Devo Technology is a cybersecurity company focused on real-time security operations. Its Devo Security Data Platform is designed to help organizations ingest, retain, query, and analyze large volumes of telemetry so teams can detect threats, investigate incidents, and respond faster. Devo Technology positions the platform as a foundation for modern SOC programs by combining SIEM, SOAR, UEBA, automated case management, and AI-driven investigation capabilities.
Beyond core SOC use cases, Devo Technology packages its offerings for security teams, IT operations teams, and MSSPs that need multitenancy, data residency controls, and scalable analytics. Its portfolio spans data orchestration, security analytics, automated triage, behavior analytics, threat hunting, and expert services that help customers operationalize workflows across cloud, hybrid, and on-premises environments.
Offerings, Capabilities, and Integrations
Devo Technology’s capabilities center on data orchestration, real-time analytics, automation, and multitenant operations. It supports ingestion and parsing of diverse data types, high-speed search and analytics, data enrichment, and customizable visualizations. The platform also supports routing data to destinations such as Amazon S3, Databricks, and Snowflake, alongside open APIs for custom applications, integrations, and automations.
Devo Technology is built to work within existing security and IT ecosystems rather than require a full rip-and-replace approach. It integrates with threat intelligence feeds, third-party SOAR platforms, and ITSM tools such as ServiceNow, and it supports bidirectional response workflows through Devo SOAR. The company also positions its platform to augment established security stacks, including Microsoft Sentinel, for organizations that need broader visibility, stronger analytics, or more flexible operations.
Products and Services
- Devo Security Data Platform: Real-time security data platform for security operations that combines data-powered threat detection, automated case management, autonomous investigations, and threat hunting.
- Data Analytics Cloud: Data-agnostic analytics foundation for orchestrating, ingesting, querying, and analyzing large-scale telemetry, with support for custom applications, dashboards, and multitenancy.
- Devo SOAR: Cloud-native security orchestration, automation, and response offering that automates repetitive SOC workflows and coordinates response actions across tools.
- Devo ThreatLink: Automated case management solution that correlates and enriches alerts into high-fidelity cases to streamline triage and incident response.
- Devo Behavior Analytics: Behavior analytics application that uses AI models to detect anomalous activity across users, devices, and domains and quantify entity risk.
- Devo DeepTrace: AI-powered autonomous investigation and threat hunting solution that traces attacker behavior and accelerates analyst decision-making.
- Devo for Security: Packaged security operations offering for SOC teams that brings together SIEM, SOAR, UEBA, automated case management, and AI-driven investigation workflows.
- Devo for IT: Packaged analytics offering for IT operations teams that unifies machine data, augments existing monitoring tools, and supports custom operational use cases.
- Devo for MSSPs: Managed security service provider offering built around self-service multitenancy, centralized management, tenant segregation, and scalable customer onboarding.
- Professional Services: Implementation, onboarding, migration, optimization, custom content development, and technical account support services for Devo deployments.
- Devo Exchange: Community-based app and content marketplace that gives customers on-demand access to curated detections, applications, visualizations, and enrichments.
- Strike48: Agentic AI log intelligence platform from Devo Technology with purpose-built agents for investigation, alert correlation, root cause analysis, and evidence collection.
Target Customers
Devo Technology primarily serves enterprise security operations centers, threat hunting teams, and security leaders that need real-time visibility across large and complex environments. Its offerings are suited to organizations managing high data volumes across cloud, hybrid, and on-premises estates and looking to improve detection and response without sacrificing coverage or operational speed.
Devo Technology also targets IT operations teams that need customizable analytics beyond traditional monitoring tools, as well as MSSPs that require centralized multitenant operations, tenant-level data segregation, and fast onboarding. Organizations with distributed environments, compliance requirements, or data residency constraints are a strong fit for its platform model.
Cloud Integrations and Marketplace
- AWS Marketplace: The Devo Platform is available through AWS Marketplace as a deployed-on-AWS offering for Devo Technology’s security data platform.
Key People
- Ken Naumann: Chief Executive Officer
- Walter Scott: Executive Chairman of the Board
- Mike Soder: Chief Financial Officer
- Rakesh Nair: Chief Technology Officer
- Tom Pucciarella: Chief Customer Officer
- Oyefunke Fayoyin: Chief Information Security Officer
- Ingo Bednarz: General Counsel
- Tim Leehealey: VP of Corporate Strategy, Marketing and Operations
- Jason Mical: Field CTO
- Chris O’Brien: VP Product Marketing
Key Facts
- Headquarters: Boston, Massachusetts, United States
- Employees: Approximately 497
- Annual Revenue: $100M-$250M
- Parent Company: None
- Subsidiaries: None
- Publicly Listed: Private
Analyst Recognitions
- Gartner: 2024 Gartner Magic Quadrant for Security Information and Event Management (SIEM) — Visionary.
- IDC: 2024 IDC MarketScape Worldwide SIEM for Enterprise Vendor Assessment — Leader.
