Stellar Cyber’s mission is to deliver a cybersecurity platform that simplifies security operations and empowers security teams of all skill levels. The company aims to provide a unified and open security operations platform that allows organizations to see and act on threats quickly and confidently. Its primary goal is to guide customers toward a human-augmented, autonomous Security Operations Center (SOC), thereby increasing the efficiency and effectiveness of their security stack. This is achieved through the use of artificial intelligence and automation to turn vast amounts of data into actionable insights.
Stellar Cyber has established a strong market reputation as a leading provider of Open XDR (Extended Detection and Response) solutions. The company is recognized for its innovative approach to cybersecurity, which focuses on integrating various security tools into a single, comprehensive platform. This consolidation helps to reduce complexity and costs while improving threat detection and response times. The market generally views Stellar Cyber as a credible and reliable partner in the cybersecurity space, with its platform being praised for its ability to provide deep visibility across an organization’s entire attack surface.
Offerings, Capabilities, and Integrations
Stellar Cyber provides an Open XDR (Extended Detection and Response) platform that unifies and simplifies security operations for enterprises and Managed Security Service Providers (MSSPs). The platform is designed to give security teams comprehensive visibility across the entire attack surface, including on-premises, cloud, IT, and OT environments. A key competitive advantage is its “Open” approach, which allows integration with a wide array of existing security tools from various vendors. This eliminates the need for customers to replace their current security investments and instead enhances them by consolidating data into a single platform.
The core of Stellar Cyber’s offering is its AI-driven engine which automates threat detection, correlation, and response. It utilizes Multi-Layer AI and machine learning to analyze data from all integrated sources, automatically correlating alerts into high-fidelity incidents. This significantly reduces alert fatigue for security analysts and improves key performance indicators like Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR). The platform’s capabilities include Next-Gen SIEM, Network Detection and Response (NDR), and automated threat hunting. Stellar Cyber’s commitment to an open ecosystem is further demonstrated by its Open Cybersecurity Alliance and its practice of building new integrations for customers at no additional cost.
Products and Services
Stellar Cyber’s primary offering is its comprehensive security operations platform, often referred to as the Open XDR Platform. This platform is not sold as a suite of separate products but as a single, unified solution under one license. It integrates the capabilities of several security technologies into one.
- Open XDR Platform: This is Stellar Cyber’s flagship product. It serves as a central hub for security operations by ingesting data from various security tools, normalizing it, and then using AI to detect and respond to threats. The platform is designed to provide complete visibility and simplify security for lean teams.
- Next-Gen SIEM (Security Information and Event Management): As a core component of the Open XDR platform, this capability offers advanced log management, analysis, and threat detection, moving beyond traditional SIEMs with the power of Open XDR.
- Network Detection and Response (NDR): A native capability of the platform that provides visibility into network traffic to identify threats and eliminate blind spots.
- Universal EDR (Endpoint Detection and Response): The platform integrates with virtually any existing EDR solution, enhancing its capabilities by correlating endpoint data with other security telemetry.
- Automated Threat Hunting: The platform enables security teams to design and execute custom threat hunts that can be run on-demand or on a schedule.
- Automated Response: Provides built-in playbooks and allows for the creation of custom automated responses to security incidents, enabling actions to be taken directly from the platform.
- Threat Intelligence Platform (TIP): While Stellar Cyber has a built-in threat intelligence capability, it also allows customers to import their own preferred threat intelligence feeds.
- Multi-Layer AI™: This is not a standalone product but the core AI technology that powers the platform’s detection and correlation engine.
Target Customers
Stellar Cyber’s target customers include a diverse range of organizations, primarily focusing on enterprises and Managed Security Service Providers (MSSPs). The platform is designed to be effective for security teams of any size and skill level, making it suitable for both large corporations and smaller businesses with lean security staff.
- Enterprises: Stellar Cyber targets enterprises across various sectors, including manufacturing, government, higher education, and financial services. These organizations benefit from the platform’s ability to consolidate their disparate security tools, reduce complexity, and improve the efficiency of their in-house security operations centers (SOCs). The platform helps them protect their entire attack surface, from on-premises infrastructure to cloud environments.
- Managed Security Service Providers (MSSPs): A significant portion of Stellar Cyber’s customer base consists of MSSPs. The platform’s multi-tenant architecture is specifically designed for MSSPs, allowing them to manage security for multiple customers from a single console. This enables MSSPs to offer a comprehensive suite of services, such as SOC-as-a-Service and Managed Detection and Response (MDR), more efficiently and cost-effectively. The platform’s open nature allows MSSPs to integrate with the various tools their diverse clientele may already be using.
Cloud Integrations and Marketplaces
Stellar Cyber’s Open XDR platform integrates with major cloud providers and is available on their marketplaces. The platform is designed to provide visibility across cloud infrastructure, including Infrastructure as a Service (IaaS) and Software as a Service (SaaS) applications. Stellar Cyber utilizes APIs for data collection from cloud-based applications and infrastructure, enabling it to integrate with a wide range of security tools and services.
- Amazon Web Services (AWS): Stellar Cyber is available on the AWS Marketplace. Its platform integrates with several AWS services to enhance security visibility and threat detection. These integrations include support for Amazon Security Lake, allowing the ingestion of data for analysis. Stellar Cyber also integrates with Amazon GuardDuty, AWS CloudTrail, Amazon CloudWatch, and AWS Network Firewall. The platform can utilize VPC Traffic Monitoring in AWS to collect metadata from cloud traffic.
- Microsoft Azure: Stellar Cyber integrates with Microsoft Azure, including support for Microsoft 365. The platform can use native interfaces like VTAP in Azure to collect metadata from cloud traffic. While specific integrations are mentioned, Stellar Cyber also partners with other security vendors that are available on the Azure Marketplace, such as ESET.
- Google Cloud: Stellar Cyber integrates with Google Cloud services, including Google Workspace. It has an integration with Google Security Operations (formerly Google SecOps), which allows for the ingestion of Stellar Cyber security events to create alerts within the Google platform. This integration also enables searches to be performed in Stellar Cyber from within Google Security Operations.
Key People
- Co-Founder & CEO: Changming Liu
- Founder & CTO: Aimei Wei
- Chief Revenue Officer (CRO): Jim O’Hara
- Senior Vice President of Marketing: Steve Garrison
- Vice President of Customer Success: Tony Chou
- Vice President of Worldwide Systems Engineering: Snehal Contractor
- Vice President Strategic Alliances: Andrew Homer
- Senior Vice President of Engineering: Albert Zhichun Li
- SVP Customer & Partner Enablement: Paul Levasseur
Key Facts
- Headquarters: San Jose, CA.
- Number of Employees: Approximately 151-160.
- Annual Revenue: Approximately $25.1 million to $35 million.
- Parent Company: None.
- Subsidiary Companies: None.
- Publicly Listed: No.
Analyst Recognition
Stellar Cyber has been recognized by the analyst group Gartner in several of its technology categories. The company has not been specifically mentioned in recent reports from Forrester, IDC, or Everest Group regarding its technology categories.
- Gartner: Stellar Cyber is positioned in the Challengers quadrant of the Gartner Magic Quadrant for Network Detection and Response (NDR). It was also named a Strong Performer in the Gartner Peer Insights Voice of the Customer for Network Detection and Response. Additionally, Gartner has included Stellar Cyber as a Sample Vendor in its Hype Cycle for Security Operations and recognized it as a top vendor in its Market Guide for Extended Detection and Response (XDR).
