When you look at the actual news this week, things are actually changing. The gap between “we saw something” and “we did something” is shrinking, and that’s where MSSPs actually gain leverage. Less manual work connecting alerts, fewer steps between teams, and quicker containment. The expanded partnership between LevelBlue and SentinelOne and the SentinelOne-Cloudflare integration aren't coincidental - they are the same argument made twice. The whole point of both moves is to connect detection directly to response, so alerts don't sit in a queue waiting for someone to act. LevelBlue and SentinelOne have wired their platforms so that investigation and response happen immediately after detection, without teams jumping between tools. Cloudflare's edge telemetry now flows directly into SentinelOne's SIEM, pushing automation further into that loop so more of the middle work happens without human intervention.
The urgency behind these moves becomes clearer when you look at the threat data coming out of RSAC this week.
Attackers are now achieving full data exfiltration in as little as 72 minutes, four times faster than last year. This means the old model of detect, ticket, escalate, investigate, and respond doesn't hold up anymore. Buyers already know this. They're not asking for more alerts or better dashboards. They want proof that something is handled end-to-end, quickly. That's why everything is being framed around response time, dwell time, and containment. MSSPs that can show those outcomes are pulling ahead. The ones still running manual triage across siloed tools are structurally slower than the attacks they're trying to stop, and they're starting to feel it.
Market Pulse: Cybersecurity Deals, Funding, and Platform Shifts
HENNGE launches endpoint & managed security to expand cloud security offering: HENNGE has launched a new endpoint & managed security offering that brings endpoint protection, detection, and response into a single cloud-managed platform, extending its focus beyond identity into device-level security. The solution combines EPP, EDR, and MDR capabilities with features like automated patching, behavioral threat detection, and optional 24/7 monitoring, aimed at organizations that lack in-house security resources.
Exabeam launches MSSP-focused commercial framework within its APEX partner program: Exabeam has introduced a new MSSP-focused commercial framework within its APEX partner program, aimed at simplifying how managed security providers license, deploy, and scale services. The update replaces fragmented licensing models with two options tailored to MSSP operations: a pooled license model for multi-tenant environments with centralized control, and a federated subscription model designed for regional or compliance-driven deployments with data isolation. The focus is on reducing operational friction around onboarding, pricing, and margin protection, while aligning incentives with recurring revenue through flexible billing, rebates, and partner support programs.
KeyData Cyber introduces Identity Command Center: KeyData Cyber has introduced an Identity Command Center platform aimed at giving security leaders a centralized, real-time view of identity risk and program maturity, as organizations continue to treat identity as a core control layer in cybersecurity. Developed by BeyondID, the platform tracks identity initiatives from assessment through implementation and managed services, helping teams monitor progress, prioritize risks, and align identity investments with business goals.
Huskeys Security launches with $8 million in funding: Huskeys Security has launched with $8 million in funding to address growing gaps in traditional web application firewall (WAF) approaches, as modern traffic shifts toward APIs and automated agents that are harder to distinguish from malicious activity. The company’s Edge Security Management platform sits on top of existing infrastructure, using AI to unify and manage policies across CDN, WAF, and application layers while continuously adapting rules based on traffic behavior and business context.
Linx Security raises $50 million in Series B funding: Linx Security has raised $50 million in Series B funding to expand its AI-driven identity security and governance platform, reflecting growing demand for real-time visibility and control over increasingly complex identity environments. The company’s platform maps and monitors human, non-human, and agentic identities across enterprises, using automated detection and remediation to reduce reliance on manual oversight and reactive processes.
Have news to share or just want to connect? Reach us anytime at [email protected].
