Intezer

Intezer’s mission is to empower Security Operations Center (SOC) and Incident Response teams by leveraging artificial intelligence and automation. The company aims to address the cybersecurity talent shortage by automating manual and repetitive processes, which allows security professionals to concentrate on critical threats. Intezer’s primary goal is to enhance security operations and expedite incident response for organizations. The company strives to ensure that every security alert is thoroughly and rapidly investigated and triaged.

Intezer is recognized as a leader in AI-powered autonomous security operations. Its platform is designed to automate the investigation and triage of alerts from various security tools with high accuracy. The company has a strong market reputation, evidenced by significant growth in its customer base and revenue. Intezer is trusted by a range of clients, including enterprises, Managed Security Service Providers (MSSPs), and government agencies, to improve the efficiency and effectiveness of their security operations.

Offerings, Capabilities, and Integrations

Intezer provides an AI-powered Autonomous Security Operations Center (SOC) Platform designed to automate and enhance security operations for enterprises and Managed Security Service Providers (MSSPs). The platform’s core capability lies in its ability to autonomously triage, investigate, and respond to security alerts from a multitude of sources, thereby reducing alert fatigue and the workload on security teams. Intezer’s competitive edge stems from its proprietary Genetic Malware Analysis technology, which identifies the origins of software code to detect modern cyber threats with high accuracy. This technology, combined with AI-driven decision-making, allows the platform to automatically resolve a high percentage of false positive alerts, enabling security analysts to focus on genuine threats. The platform integrates with a wide range of security tools, including endpoint detection and response (EDR), security information and event management (SIEM), cloud security, and identity providers, allowing for seamless incorporation into existing security infrastructures. Recent expansions include integrations with major cloud providers like AWS, Microsoft Azure, and Google Cloud, as well as identity providers such as Microsoft Entra ID and Okta, to address the growing volume of cloud and identity-based threats.

Products and Services

Intezer’s primary offering is its Autonomous SOC Platform, which serves as the flagship product. This platform automates Tier 1 SOC functions, including alert triage, investigation, and response. It leverages artificial intelligence and various analysis techniques to provide a comprehensive assessment of security alerts. Key features and services within the platform include:

• Automated Alert Triage: The platform automatically investigates alerts from various security tools, distinguishes between false positives and real threats, and escalates only the critical incidents.
• Genetic Malware Analysis: A core technology that analyzes code reuse to identify malware families and threat actors, providing deep context for investigations.
• Automated Incident Response: For confirmed threats, the platform provides actionable recommendations and can initiate automated response actions.
• Cloud Security: A newer offering, Intezer Protect, continuously monitors binary code in cloud servers to detect unauthorized or malicious software in real time. The platform has expanded to triage and investigate alerts from major cloud security vendors.
• Identity-Based Threat Triage: Recent updates enable the platform to autonomously investigate identity-related alerts from providers like Microsoft Entra ID and Okta.
• Endpoint and SIEM Alert Triage: The platform automates the investigation of alerts from endpoint security products and SIEMs, reducing manual effort.
• Threat Intelligence: The platform enriches alerts with threat intelligence to accelerate response actions.

Target Customers

Intezer’s target customers include large enterprise organizations and Managed Security Service Providers (MSSPs). The company serves Fortune 500 customers across various industries such as banking, telecommunications, manufacturing, and energy. These organizations typically have Security Operations Centers (SOCs) that are overwhelmed by a high volume of security alerts and face a shortage of skilled cybersecurity professionals. Enterprise customers benefit from Intezer’s platform by automating repetitive tasks, reducing alert fatigue, and enabling their in-house security teams to focus on more critical threats, thus improving operational efficiency and response times. MSSPs leverage Intezer to scale their operations, handle a larger volume of alerts without increasing staff, and provide more efficient and accurate security services to their clients. The platform’s multi-tenant support is specifically designed to meet the needs of MSSPs.

Cloud Integrations and Marketplaces

Intezer’s Autonomous SOC platform is available on the Microsoft Azure Marketplace and the AWS Marketplace. The company also offers broad integrations with major cloud providers to automate the investigation and triage of cloud security alerts.

• Microsoft Azure: Intezer’s platform can be deployed from the Microsoft Azure Marketplace, allowing customers to use their Microsoft Azure Consumption Commitments (MACC) for purchases. It offers a single, unified integration that connects with multiple Microsoft security tools, including Microsoft Sentinel, Microsoft Defender for Endpoint, Microsoft Defender for Cloud, Microsoft Defender for Office 365, and Microsoft Entra ID.
• Amazon Web Services (AWS): Intezer’s Autonomous SOC is available on the AWS Marketplace. The platform integrates with AWS services such as AWS GuardDuty and AWS WAF to automate the investigation and response to cloud security alerts.
• Google Cloud: Intezer integrates with Google Cloud to automate the investigation and response to cloud security alerts. It also integrates with Google Security Operations (formerly Google SecOps).

Intezer’s platform also integrates with other cloud security vendors such as Wiz, Lacework, FortiCNAPP, Upwind, and Sweet Security to ingest, triage, and investigate alerts from these services.

Key People

• Founder and CEO: Itai Tevet
• Founder and CTO: Roy Halevi
• Founder and Chairman: Alon Cohen
• COO: Nadia Malinoff-Kan
• VP Finance & Legal: Asher-Tsvi Schwed
• Head of Engineering: Nataly Shvartzman

Key Facts

• Headquarters: New York, New York.
• Number of Employees: Approximately 60.
• Annual Revenue: $35 million.
• Parent Company: None.
• Subsidiary Companies: Intezer USA (also known as Intezer Labs).
• Publicly Listed: No.

Analyst Recognition

Based on publicly available information, Intezer is not currently featured in the primary analyst reports from Gartner, Forrester, IDC, or Everest Group, such as the Magic Quadrant, Wave, MarketScape, or PEAK Matrix. While Intezer is listed on Gartner Peer Insights, a platform for customer reviews, this does not constitute a formal analyst recognition in a major market-defining report from the firm.