Forty cybersecurity-related merger and acquisition (M&A) deals were announced in August 2023. The number of transactions has bounced back in the past two months following a significant drop in June.
An analysis conducted by SecurityWeek shows that more than 210 cybersecurity-related mergers and acquisitions were announced in the first half of 2023.
US-based cloud security firm Armor has acquired Singapore-based Quantum Security, a security firm specializing in cloud automation and services. The deal helps Armor enhance its cloud security and IT risk capabilities.
German IT giant Bechtle has acquired Germany-based identity and access management (IAM) firm Sastema. As a result of the deal, Bechtle is launching a new IAM Competence Center led by Sastema managing director Sven Almoril.
Management consulting firm Centric Consulting has announced buying risk management company The Mako Group in an effort to expand its capabilities.
Network security giant Check Point Software has agreed to acquire Secure Access Service Edge (SASE) and Zero Trust Network Access (ZTNA) solutions provider Perimeter 81 for roughly $490 million.
Deloitte Australia has acquired Australia-based MDR solutions provider ParaFlare. Deloitte and ParaFlare will offer various cyber defense capabilities, including threat detection, threat intelligence, incident response, recovery and remediation. ParaFlare’s nearly 80 employees will join Deloitte.
Defense firm ManTech has acquired tech consulting and solutions provider Definitive Logic. Both companies offer their services to the US government. ManTech said the acquisition will enable it to expand its capabilities, including in cyber.
Enterprise software company Partner One is acquiring software, intellectual property, equipment and contracts of Fidelis Cybersecurity, a provider of XDR and cloud-native application protection solutions provider. Partner One is incorporating the acquired assets into its existing product portfolio.
Compliance and anti-fraud solutions provider Prembly announced buying data sharing company Tunnel. Both Prembly and Tunnel are Nigerian companies. This deal helps Prembly enhance its security suite and expand its financial services.
Artificial intelligence and machine learning (AI/ML) security company Protect AI has acquired the Huntr bug bounty platform and has launched the first bug bounty platform focusing on AI/ML open source software, foundational models, and ML systems.
Data security firm Rubrik has purchased data security posture management (DSPM) platform Laminar. According to some reports, Rubrik paid $200-250 million, while others described it as a deal north of $100 million.
Higher education IT consulting firm Strata Information Group (SIG) has acquired Triaxiom Security, a cybersecurity company specializing in penetration testing, compliance auditing and strategic security services. As a result of the deal, SIG will launch SIG Cyber, a cybersecurity consulting practice focusing on the higher education sector.
SIEM and XDR solutions provider Seceon has announced acquiring real-time pattern scanning engine Helixera in an effort to enhance its capabilities. Seceon hired Helixera founder Waldek Mikolajczyk as VP of Cybersecurity Solutions Architecture.
Sentar, a company providing cybersecurity, systems engineering, intelligence, and analytics solutions to the US government, has acquired Waterfront Technical Services, whose portfolio includes flight and ground operations, data center operations, IT, software development, and test supporting NASA’s spaceflight missions. The deal is part of Sentar’s expansion strategy.
T-Rex Solutions has acquired Cyber Cloud Technologies. Both companies provide cybersecurity and other IT services and solutions to US government agencies. T-Rex said the deal helps accelerate growth.
AppSec platform We Hack Purple, which offers training and other resources for developers and security experts, is merging with application security company Semgrep. The goal is to create a “powerhouse of application security expertise”.
Zurich Insurance Group subsidiary Zurich Holding Company of America has acquired SpearTip, a cyber counterintelligence firm that specializes in incident response, managed detection and response (MDR) and risk management. The acquisition expands the capabilities and risk mitigation services of Zurich Resilience Solutions’ cyber team.
MSSP Zyston has acquired Complyify, a company that provides AI-driven cybersecurity risk and compliance management solutions. Complyify’s AI expertise will be integrated into Zyston’s cybersecurity offerings.
IT transformation and cybersecurity firm Converged Security Solutions (CSS) has acquired Solutions By Design II (SBD), a federal government contractor specializing in cybersecurity, application development, and cloud. SBD will be integrated into CSS-owned IT transformation and cybersecurity firm Evolver.
Edge cloud platform provider Fastly has acquired real-time domain availability API provider Domainr in an effort to expand its capabilities, enabling it to identify and address domain-related risks.
Private equity firm Thoma Bravo has announced plans to merge identity and access management (IAM) firms ForgeRock (acquired for $2.3 billion) and Ping Identity (acquired for $2.8 billion).
Customer lifecycle intelligence firm FullCircl has announced buying W2 Global Data Solutions, which specializes in big data services and identity verification, providing regulatory KYC, anti-money laundering, and fraud prevention capabilities.
Malwarebytes has bought Cyrus Security, a consumer-focused cybersecurity and privacy solutions provider. Cyrus technology will help Malwarebytes strengthen its mobile privacy solutions. All Cyrus employees have joined Malwarebytes.
Owl Cyber Defense, which provides hardware-enforced cyber security solutions for government and critical infrastructure organizations, acquired Big Bad Wolf Security, a company that focuses on cloud infrastructure security for government and commercial applications. The deal enables Owl to accelerate the expansion of its product portfolio.
Parsons Corporation acquired edge computing and cybersecurity company Sealing Technologies in a transaction valued at up to $200 million. The deal helps Parsons expand its government customer base and enhance its capabilities in defensive cyber operations, AI-powered integrated mission solutions, edge computing and edge access, critical infrastructure protection, and secure data management.
Identity security firm SailPoint has acquired UK-based privileged access management (PAM) company Osirium for £6.56 million (roughly $8.2 million). SailPoint will integrate Osirium’s core capabilities into its Identity Security Platform.
UK-based security and networking firm Xalient announced the acquisition of US-based identity consulting firm Integral Partners. The deal helps Xalient accelerate growth, expands its identity security capabilities, and complements existing managed services.
SecurityWeek is tracking deals involving managed security services providers (MSSPs) and distributors separately. Here is a list of deals from the first half of August 2023: