Rilevera Inc., a startup dedicated to automating cyberthreat detection rule management, has successfully raised $3 million in seed funding. This investment aims to address the challenges of detection engineering, a critical yet often overlooked aspect of cybersecurity. The funding will enable Rilevera to enhance its centralized platform, which assists security teams in creating, testing, deploying, and monitoring detection rules across various environments.
The complexities of managing detection rules are significant. As Ethan Smart, co-founder and Chief Executive of Rilevera, explained, the foundation of cybersecurity operations relies on identifying threats, both new and those that have accumulated over time. “Detection engineers are the silent heroes of cybersecurity, but they’re under-tooled and over-relied on,” Smart noted, emphasizing the crucial role these professionals play in maintaining effective cybersecurity measures.
Detection engineering involves the creation and maintenance of rules that pinpoint cyberthreats based on signals such as system logs, network activity, and user behavior. As the nature of data and log formats continues to evolve, detection rules frequently become outdated or inaccurate. This creates operational risks and increases the workload for security teams. Rilevera’s platform employs artificial intelligence to validate rule performance, identify issues, and recommend necessary adjustments.
Innovative Solutions for Security Teams
The platform offers features such as version control, health monitoring, and AI-assisted tuning. Furthermore, it integrates with major security information and event management systems, including those from Datadog Inc. and Sumo Logic Inc., allowing for centralized management of detection rules across disparate systems. Rilevera aims to establish itself as a system of record for detection engineering workflows, addressing a pressing need in the cybersecurity realm.
According to Andy Hunn, partner at lead investor DataTribe Foundry LLC, detection engineers face a monumental task of understanding and managing hundreds, if not thousands, of existing rules while continuously adapting to new ones. This challenge underscores the importance of Rilevera’s innovations in streamlining the detection engineering process.
The company’s development was informed by feedback from over 30 organizations across various sectors, including financial services and technology. Early adopters of the platform include a prominent U.S. cryptocurrency company and one of the nation’s top five insurers. In one instance, Rilevera discovered that only 5% of a customer’s 1,000 detection rules were functioning as intended, highlighting the inefficiencies that can exist within traditional systems.
Future Growth and Development Plans
Rilevera plans to leverage its seed funding to expand its product development team, enhance its integration ecosystem, and bolster sales and marketing efforts. With the cybersecurity landscape constantly evolving, these advancements are crucial for ensuring that organizations can effectively identify and respond to emerging threats.
DataTribe, which invests exclusively in cybersecurity firms, has demonstrated confidence in Rilevera’s potential by closing a $41 million fund earlier this year. The backing from such a significant investor reflects the growing recognition of the challenges in detection engineering and the innovative solutions that Rilevera is bringing to the market.
As the cybersecurity landscape continues to grow in complexity, Rilevera’s mission to automate and streamline detection engineering may play a pivotal role in enhancing the effectiveness of security operations worldwide.
