Side-by-side comparison of AI visibility scores, market position, and capabilities
Tel Aviv Israel cloud detection and response platform; raised $23M+; real-time investigation and response for cloud threats across AWS, Azure, and GCP.
Gem Security is a cloud detection and response (CDR) company founded in 2022 and headquartered in Tel Aviv, Israel. The company was founded by Ron Konigsberg, Arie Zilberstein, and Ofir Brukner — veterans of the Israeli Defense Forces intelligence corps and the enterprise security industry — to address the lack of effective incident response tooling for cloud environments. When a cloud security breach occurs, organizations often lack the tools to quickly understand what happened, what was accessed, and how far the attacker moved, because cloud audit logs are distributed across multiple services and require significant expertise to interpret.\n\nGem raised $23 million in a Series A round led by Team8 and GGV Capital. Its platform ingests cloud audit logs and events from AWS, Azure, and GCP in real time, builds a graph of all cloud resource relationships and identity activity, and uses threat detection rules and AI to identify active incidents. When an alert is triggered, Gem's investigation interface automatically aggregates all relevant context — the identity involved, the resources accessed, the timeline of events, and the blast radius — into a single view, reducing the time security analysts spend on manual log correlation from hours to minutes.\n\nGem's cloud-native investigation capabilities allow security teams to pivot through cloud activity graphs, understand the full scope of an incident, and initiate containment actions directly from the platform. The product is designed for organizations that have adopted cloud security posture management tools but lack effective detection and response capabilities for cloud incidents that bypass configuration checks. Gem positions CDR as the runtime complement to CSPM's proactive posture management, completing the detect-and-respond half of the cloud security lifecycle.
Data platform for security and observability acquired by Cisco for $28B in March 2024. Used by 90 of Fortune 100; 7,500+ enterprise customers globally; flagship SIEM and Splunk SOAR power enterprise security operations centers.
Splunk is a data platform for security and observability founded in 2003 in San Francisco, built on the idea that machine-generated data — logs, events, metrics, traces — contains the intelligence organizations need to detect threats, investigate incidents, and ensure digital systems stay available. The company's core technology indexes and searches massive volumes of machine data in real time, enabling security and IT operations teams to answer complex questions across their entire data estate without predefined schemas.\n\nSplunk's flagship product is its SIEM (Security Information and Event Management) platform, used by 90 of the Fortune 100 to detect and respond to security threats. Its broader portfolio includes Splunk Observability Cloud for infrastructure monitoring, Splunk SOAR for security orchestration and automated response, and Splunk IT Service Intelligence for IT operations. The platform's schema-on-read approach and SPL query language give analysts flexibility to investigate novel threats and operational issues that structured databases cannot accommodate.\n\nSplunk was acquired by Cisco for $28B in March 2024, one of the largest cybersecurity acquisitions in history, and has been integrated into Cisco's AI-driven security portfolio. The combination of Cisco's network telemetry and global customer relationships with Splunk's data analytics depth creates a powerful full-stack security and observability offering. Under Cisco, Splunk is adding AI-native features — including AI Assistant for SPL and automated threat detection — to maintain its leadership position as the SIEM market evolves toward AI-augmented security operations.
Monitor how your brand performs across ChatGPT, Gemini, Perplexity, Claude, and Grok daily.