Why AirMDR

A Founder's Vision for Bridging the Cyber Skills Gap with Virtual Analysts


Over two decades of immersion within Security Operations Centers (SOCs) have afforded me invaluable insights into the evolution of cybersecurity. From the early days at ArcSight, grappling with fragmented data, to the emergence of Sumo Logic and its cloud-based approach to SIEM, including its landmark IPO, the journey has been one of constant innovation. Driving a paradigm shift by taking SIEM to the cloud, we aimed to democratize access to cybersecurity solutions, leveraging the scalability and agility of cloud technology. Yet, despite these strides, many enterprises continue to struggle with detection and response, primarily due to a shortage of cyber skills.


The solution, however, does not lie in simply increasing the number of human analysts within SOCs. Instead, it's imperative to harness the power of automation to achieve higher efficiency and speed. At my previous company, LogicHub, which I co-founded, I observed numerous large enterprises investing substantial sums—hundreds of thousands of dollars—into automation engineering and platforms, only to yield a handful of playbooks as tangible outcomes.


This experience left me pondering: there must be a more effective approach. Enter ChatGPT. It was a game-changer. This sparked the pursuit of developing a virtual analyst capable of performing on par with any Level 1 (L1) analyst, and even tackling significant portions of Level 2 (L2) analyst tasks. What sets this virtual analyst apart is its ability to communicate naturally and learn continuously. It's not just about automating tasks; it's about augmenting the security team's capabilities.


Enter the era of Autonomous SOCs, fueled by Virtual Analysts—a paradigm shift aimed at democratizing cybersecurity services for all enterprises. We stand at the cusp of a monumental shift, driven by the exponential growth of AI. In the next decade, we anticipate a seismic transformation, wherein Virtual Analysts will undertake the lion's share of tasks currently performed by human analysts within SOCs.


At AirMDR, we are spearheading this revolution by developing Virtual Analysts capable of executing alert triage, investigations, and responses akin to their human counterparts. Our recent milestone—a Virtual Analyst completing in two minutes what would take a human analyst 45 minutes—is a testament to the efficacy of this approach. Moreover, the time required to train these Virtual Analysts has been drastically reduced, paving the way for unparalleled efficiency gains.


Looking ahead, the economic benefits of transitioning to Virtual Analysts are profound. With a potential 20x increase in speed and a rapid payback on investment, the case for embracing this technology is compelling.


To fully unlock the potential of Virtual Analysts, it is imperative to adopt an AI and Automation-first mindset. Moving away from traditional software models towards an as-a-Service approach ensures that enterprises can leverage this technology without being constrained by internal talent shortages. This shift democratizes access to cutting-edge cybersecurity solutions, making them accessible to the masses.

Our commitment to this vision is evident in our company name, AirMDR, symbolizing a breath of fresh air in the Managed Detection and Response (MDR) landscape. With our Autonomous SOC as a Service, powered by Virtual Analysts, we are poised to redefine customer satisfaction in the MDR space.


Today, as we announce our seed funding and launch our Autonomous SOC as a Service, we invite businesses of all sizes to join us in this journey. Our Virtual Analysts, continuously evolving through the collective expertise of security analysts and AI engineers, stand ready to empower every security team with superhuman capabilities.


Whether through our upcoming webinar or direct engagement, we welcome the opportunity to share more about our transformative approach to cybersecurity. Let's embark on this journey together, safeguarding against adversaries and pioneering breakthrough cybersecurity innovations.


Press Release

Webinar Registration