, data scientists and security analysts have joined Sophos’ global Managed Threat Response (MTR) and Rapid Response teams. Additionally, Braintrace’s technology will help Sophos collect and transmit third-party event data from firewalls, proxies, virtual private networks (VPNs) and other sources to improve detection, hunting and response to threats.
In addition, Sophos will deploy Braintrace’s technology as a virtual machine (VM) to inspect north-south traffic at borders and east-west traffic within networks, the buyer said. This will help Sophos discover network threats and improve the decryption capabilities of Sophos Firewall next generation firewall.
Sophos intends to introduce Braintrace’s NDR technology for MTR and extended detection and response (XDR) in the first half of 2022.
A closer look at Braintrace
Braintrace offers intelligence-driven detection and response (MDR) that leverages artificial intelligence and machine learning to help organizations identify cyber threats, the company said. It also provides a variety of managed cybersecurity services, including:
- Violation detection
- Dark web analysis
- Data Loss Prevention (DLP)
- Managed firewall and endpoint
- Security information and event management as a service (SIEMaaS)
In addition, Braintrace provides IT audits and readiness assessments, regulatory or compliance control assessments and certifications, and the Dragonfly intelligent network traffic analysis service.
Sophos acquires Capsule8 and launches Canadian data center
The acquisition of Braintrace comes after Sophos purchased Capsule8 in July 2021, which provides runtime visibility, detection and response software for Linux servers and containers. Capsule8 extends Sophos detection and response solutions and services to underprotected server and cloud environments, the company said.
In addition, Sophos opened a data center in Montreal, Canada in July 2021. This data center supports the Sophos Central cloud management platform, according to the company.
Sophos provides cybersecurity solutions to more than 500,000 organizations around the world. It also offers a partnership program that allows MSSPs and MSPs to integrate its cybersecurity products, solutions and services into their portfolios.