Vectra AI snaps up identity and SaaS posture management startup Siriux

Threat detection and response startup Vectra AI Inc. today said it has acquired Siriux Security Technologies Inc., a provider of identity and software-as-a-service posture management.

The price of the acquisition was not disclosed. It’s unknown how much Siriux had raised coming into its acquisition, although Pitchbook notes that the company had raised early-stage venture capital.

Founded in 2020, Siriux offers Microsoft 365 security posture management that’s the only service of its kind approved by Microsoft Corp. and published in the Azure Marketplace. Designed to help security teams extend their visibility into all Microsoft 365 services, the company’s scan engine analyzes thousands of security settings in Azure Active Directory, Exchange Online, SharePoint Online, OneDrive and Teams.

Siriux’s SaaS vulnerability assessment tool for Microsoft 365 collects configuration settings by leveraging PowerShell and making Microsoft Graph API calls. This information is then automatically analyzed to produce a clear picture of the organization’s Microsoft 365 security posture.

The company says its service enables security teams to discover risky SaaS configurations in Microsoft’s cloud and provides detailed remediation recommendations to resolve problems and monitor settings to ensure immediate detection of material changes.

“Our solution ensures organizations have done everything possible to identify common attack paths in SaaS platforms and minimize the attack surface of their cloud identity and SaaS applications by following our recommendations,” noted Aaron Turner, founder and chief executive officer of Siriux.

Vectra says the acquisition reinforces its commitment to addressing the security challenges customers face as they accelerate the adoption of hybrid and multicloud infrastructures with heavy reliance on cloud identity and software-as-a-service applications. The acquisition also makes Vectra the only vendor that enables customers to configure and detect active threats securely in cloud identity and SaaS applications, including Microsoft Azure Active Directory and Microsoft 365, according to the company.

“We have helped customers stop the gamut of modern attacker campaigns – from ransomware to supply chain to nation-state attacks like SolarWinds,” Hitesh Sheth, president and CEO of Vectra, said in a statement. “SaaS applications have become a haven for cyberattacks and cloud identity is the way in. Through the combined expertise of the teams at Vectra and Siriux, we are now able to deliver the best protection for customers facing these threats.”