Sublime Security’s mission is to create a safer internet by empowering security defenders. The company aims to shift the advantage from attackers to defenders by providing an adaptive email security platform. This approach moves away from traditional “black box” solutions, offering greater visibility and control. Sublime Security’s goal is to enable security teams to effectively counter evolving email threats, including sophisticated phishing and business email compromise attacks.
Sublime Security is recognized for its innovative approach to email security, which allows for extensive customization and transparency. The platform is often praised for its effectiveness in detecting threats that other systems might miss and for providing security teams with the ability to write their own detection rules. The company is viewed as a modern, flexible solution, particularly for organizations looking for more control over their email security posture.
Offerings, Capabilities, and Integrations
Sublime Security provides an adaptive, AI-powered email security platform designed to give security teams transparent control over their email environment. Unlike traditional “black box” solutions, Sublime Security’s open platform allows for the creation of custom detection rules, threat hunting, and extending capabilities into existing security stacks. This programmability, combined with AI-powered detection, offers a significant competitive edge by enabling organizations to tailor defenses to specific threats they face. The platform integrates with major cloud email providers, including Microsoft 365 and Google Workspace, as well as a wide range of SIEM and SOAR tools, allowing for seamless incorporation into existing security workflows. This approach enhances visibility and allows security teams to move beyond vendor-controlled detection and response.
Products and Services
Sublime Security’s primary offering is its Adaptive Email Security Platform, which can be deployed in the cloud (SaaS) or self-hosted. This platform is not a suite of separate products but a unified solution with a range of capabilities.
- Inbound Email Security: This is the core functionality, designed to detect and block the full spectrum of email attacks, such as Business Email Compromise (BEC), credential phishing, QR code phishing, and malware.
- Abuse Mailbox Automation: The platform automates the investigation of user-reported emails, reducing the manual workload on security teams. A recent addition is ASA (Autonomous Security Analyst), an AI analyst that fully automates the triage and remediation of these reports.
- Threat Hunting and Incident Response: Security teams can retroactively hunt for both known and unknown threats within their email environment and remediate them after delivery.
- Custom Detections and Policies: A key feature is the ability to write custom detection rules using Sublime’s purpose-built Message Query Language (MQL). This allows teams to tailor defenses to their specific needs.
- Attack Score: A newer feature that uses transparent machine learning to prioritize email threats, helping analysts focus on the most critical issues.
- Community-Powered Defense: Sublime Security fosters a community where users can share detection rules, creating a network effect that helps all users stay ahead of emerging threats.
Target Customers
Sublime Security targets a wide range of organizations, from fast-growing startups to large enterprises, including Fortune 500 and Global 2000 companies. Its platform is designed for use by internal security teams, such as Security Operations Centers (SOCs), detection engineers, and incident responders, who require granular control and visibility over their email security. These teams benefit from the ability to move away from static, vendor-controlled security models and instead build a more dynamic and customized defense. For example, a financial services company could develop specific rules to detect sophisticated BEC attacks common to its industry, while a technology firm could focus on protecting intellectual property from targeted phishing campaigns. The flexibility of the platform allows it to be adapted to the unique threat model of any organization.
Cloud Integrations and Marketplaces
Cloud Integrations and Marketplaces
Sublime Security offers a range of cloud integrations to extend its email security platform across a customer’s existing security stack. It also has a presence on major cloud marketplaces, providing various deployment options for its customers.
Sublime Security’s platform can be integrated with the following cloud-based services:
- Email Providers: Sublime Security integrates with Microsoft 365 and Google Workspace. These integrations are deployed via APIs and do not require changes to mail routing or MX records.
- SIEM (Security Information and Event Management): The platform integrates with a wide array of SIEM solutions, including Azure Sentinel, Splunk, Datadog, Snowflake, Google Security Operations, and Panther. These integrations allow for the ingestion of alerts, audit events, and raw emails for correlation and analysis.
- SOAR (Security Orchestration, Automation, and Response): Sublime Security integrates with various SOAR platforms such as Cortex XSOAR, Splunk SOAR, and Tines to automate incident response workflows.
Sublime Security is available on the following cloud marketplaces:
- AWS Marketplace: The Sublime Email Security Platform is available on the AWS Marketplace as a Software as a Service (SaaS) offering. This allows for deployment on AWS.
- Microsoft Azure Marketplace: Sublime Security’s email security platform is listed on the Microsoft Azure Marketplace.
- Google Cloud Marketplace: Sublime Security has a private listing on the Google Workspace Marketplace for its Sublime Cloud Platform. To access it, a super administrator for the Google Workspace organization must follow a direct link.
Key People
- Founder & CEO: Josh Kamdjou.
- Co-Founder & COO: Ian Thiel.
- Chief Information Security Officer: Andrew Becherer.
- Vice President Of Worldwide Sales: Jordan King.
- Head Of Sales: Andrew Lloyd.
- Head Of Customer Success: Spencer Smitherman.
- Head of Marketing: Christine Huynh.
- Head Of Machine Learning: Bobby Filar.
- Head of Design: Omar Jalalzada.
- Head Of Compliance: Jamie Toulze.
Key Facts
- Headquarters: Washington, D.C.
- Number of Employees: 50-100
- Annual Revenue: $18.8 million
- Parent Company: None
- Subsidiary Companies: None
- Publicly Listed: No
Analyst Recognition
Sublime Security is not featured in market reports by major analyst groups such as Forrester, IDC, or Everest Group. Gartner includes Sublime Security in one of its technology categories based on user reviews.
- Gartner lists the Sublime Email Security Platform in its Email Security Platforms category on its Peer Insights site.
