The number of cybersecurity-related mergers and acquisitions announced in the past months has remained constant, with 40 deals announced in November 2021.
November 1-7
Appsian Security acquires Q Software
ERP data security and compliance firm Appsian Security acquired Q Software, which specializes in security and compliance solutions for JD Edwards EnterpriseOne, JD Edwards World, and Oracle E-Business Suite. The acquisition will enable Appsian Security and Q Software to expand their data masking, threat detection and response, and real-time analytics capabilities.
Cryptocurrency lending platform Celsius Network announced the acquisition of GK8, an Israel-based blockchain cybersecurity company that offers its services to financial institutions. Celsius is paying $115 million for GK8, which will enable it to provide an “all-in-one platform built for banks and financial institutions.”
Cerberus Sentinel acquires Atlantic Technology Systems
MSSP Cerberus Cyber Sentinel Corporation is buying MSP Atlantic Technology Systems, which will become its wholly owned subsidiary. The deal will help the cybersecurity services firm expand the scope of its offerings.
CrowdStrike acquires SecureCircle
Endpoint security company CrowdStrike acquired SecureCircle, which provides a SaaS-based service designed to extend Zero Trust security to data on the endpoint. CrowdStrike said the acquisition will result in customers gaining visibility and control over how data is downloaded, used and shared.
CyberRisk Alliance acquires After Nines
Cybersecurity-focused business intelligence and information services provider CyberRisk Alliance acquired After Nines, a digital media company known for the ChannelE2E & MSSP Alert websites. CyberRisk Alliance acquired After Nines as part of its expansion strategy.
Cybersecurity assessment, risk management and training provider Entreda is buying Privva, which specializes in enterprise risk management. Privva will do business under the Entreda brand. The combined company will deliver a unified cybersecurity compliance platform designed for monitoring users, devices, networks and vendors.
IBM Security is acquiring ReaQta, a Netherlands-based startup specializing in autonomous threat detection and response. IBM said the acquisition expands its push in the extended detection and response (XDR) market.
Professional services company Jacobs has acquired cloud and edge analytics provider BlackLynx. Jacobs said the deal will expand its cyber, intelligence and digital solutions portfolios. The companies provide their services and solutions to intelligence, defense and critical infrastructure organizations.
ManTech acquires Gryphon Technologies
Systems engineering firm ManTech announced an agreement to buy Gryphon Technologies, which provides digital engineering solutions to government agencies. Both companies provide cybersecurity solutions. ManTech will pay $350 million for Gryphon.
Sweden-based vulnerability management and security assessment company Outpost24 acquired Specops Software, a provider of password management and user authentication solutions, also based in Sweden. Outpost24 said the deal will enable it to further expand its security assessment offering.
Recovery Point Systems acquires Geminare
Cloud-based business resilience services provider Recovery Point Systems acquires Geminare, a Canadian firm that specializes in business continuity, data protection, and disaster recovery solutions. The acquisition will help Recovery Point expand its disaster recovery and resiliency orchestration capabilities.
Identity and access management firm SecureAuth acquired risk-based continuous authentication platform Acceptto. The deal will enable SecureAuth to expand its capabilities.
November 8-14
IT company Cegeka has acquired SecurIT, which specializes in identity and access management (IAM). Both companies are based in the Netherlands, but SecurIT is also active in North America. The acquisition enables Cegeka to expand its cybersecurity capabilities.
DomainTools acquires Farsight Security
DomainTools has announced buying Farsight Security. Both companies are based in the United States and they both specialize in DNS-based threat intelligence. The companies have been working together for several years, with Farsight’s DNS data being leveraged by DomainTools’ Iris investigation platform.
UK-based private equity firm IK Partners has acquired Sweden-based Truesec, which provides a wide range of cybersecurity services, including risk assessments and penetration testing, and threat detection and response. Truesec said the deal will enable it to expand.
Cloud solutions provider Kerv has acquired Gyrocom, which provides cloud, networking, and network security services. The companies are based in the United Kingdom. Gyrocom will become Kerv’s networking and security division following the acquisition.
Cloud security company Lacework purchased cloud infrastructure management firm Soluble, which specializes in infrastructure as code (IaC). Lacework said the acquisition will enable it to strengthen its cloud security platform with new DevSecOps capabilities.
Enterprise information management solutions provider OpenText announced the acquisition of email security company Zix for $860 million. Zix said the acquisition by OpenText will help it grow further, with the deal expected to result in more resources and product capabilities.
Sesa acquires majority stake in Datef
Italy-based IT services provider Sesa has acquired — through its subsidiary Var Group — a majority stake in Datef, an Italian company that provides cloud and cybersecurity services, including threat detection and response and industrial cybersecurity. The deal will enable Sesa to expand, as well as to strengthen its position in managed services, cloud and cybersecurity.
Valeo Networks acquires On Time Tech
Managed security service provider (MSSP) Valeo Networks has acquired MSP On Time Tech as part of its national growth strategy. Valeo said the acquisition enables it to expand in California. On Time Tech will continue to operate independently.
November 15-21
Buchanan & Edwards acquires RenXTech
Buchanan & Edwards (BE), which focuses on data analytics, cybersecurity and cloud computing services, announced buying cybersecurity and technical analysis firm RenXTech. Both companies provide their services to the U.S. government. Following the acquisition, RenXTech will merge with another BE subsidiary, R2C, under the RenXTech brand.
UK-based identity verification and fraud prevention solutions provider GBG is acquiring Acuant in a $736 million deal. GBG says Acuant’s trusted identity product offering complements the services provided by its US-based subsidiary IDology.
General Informatics acquires Versiant
United States-based MSPs General Informatics and Versiant are joining forces as part of a deal that will help each company expand their services portfolios, expertise and geographic reach. General Informatics said the acquisition of Versant will help it improve its capabilities, particularly in terms of data analytics and cyber security.
Ideagen acquires CompliSpace and CompliancePath
UK-based governance, risk, compliance (GRC) software management company Ideagen announced the acquisitions of CompliSpace and CompliancePath. CompliancePath, acquired for up to $12 million, is a Scotland-based firm that specializes in IT governance and software assurance. CompliSpace, acquired for AU$105 million ($76 million), is based in Australia and it provides GRC programs to schools.
Immersive Labs acquires Snap Labs
UK-based cybersecurity training firm Immersive Labs is buying Snap Labs, a US-based company that specializes in cyber labs for training, research and demos. Immersive Labs says the integrated offering will deliver hyper-realistic team exercises that are specific to customer environments.
Fraud prevention unicorn Sift has acquired Keyless, a UK-based provider of passwordless and multi-factor authentication. The goal of the deal is to bring passwordless authentication to the Sift portfolio and help regulated businesses and online merchants eliminate password-based account takeover.
External threat hunting firm Team Cymru has acquired Israel-based threat surface management firm Amplicy. The deal will enable Team Cymru to inform its customers on both the evolving threats and where they might strike against Amplicy-detected perimeter weaknesses.
November 22-30
BlueHalo, a company that provides engineering solutions and technology, has acquired technology and analytics firm Asymmetrik. Both companies provide their services, including cybersecurity, to government organizations. BlueHalo says Asymmetrik complements its cyber and SIGINT capabilities.
Celcom Axiata Berhad, Malaysia’s oldest mobile telecoms provider, has acquired IT and managed security services provider (MSSP) Bridgenet, which is also based in Malaysia. The deal is part of Celcom’s plan to expand its enterprise business, but it will also enable Bridgenet to accelerate its roadmap.
Cipherpoint acquires VIT Cyber Security
Data security and compliance solutions provider Cipherpoint has completed the acquisition of Virtual Information Technology Pty Limited (VIT Cyber Security), which provides managed IT and security solutions. Both companies are based in Australia. Cipherpoint is paying roughly $1 million in cash and shares for VIT Cyber Security.
Clearlake Capital acquires Quest Software
Investment firm Clearlake Capital has announced buying Quest Software, which provides cybersecurity, data intelligence, and IT operations management software. Clearlake is acquiring Quest from Francisco Partners, reportedly for $5.4 billion.
Coinbase acquires Unbound Security
Cryptocurrency trading powerhouse Coinbase announced plans to acquire Unbound Security, an Israeli startup that provides protection for cryptographic keys and credentials. Coinbase is reportedly paying $150 million for Unbound. Coinbase said Unbound Security technology will expand the company’s multi-party computational (MPC) capabilities.
Norway-based assurance and risk management solutions provider DNV is acquiring industrial cybersecurity company Applied Risk in an effort to create an “industrial cybersecurity powerhouse.” The companies will merge under the DNV brand.
FirstWave acquires Opmantek Software
Cloud security company FirstWave Cloud Technology announced its intention to acquire network management firm Opmantek Software for AU$ 62 million (roughly US$ 44 million). Both companies are based in Australia. The deal is expected to help the companies grow and FirstWave plans on integrating Opmantek technology into its products.
Honeywell Quantum Solutions merges with Cambridge Quantum
Honeywell Quantum Solutions is merging with Cambridge Quantum into Quantinuum. The goal is to create the world’s largest integrated quantum computing company. The plan is to launch a quantum cyber security product in December 2021 and an enterprise software package that applies quantum computing to solve complex scientific problems in 2022. Honeywell will initially have a 54 percent ownership stake in the new company, and the industrial giant has also invested nearly $300 million in the new venture.
Meriplex acquires Optimum Networking
Meriplex is buying Optimum Networking. Both companies provide managed IT and cybersecurity services. The acquisition is part of Meriplex’s expansion strategy through the acquisition of MSPs.
Enterprise information management solutions provider OpenText has acquired network detection and response (NDR) firm Bricata. The acquisition will enable OpenText to expand its NDR capabilities.
Schwarz Group acquires XM Cyber
Germany-based retail giant Schwarz Group has announced the acquisition of security posture management company XM Cyber for $700 million. With the acquisition of Israel-based XM Cyber, the Schwarz Group wants to expand its cybersecurity portfolio. The XM Cyber brand will remain and the company will continue to operate independently, but says the acquisition by the Schwarz Group will help it grow.
Yaqoob Al Awadhi acquires NGN International
Bahraini businessman Yaqoob Al Awadhi has acquired all of the shares of Bahrain-based MSSP NGN International. Al Awadhi, who has become chairman and CEO of NGN following the acquisition, said the goal is to “create a 100% Bahraini entity that performs all sensitive technical operations on its premises to ensure customer privacy and the reliability of the services it provides.”
Related: Cybersecurity M&A Roundup: 41 Deals Announced in October 2021
