|By Xenia von Wedel||
|February 21, 2014 01:50 PM EST||
Hi Yuval, Thank you for taking the time to answer my questions. First of all, please tell us, what is AlgoSec all about and what do you do?
Yuval Baron: AlgoSec enables organizations to manage security at the speed of business. Enterprise networks and data centers are highly complex, oftentimes consisting of vast numbers of networking and security devices, which use thousands of security policies and hundreds of critical business applications. All of these must be managed across multiple vendors, stakeholders and locations. This rising complexity, plus evolving cyber threats and increasing business demands makes it hard to keep up if you're manually managing the security policy. Additionally, traditional security management efforts are siloed across different IT organizations such as network operations, security operations, and application teams. All of this comes at the cost of a major loss of productivity.
AlgoSec's automated and application-centric approach orchestrates the management of complex policies across all of these networking and security devices and aligns the different teams to achieve the best of both worlds - improving security and enabling a faster response to dynamic business needs.
I'm happy to share that today, more than 1000 of the world's leading organizations, including 15 of the Fortune 50, rely on AlgoSec for faster security provisioning of business applications, simplified operations and improved protection against cyber-attacks. AlgoSec customers typically report significant and quantifiable improvements in operational efficiency - up to 80% reduction of time spent on audits and 60% less time spent processing firewall changes - while also reducing the attack surface and ensuring networking and security devices are configured properly.
What are you going to launch at RSA?
Baron: At RSA we will be announcing the latest version of the AlgoSec Security Management Suite, which now enables organizations to view and remediate IT risk with the business in mind. The AlgoSec Suite integrates with vulnerability scanners from Qualys and Nessus to display vulnerabilities associated with data center applications and their associated physical or virtual servers. With this integration, the AlgoSec Suite delivers unprecedented visibility into the risk levels of data center applications - even as they change - enabling IT and security teams to more effectively communicate with business stakeholders so they can "own their risk". AlgoSec will have a booth (#427) at RSA where you can see also see a live demo of the new capabilities.
The biggest challenge is that this is a new way of managing IT risk, but we have data from a survey we conducted last fall, plus research from Gartner, that shows the demand is there for this concept of viewing and prioritizing risk from the perspective of a business application.
Who is your target audience and how do you intend to reach them? What is the biggest challenge you face right now in telling your story and winning over new clients?
Baron: An enterprise solution sale spans multiple stakeholders in networking, security, application development, architecture groups, and involves from the administrators all the way up to CSO or CIO sometimes. So while we have a good story and can bring tremendous, quantifiable value, the pain points for each of these groups is a bit different - we have evolved from a "tool" to a solution that ties into your business processes.
I'd be curious to hear any general thoughts you have on market trends...
Baron: There are 4 market trends that we see impacting our space:
- Next-generation firewalls are becoming more mainstream - they're no longer "next-gen" per se. Adoption rates are on the rise, every firewall vendor is now touting next-generation firewall capabilities and organizations are becoming more mature in terms of their expertise with managing these devices. That's not to say that the traditional firewall is dead, but the firewall as we know it is evolving as it has since its inception. From a security management perspective this means finding ways to take advantage of the granular control without adding overhead from additional changes and managing next-gen policies alongside traditional ones.
- We're seeing more interest in our solution as part of data center consolidation and cloud migration projects. The "cloud" is disruptive to networks and data centers because of the significant financial and operational value that can be derived, but getting there takes a real commitment that involves many aspects, one of which plays right into a strength of ours - managing application connectivity.
- We are seeing a shift in how security is viewed, from where security owns the risk to where security consults the business, but ultimately the business owns the risk.
- Software-defined networking is definitely on the radar of senior management. Within the next several years we'll start seeing deployments in enterprise production environments.
What's the business model? How will you make money?
Baron: AlgoSec's primary source of revenue is through software licenses of its product suite delivered on a physical or virtual appliance or as stand-alone software to Enterprise customers, Managed Service Providers and consultants. Additionally, AlgoSec also provides professional services, primarily around integrating and aligning its solutions with the customer's existing environment.
Who are your competitors?
Baron: Depending on the geographies and the required business solution we may compete with companies such as Skybox, Tufin, and FireMon.
How do you differentiate from your competitors?
Baron: AlgoSec has four primary advantages:
- Our profound, application-centric technology specifically focuses on business agility and delivering application-centric visibility. The solution ensures that application owners, network operations and security teams are aligned and it enables risk to be viewed and prioritized by business application.
- AlgoSec automates more business processes than any other solution, resulting in greater productivity and a quantifiable ROI.
- AlgoSec provides more breadth and depth of policy analysis. AlgoSec's patented Deep Policy InspectionTM technology taps on more data sources and conducts more rigorous analysis to present to the most accurate and comprehensive results for risk analysis, policy optimization and performance improvements.
- Lastly, AlgoSec is dedicated to customer satisfaction. I liken AlgoSec as "the Zappos of enterprise software." We back everything up as the only company in its domain to offer money-back guarantee. Within 9 years only two AlgoSec customers out of more than 6,000 transactions have ever returned the solution, resulting in a 99.97 percent satisfaction rate.
How does your technology differentiate from the competition and can you elaborate on the different technology deployed?
- AlgoSec delivers a business-centric approach to security policy management that focuses on maximizing the availability of critical business applications as well as operational agility.
- With our latest release, we now provide visibility of risk per business application, enabling business owners to make smarter risk remediation decisions and ultimately "own the risk".
- AlgoSec comes out-of-the-box with robust and highly flexible change workflows that can be tailored to meet the real-life needs of our customers.
- AlgoSec provides rich, accurate and actionable security policy analysis for simplifying compliance, reducing risk and optimizing the rulebase.
- The AlgoSec Suite consists of three products, but they are truly integrated. One example I can give is looking at a business application, adding a new server to a "flow" and automatically triggering the change request with full risk and compliance check to ensure that the change won't introduce more risk.
- AlgoSec is proven to scale in the most demanding environments. This may not seem different considering many vendors say this, but the fact is many cannot prove it when put into an enterprise environment. I'm happy to share that AlgoSec is built to scale.
What business or technology could yours disrupt?
Baron: AlgoSec's technology doesn't replace an existing solution because there really is no other solution. The disruption is shifting organizations from a manual security policy management approach that is fraught with risk, non-compliance and inefficiency to an automated and application-centric approach that aligns different stakeholders and is ultimately baked into business processes. At the simplest level, this technology enables organizations to achieve significant time and cost savings, while ensuring a more secure and agile business.
Who founded the company, when? What can you tell me about the story of the company's founding?
Baron: I founded the company along with our co-founder and CTO Avishai Wool back in 2003 and we are self-funded.
What is your distribution model? Where to buy your product?
Baron: We sell primarily through the channel and have resellers and distributors throughout the world.
What's next on your product roadmap?
Baron: We will continue to build upon our mission of enabling security to be managed at the speed of business. This means expanding upon our business application-centric approach, continuing to integrate with and support other network and security devices and continuing to focus on automating more security management processes.
Are you targeting a first VC round? If yes when and what will you use the funds for? How much money is being sought?
Baron: AlgoSec has never needed to raise money from external investors as the company generates a positive cash flow. With our cash flow increasing over the years and our ability to sustain our own growth we are not currently looking into raising funds.
What else would you like to add?
Baron: I would like my team to wake up in the morning with a smile on their faces. We hire very bright people who are also team players all focused on the goal of serving our customers and ensuring we are doing everything within our realm to make them happy. AlgoSec's financial success is a result of implementing such an approach.
Other information if applicable:
Partnerships, collaborations or affiliations: We have technology partnerships with Baron: Check Point, Cisco, Fortinet, Juniper, McAfee, Palo Alto Networks, Blue Coat, HP, VMware, and we just announced our partnership with Qualys
Federal or state grants, contracts or awards received:
Market size being pursued: We focus on the enterprise market
Who are the likely competitors, direct or indirect?
Is the company profitable? Yes, we've been profitable since 2007
Current annual revenue: We do not disclose our revenue numbers though I can share that we have a 3 year CAGR of 55%
AlgoSec is the market leader for security policy management, enabling organizations to simplify and automate security operations in evolving data centers and networks. More than 1000 of the world's leading organizations, including 15 of the Fortune 50, rely on AlgoSec for faster security provisioning of business applications, streamlined change management, continuous compliance and tighter security.
AlgoSec's application-centric approach orchestrates the management of complex policies across firewalls and related network devices, aligning IT teams for improved business agility.
While DevOps promises a better and tighter integration among an organization’s development and operation teams and transforms an application life cycle into a continual deployment, Chef and Azure together provides a speedy, cost-effective and highly scalable vehicle for realizing the business values of this transformation. In his session at @DevOpsSummit at 19th Cloud Expo, Yung Chou, a Technology Evangelist at Microsoft, will present a unique opportunity to witness how Chef and Azure work tog...
Oct. 1, 2016 06:30 AM EDT Reads: 1,914
In this strange new world where more and more power is drawn from business technology, companies are effectively straddling two paths on the road to innovation and transformation into digital enterprises. The first path is the heritage trail – with “legacy” technology forming the background. Here, extant technologies are transformed by core IT teams to provide more API-driven approaches. Legacy systems can restrict companies that are transitioning into digital enterprises. To truly become a lea...
Oct. 1, 2016 06:15 AM EDT Reads: 794
Almost two-thirds of companies either have or soon will have IoT as the backbone of their business in 2016. However, IoT is far more complex than most firms expected. How can you not get trapped in the pitfalls? In his session at @ThingsExpo, Tony Shan, a renowned visionary and thought leader, will introduce a holistic method of IoTification, which is the process of IoTifying the existing technology and business models to adopt and leverage IoT. He will drill down to the components in this fra...
Oct. 1, 2016 06:00 AM EDT Reads: 1,937
Your business relies on your applications and your employees to stay in business. Whether you develop apps or manage business critical apps that help fuel your business, what happens when users experience sluggish performance? You and all technical teams across the organization – application, network, operations, among others, as well as, those outside the organization, like ISPs and third-party providers – are called in to solve the problem.
Oct. 1, 2016 06:00 AM EDT Reads: 2,795
Digital transformation is too big and important for our future success to not understand the rules that apply to it. The first three rules for winning in this age of hyper-digital transformation are: Advantages in speed, analytics and operational tempos must be captured by implementing an optimized information logistics system (OILS) Real-time operational tempos (IT, people and business processes) must be achieved Businesses that can "analyze data and act and with speed" will dominate those t...
Oct. 1, 2016 05:45 AM EDT Reads: 1,336
If you had a chance to enter on the ground level of the largest e-commerce market in the world – would you? China is the world’s most populated country with the second largest economy and the world’s fastest growing market. It is estimated that by 2018 the Chinese market will be reaching over $30 billion in gaming revenue alone. Admittedly for a foreign company, doing business in China can be challenging. Often changing laws, administrative regulations and the often inscrutable Chinese Interne...
Oct. 1, 2016 05:30 AM EDT Reads: 632
I'm a lonely sensor. I spend all day telling the world how I'm feeling, but none of the other sensors seem to care. I want to be connected. I want to build relationships with other sensors to be more useful for my human. I want my human to understand that when my friends next door are too hot for a while, I'll soon be flaming. And when all my friends go outside without me, I may be left behind. Don't just log my data; use the relationship graph. In his session at @ThingsExpo, Ryan Boyd, Engi...
Oct. 1, 2016 05:15 AM EDT Reads: 1,434
Internet of @ThingsExpo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with the 19th International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world and ThingsExpo Silicon Valley Call for Papers is now open.
Oct. 1, 2016 05:00 AM EDT Reads: 4,752
Adobe is changing the world though digital experiences. Adobe helps customers develop and deliver high-impact experiences that differentiate brands, build loyalty, and drive revenue across every screen, including smartphones, computers, tablets and TVs. Adobe content solutions are used daily by millions of companies worldwide-from publishers and broadcasters, to enterprises, marketing agencies and household-name brands. Building on its established design leadership, Adobe enables customers not o...
Oct. 1, 2016 04:45 AM EDT Reads: 571
If you’re responsible for an application that depends on the data or functionality of various IoT endpoints – either sensors or devices – your brand reputation depends on the security, reliability, and compliance of its many integrated parts. If your application fails to deliver the expected business results, your customers and partners won't care if that failure stems from the code you developed or from a component that you integrated. What can you do to ensure that the endpoints work as expect...
Oct. 1, 2016 04:30 AM EDT Reads: 1,812
WebRTC adoption has generated a wave of creative uses of communications and collaboration through websites, sales apps, customer care and business applications. As WebRTC has become more mainstream it has evolved to use cases beyond the original peer-to-peer case, which has led to a repeating requirement for interoperability with existing infrastructures. In his session at @ThingsExpo, Graham Holt, Executive Vice President of Daitan Group, will cover implementation examples that have enabled ea...
Oct. 1, 2016 04:00 AM EDT Reads: 1,657
Just over a week ago I received a long and loud sustained applause for a presentation I delivered at this year’s Cloud Expo in Santa Clara. I was extremely pleased with the turnout and had some very good conversations with many of the attendees. Over the next few days I had many more meaningful conversations and was not only happy with the results but also learned a few new things. Here is everything I learned in those three days distilled into three short points.
Oct. 1, 2016 04:00 AM EDT Reads: 5,480
SYS-CON Events announced today that ReadyTalk, a leading provider of online conferencing and webinar services, has been named Vendor Presentation Sponsor at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. ReadyTalk delivers audio and web conferencing services that inspire collaboration and enable the Future of Work for today’s increasingly digital and mobile workforce. By combining intuitive, innovative tec...
Oct. 1, 2016 04:00 AM EDT Reads: 3,127
Apache Hadoop is a key technology for gaining business insights from your Big Data, but the penetration into enterprises is shockingly low. In fact, Apache Hadoop and Big Data proponents recognize that this technology has not yet achieved its game-changing business potential. In his session at 19th Cloud Expo, John Mertic, director of program management for ODPi at The Linux Foundation, will explain why this is, how we can work together as an open data community to increase adoption, and the i...
Oct. 1, 2016 03:30 AM EDT Reads: 1,232
There is growing need for data-driven applications and the need for digital platforms to build these apps. In his session at 19th Cloud Expo, Muddu Sudhakar, VP and GM of Security & IoT at Splunk, will cover different PaaS solutions and Big Data platforms that are available to build applications. In addition, AI and machine learning are creating new requirements that developers need in the building of next-gen apps. The next-generation digital platforms have some of the past platform needs a...
Oct. 1, 2016 03:00 AM EDT Reads: 1,977