Devo

Devo is a technology company that provides a cloud-native logging and security analytics platform. Its mission is to empower organizations with real-time data analytics solutions to release the full potential of their data. The company aims to revolutionize how businesses utilize data by providing a platform that integrates security information and event management (SIEM), security orchestration, automation, and response (SOAR), and user and entity behavior analytics (UEBA). Devo’s goal is to enable security operations centers (SOCs) to work more effectively, respond to threats faster, and make smarter decisions through AI and intelligent automation.

Devo has established a strong market reputation, recognized by industry analysts as a leader and visionary in the SIEM and security analytics market. The company is known for its ability to handle massive volumes of data in real-time, which allows enterprises to improve threat detection and monitoring. Customers and industry reviews frequently highlight Devo’s responsive customer support and the platform’s scalability. The company’s focus on a customer-centric approach and continuous innovation contributes to its positive standing in the cybersecurity industry.

Offerings, Capabilities, and Integrations

Devo is a cloud-native security analytics company that offers a real-time security data platform. This platform is designed to provide a unified view of security operations, risk posture, and the threat landscape. Devo’s core capability lies in its ability to ingest massive volumes of data from diverse sources, including on-premises and cloud environments, and make it available for real-time analysis. A key competitive differentiator is its “400 days of always-hot data” feature, which allows for extended historical investigation without compromising query speed. The platform’s architecture is built for scalability and performance, utilizing parallelization for ingestion, querying, and data compression. This enables thousands of concurrent real-time queries, empowering security teams to detect and respond to threats more efficiently. Devo integrates with a wide range of security tools and platforms, including threat intelligence feeds, third-party SOAR platforms, and ITSM tools, to enhance automation and streamline workflows.

Products and Services

Devo’s offerings are centered around its flagship product, the Devo Security Data Platform. This platform unifies several key security functions into a single solution.

• Devo Security Data Platform: This is the core of Devo’s offerings, providing a foundation for security operations. It combines data-powered threat detection, automated case management, autonomous investigations, and threat hunting. The platform is designed to replace traditional Security Information and Event Management (SIEM) systems.
• Data-Powered SIEM: Devo provides a next-generation SIEM with real-time insights and AI-driven threat hunting capabilities. It is designed to handle large volumes of data and provide faster query performance than legacy systems.
• Security Orchestration, Automation, and Response (SOAR): Devo includes SOAR capabilities to help security teams automate repetitive tasks, develop playbooks, and trigger automated responses to security incidents.
• User and Entity Behavior Analytics (UEBA): The platform incorporates UEBA to identify anomalous behaviors from users and devices, helping to surface threats automatically.
• Devo DeepTrace: This is an autonomous, AI-powered solution for Threat Detection, Investigation, and Response (TDIR) that automates alert triage and investigations.
• Devo ThreatLink: This feature automates the triage of alerts by correlating and enriching them into a smaller number of high-fidelity cases.
• Professional Services: Devo offers professional services to assist with the deployment, configuration, and optimization of its solutions for enterprise customers.

Target Customers

Devo targets enterprise-level organizations, including Fortune 1000 companies, across various industries such as financial services, retail, manufacturing, and telecommunications. Its solutions are designed for companies that need to manage and analyze massive volumes of machine data from a multitude of sources. The primary users of Devo’s platform are security and IT operations teams, particularly Security Operations Centers (SOCs). These teams benefit from Devo’s platform by gaining enhanced visibility into their entire attack surface, which allows them to move from a reactive to a proactive security posture. The platform helps to reduce alert fatigue, streamline workflows, and accelerate incident response times, ultimately improving the efficiency and effectiveness of the SOC. Devo also caters to Managed Security Service Providers (MSSPs).

Cloud Integrations and Marketplaces

Devo provides a range of cloud integrations and maintains a presence on major cloud marketplaces, enabling customers to connect its security analytics platform with their existing cloud environments.

• AWS Marketplace: Devo is available on the AWS Marketplace. This allows customers to procure and deploy the Devo Platform on Amazon Web Services. The platform is designed to be cloud-native and integrates with various AWS services to ingest data for security analysis. Devo offers specific collectors for AWS to retrieve data from services like CloudWatch, S3, and SQS, which helps in monitoring and securing AWS environments.
• Google Cloud Marketplace: The Devo Platform is also listed on the Google Cloud Marketplace. This provides a way for Google Cloud customers to purchase and deploy Devo. Devo has a technology partnership with Google Cloud and offers a collector specifically for Google Cloud Platform (GCP). This collector can retrieve data from Google Cloud services such as Cloud Logging and Security Command Center via Pub/Sub for analysis within the Devo platform.
• Microsoft Azure Integration: Devo offers a dedicated collector for Microsoft Azure. This integration allows for the collection of data from Azure cloud services, including Azure Event Hub and virtual machine metrics. The purpose of the collector is to pull data into Devo to detect malicious activities and monitor infrastructure. While there is deep integration with Azure services, a direct transactable offer on the Azure Marketplace was not readily apparent in the same way as for AWS and Google Cloud.
• Devo Exchange: Devo operates its own application marketplace called the Devo Exchange. This is a community-based platform where Devo, its partners, and customers can share pre-built content such as alert packs, interactive applications, and dashboards. The goal of the Devo Exchange is to help security teams accelerate their work by providing ready-to-use content that integrates with their existing security tools.

Key People

• Chief Executive Officer: Ken Naumann
• Chief Financial Officer: Mike Soder
• SVP, Marketing: Chris O’Brien
• General Counsel: Ingo Bednarz
• VP of Corporate Strategy, Marketing and Operations: Tim Leehealey
• Chief Customer Officer: Tom Pucciarella
• Chief People Officer: Oyefunke Fayoyin

Key Facts

• Headquarters Location: Cambridge, Massachusetts, United States.
• Number of Employees: Approximately 600-700.
• Annual Revenue: Estimated to be between $121.6 million and $132.8 million.
• Parent Company: None.
• Subsidiary Companies: LogicHub and Kognos.
• Publicly Listed: No.

Analyst Recognition

Devo has been recognized by several major analyst groups, including the following:

• Gartner: Devo was positioned as a Visionary in the 2024 Gartner Magic Quadrant for Security Information and Event Management (SIEM). Previously, Gartner recognized Devo as a Challenger in the 2022 Magic Quadrant for the same category.
• Forrester: Devo was named a Leader in The Forrester Wave™: Artificial Intelligence for IT Operations (AIOps), Q4 2020. Forrester has also recognized Devo as a Strong Performer in The Forrester Wave™: Intelligent Application and Service Monitoring, Q2 2019.
• IDC: In the IDC MarketScape for Worldwide Security Information and Event Management (SIEM) for Enterprise, Devo was named a Leader in the 2024 assessment. In the 2022 report for the same category, IDC recognized Devo as a Major Player.

There is no public information available to indicate that Devo is recognized by Everest Group.