The cyber security landscape is massively expanding while attack strategies keep evolving, fueling the cybercrime epidemic. Cyber threats evolved from targeting and harming computers, networks, and smartphones — to humans, cars, railways, planes, power grids and anything with an electronic pulse. Expectations vary from cybercrime damages costing the world from four up to six trillion US dollars by 2021. A trend partly powered by the Internet of Things. Intel expects there to be 20 billion ‘smart’ devices in the world in 2020. Unfortunately, securing devices and objects such as cars, medical instruments, sensors, manufacturing machines, home appliances and phones that could be ‘talking’ to each other, will be a major challenge for the years to come. But with technologies such as AI and deception technology rapidly being integrated into cyber security solutions, tables can be turned against many adversaries.
Cyber security companies provide solutions and services that are increasingly committed to doing just that. With that in mind, we’ve listed the top cyber security companies for you to watch in 2020.
After spending six years as part of Intel, in April 2017 McAfee once again became an independent vendor. In July 2018 they refreshed their entire enterprise cyber security portfolio, introducing McAfee MVISION.
Both the Endpoint and Mobile services are controlled via MVISION ePO, providing a unified approach to managing traditional and mobile endpoints. MVISION ePO is a SaaS solution designed to replace backend infrastructure with a simple web-based management console. On the business front, McAfee’s endpoint and mobile security products protect end-user devices from attacks, while its network security products and services protect company servers, databases and data centers.
Image: MVISION ePO includes pre-defined and customizable dashboards a consolidated view, and prioritization of threat data.
Baked into the MVISION platform is McAfee's Global Threat Intelligences services, which provide threat event information via Mvision ePO. Its McAfee Total Protection and McAfee LiveSafe products give consumers access to antivirus and antimalware protection, as well as internet security including protection from adware, spyware, phishing scams, malicious websites, identity theft, and other threats.
In 2019 McAfee was named a visionary Gartner’s Magic Quadrant for Endpoint Protection Platforms. They were awarded the 2019 CRN Tech Innovator Award award for Cloud Security and were the Gold Winner for the 2019 Cybersecurity Excellence Awards' Best and most innovative Cybersecurity Company.
McAfee acquisitions in 2019:
- NanoSec - a container security startup
- Uplevel Security - which offers an adaptive system of intelligence that uses graph theory and machine learning to modernize security operations
- Tunnelbear - a global VPN connectivity provider
Palo Alto Networks
Palo Alto Networks is a well-known global cyber security company serving more than 50.000 customers. Its Next Generation Firewalls and cloud-based security products are used by more than 85 of the Fortune 100 companies and 63% of the Global 2000. The company has around 5.100 employees worldwide.
Palo Alto Networks has been positioned as a leader in the Gartner Magic Quadrant for Network Firewalls for eight consecutive times, including 2019. The PA-series' Next-Generation firewalls reduce response times with automated policy-based actions, and you can automate workflows via integration with administrative tools, such as ticketing services, or any system with a RESTful API.
Their core Security Operating Platform helps keep out hackers through automation, such as automated routine tasks and enforcement. In addition to cloud and enterprise solutions, Palo Alto also offers Cortex XDR, the company’s AI-based continuous security platform.
Image: The Unified incident engine of Cortex XDR relieves alert fatigue. The incident view uses advanced analytics to intelligently group related alerts into incidents
While best known for its next-generation firewall, Palo Alto Networks has been making steady progress with a number of add-on offerings, including Traps for endpoint protection, Prisma Access (SASE) and Aperture, a SaaS-based cloud access security broker (CASB). Palo Alto Networks uses machine learning to help identify variations of known threats and patterns in attacks. In this way they can accurately predict the next stages of an attack, then automatically create and implement protections for customers in near real-time.
Palo Alto has been expanding its product and services portfolio, also through acquisitions such as the purchase in March 2019 of Demisto—a provider of security orchestration, automation and response (SOAR) solutions.
- Demisto - Security Orchestration
- Twistlock - Container Security
- PureSec - Serverless Security
- Zingbox - IoT
- Aporeto - Machine identity-based segmentation
Crowdstrike marries advanced endpoint protection with intelligence since it was founded in 2011. The CrowdStrike Falcon endpoint protection platform was built from the ground up to address the challenges posed by modern attacks and to stop breaches. It delivers a single lightweight agent for prevention, detection, threat hunting, response, remediation, vulnerability assessment and IT hygiene.
Image: Crowdstrike Incident Dashboard Screenshot
CrowdStrike received high marks from the users whose reviews comprise Gartner Peer Insights. It received a 4.8 out of 5 based on 249 verified reviews (highest of all vendors given the Customers’ Choice rating) and was positioned a Leader in Gartner’s magic quadrant for Endpoint Protection Platforms.
The company provides security services to 12 of the 20 Fortune largest global companies, ten of the 20 largest financial institutions and five of the top ten largest healthcare providers. It's also a leading cybersecurity provider for the energy market.
Crowdstrike was also who the US Democratic National Committee turned to when it suspected it was hacked during the run-up to the 2016 election. That attention has helped propel the company’s growth. They provide security services to 12 of the 20 Fortune largest global companies, ten of the 20 largest financial institutions and five of the top ten largest healthcare provides.
Their Falcon prevent framework touts five-second visibility on all endpoints, past and present, while also reducing cost and complexity. CrowdStrike provides cybersecurity services that include threat intelligence, next-gen antivirus, incident response, ransomware blocking and endpoint detection and response.
Having been recognized by Gartner as a Leader for Network Firewalls in the 2019 Magic Quadrant. As Best Security Company at the 2019 SC Magazine Awards, Fortinet demonstrates its commitment to improving the industry. The company has over 415,000 customers around the world and has a broad portfolio covering Secure SD-WAN, Cloud Security, Network security, Application security, Email security, and Secure access, all supported with a single pane of glass management across the entire attack surface.
Image: Secure SD-WAN use case with Fortigate NGFW's, FortiManager, and FortiAnalyzer
Their Unified Threat Management solution consolidates multiple security and networking functions with one unified appliance that protects businesses, but also because it simplifies infrastructure.
With its innovative approach, they help improve SD-WAN security, Cloud Security and Cloud on-ramp. Protecting businesses against the ever-changing threat landscape, their portfolio of security, networking, and business productivity solutions is growing and are tightly integrated to ensure that today’s organizations can confidently build the digital business infrastructure they need without compromising on security. Fortinet combines custom security processors, an intuitive operating system, and applied threat intelligence. Their FortiGate Next-Generation Firewalls are powered by Security Processing Units (SPUs), AI-driven FortiGuard Labs and delivers industry-leading threat protection, and high performance that helps reduce costs, complexity, and risks.
- enSilo - advanced endpoint security
- CyberSponse - Security Orchestration, Automation & Response (SOAR)
Previously known as OpenDNS, Cisco Umbrella is a cloud security solution providing secure access to the internet and secure usage of cloud apps. Having developed a Cloud-delivered firewall, a web gateway, DNS Security and CASB solution, Cisco Umbrella proves to be an effective cloud-native platform solution, providing the multi-layered approach many security engineers look for. It’s a smart proxy only routing traffic to risky destinations through its network while safe content is accessed directly with no delay.
The investigate tool helps you to see relationships of domains, IPs and malwares. Cisco’s Threat Intelligence not only investigates attackers’ infrastructures, but is also able to predict future threats. In this way, current and developing threats such as malware can be exposed, so incident investigation and response times reduce significantly.
In 2019 Cisco Umbrella expanded to integrate more security functions in a single service. All Umbrella packages also integrate with Cisco SD-WAN, being delivered from the cloud security service.
- Sentryo - Cybersecurity for the Industrial Internet
- Acacia Communications - Optical Interconnects
Netscout (Arbor Networks)
Securing your cloud against DDoS attacks is vital for service continuity. If you’re looking for critical aspects of DDoS protection, including the vital features to have in any DDoS protection product, Netscout is the cyber security company to turn to. Formerly being Arbor Networks, Netscout is on its way to completing the second decade of its Anti-DDoS lifespan, offering the classical combination of Arbor Sightline and TMS that continues to prove its effectiveness across many industries.
Arbor Sightline is an anomaly detection system. It is based on sampled netflow, capable of performing enhanced reporting, alarming, automated mitigation in multiple phases and can even be triggered by their Availability Protection System (APS).
An extra powerful feature is that any third party script or application for mitigations can be triggered by external and existing logic.
Important to note is that TMS’s detection service also makes use of (and helped set up) the ATLAS Intelligence Feed (AIF), providing insight and expert analysis for DDoS protection. With the Arbor Security Engineering & Response Team (ASERT), dedicated to discovering and analysing emerging threats and developing targeted defenses, Arbor has both visibility and remediation capabilities at nearly every tier one operator and a majority of service provider networks globally. ASERT shares this operationally viable intelligence with hundreds of international Computer Emergency Response Teams (CERTs) and with thousands of network operators via inband security content feeds. Being part of ATLAS, actively monitoring Internet threats around the clock and around the globe via ATLAS, ASERT gives you another good reason to consider Arbor’s anti-DDoS solutions.
7 January 2020
Get in touch with us today.
Do you want to learn more about this subject, or do you have specific questions? Give us a call or leave a message.