Once the deal closes, the startup’s platform will become part of Cisco’s Splunk business to accelerate its threat detection strategy and help improve enterprise security operations, the companies announced this week.

Cisco Systems announced this week that it plans to acquire SnapAttack, a threat detection and engineering platform provider that the company says will help Cisco’s Splunk power the security operations center (SOC) of the future for businesses.

Founded in 2021, the SnapAttack platform will become part of Cisco’s Splunk business to further accelerate its organic threat detection roadmap and help improve enterprise security operations for a better-informed defense. threats, according to the two companies.

Cisco, based in San Jose, California, has been hard at work by increasing its safety profile in recent years, said the SnapAttack acquisition, once completed, could help win over new security customers who are “hesitant” about the value of Splunk Enterprise Security.

The pending deal would mark the fourth acquisition of the year for Cisco, all security-related.

(Related: Cisco and NTT partner to bring flexible 5G connectivity to global businesses)

The Arlington, Virginia-based startup’s technology provides security analysts with the information they need to continually evaluate, organize and optimize their security content, streamlining the research, writing, validation and deployment of threat detections in their technology park, according to SnapAttack.

The company already helps companies that have migrated from competing security offerings to Cisco Splunk by easily adapting, deploying and validating their existing security content on Splunk and helps these companies modernize their security information and event management strategies (SIEM), the companies said.

“Splunk’s Threat Detection, Investigation, and Response (TDIR) solution leverages its industry-leading SIEM platform, Splunk Enterprise Security, which includes Enterprise Security Content Updates (ESCU) which provide customers with pre-packaged and regularly updated detection content. SnapAttack provides a solution that supports the full lifecycle of detection content, starting with curated detection content discovery that is prioritized by current threat activity, potential impact, and other factors, through ‘continuous validation, testing and evaluation of deployed content. said Mike Horn, senior vice president and general manager of Splunk’s security business, in a blog post about the proposed deal.

SnapAttack counts among its customers some of the world’s largest organizations in industries subject to the most stringent cybersecurity regulations, the company said.

During Cisco’s first quarter of fiscal 2025, which began in August, the company completed two software acquisitions, including DeepFactor, a privately held cloud-native application security company, and Robust Intelligence, a privately held solutions company. AI security.

Cisco also announced plans in October to acquire Deeper Insights AI, a private AI services company based in the United Kingdom.

The companies did not say when they expected the deal to close.