Arctic Wolf chose Revelstoke because of its "Rosetta Stone" approach to SOAR.

Edward Gately, Senior News Editor

October 10, 2023

4 Min Read
Arctic Wolf Acquiring Revelstoke to Beef Up Security Operations

Arctic Wolf is acquiring Revelstoke, which provides a security orchestration, automation and response (SOAR) platform built on a united data layer.

Revelstoke’s technology will enhance the connective fiber between threat detection and response within the Arctic Wolf Security Operations Cloud, enabling not only faster detections across an organizations’ entire attack surface, but also accelerating the execution of real-time and automated response actions at scale. Key to delivering these outcomes will be the combination of Arctic Wolf’s proprietary artificial intelligence (AI) and machine learning (MI) models, with Revelstoke’s integrations of AI technologies and large language models (LLMs), the company said.

This unification will allow Arctic Wolf to deliver next-generation SOAR capabilities, with AI embedded into the platform. That will cut response times and eliminate manual efforts, while also accelerating the company’s common data model, which is built on the Open Cybersecurity Schema Framework (OCSF). As a result, the security firm says it will advance its threat detections and response actions, while also driving consistent coverage and experience across integrations across various attack surfaces.

Keep up with the latest channel-impacting mergers and acquisitions in our M&A roundup.

Why Arctic Wolf Chose Revelstoke

Ian McShane, Arctic Wolf‘s vice president of managed detection and response (MDR), said his company chose Revelstoke because its “‘Rosetta Stone’ approach to SOAR seamlessly integrates both data and processes, which perfectly complements our best-in-class threat detection and response capabilities.”


Arctic Wolf’s Ian McShane

“Not only does this help expand our technical integration points, but it will also help in our drive to offer customizable and curated engagement models with us,” he said. “In the future, our partners can expect steps towards even more open and transparent security operations than we offer today, with the potential for partners to take a more hands-on approach themselves and provide even more value to their own customers, using the Arctic Wolf platform.”

Through hundreds of security and technology integrations available to customers today, the Arctic Wolf Security Operations Cloud ingests, parses, enriches and analyzes more than 4.5 trillion security events per week from a global base of over 4,600 customers, McShane said.

“Now, big numbers like that are meaningless unless they lead to an outcome, and one of the most important things our customers expect from us is the fastest possible detection and response times,” he said. “With the addition of Revelstoke, our security operations cloud will gain new automation and orchestration features that will include using their comprehensive and differentiated catalogue of integrations across dozens of technology types, to collect and correlate incident context. The more context a security operator has, the more confident they will be in their decision making, which drives faster security responses. This is also true of automated systems and AI capabilities, where making use of additional context will allow us to be even more efficient in how we augment our internal team of security operations center (SOC) analysts with technology.”

SOAR ‘Game-Changer’

SOAR has an opportunity to be a “game-changer” in how the company tackles cyber risk, McShane said. However, there is a significant disconnect between the promises made by existing SOAR platforms and how organizations are able to realize their real-world operational and cost-saving efficiencies.

“The truth is only the largest and most well-staffed organizations are able to implement SOAR platforms today, which is of course similar to the problem Arctic Wolf has solved with bringing security operations to the masses and removing the unfair disadvantages small organizations suffer from,” he said. “So, by incorporating Revelstoke’s SOAR platform and universal data layer into the Arctic Wolf Security Operations Cloud and concierge delivery model, Arctic Wolf will be now able to provide customers of all sizes with the advanced technology and deep security operations expertise needed to make SOAR outcomes essentially turnkey.” 

For those Revelstoke partners that are not currently Arctic Wolf partners, Arctic Wolf will work with them to see if they are interested in joining the Arctic Wolf Partner Program, McShane said.

“Security operations is the next market-changing category with Arctic Wolf leading the charge in delivering an industry-defining cybersecurity platform for businesses of every size.” said Bob Kruse, Revelstoke’s co-founder and CEO. “The cutting-edge SOAR technology we’ve built at Revelstoke is the ideal complement to the Arctic Wolf portfolio and we are excited to join the Arctic Wolf team in its mission to end cyber risk and see how our platform makes a difference for thousands of customers worldwide.”

Want to contact the author directly about this story? Have ideas for a follow-up article? Email Edward Gately or connect with him on LinkedIn.

Read more about:


About the Author(s)

Edward Gately

Senior News Editor, Channel Futures

As news editor, Edward Gately covers cybersecurity, new channel programs and program changes, M&A and other IT channel trends. Prior to Informa, he spent 26 years as a newspaper journalist in Texas, Louisiana and Arizona.

Free Newsletters for the Channel
Register for Your Free Newsletter Now

You May Also Like