Sophos buys US-based Refactr

Sophos, a cybersecurity solution provider, has acquired Refactr, which develops and markets DevSecOps automation platform that bridges the gap between DevOps and cybersecurity.
Sophos at IT eventBased in Bellevue, Washington, Refactr launched in 2017 and is privately held. Refactr’s developers and engineers have joined Sophos.

DevOps teams can use Refactr’s platform to augment existing integration, delivery and deployment (CI/CD) workflows, and cybersecurity teams can leverage the platform’s visual drag and drop builder. Refactr has customers in both the private and government/public sectors, including the Center for Internet Security and the U.S. Air Force’s Platform One.

Sophos is optimizing Refactr’s DevSecOps automation platform to add Security Orchestration Automation and Response (SOAR) capabilities to its Managed Threat Response (MTR) and Extended Detection and Response (XDR) solutions.

Joe Levy, chief technology officer, Sophos, said: “With Refactr, Sophos will fast track the integration of advanced SOAR capabilities into our Adaptive Cybersecurity Ecosystem, the basis for our XDR product and MTR service.”

Sophos will continue to offer Refactr’s platform to partners and organizations that want to build IT and security automations for themselves and for their customers. Refactr’s Community Edition will continue to be available as well.

Michael Fraser, CEO and co-founder, Refactr, said: “Our mission is to enable DevSecOps to become the modern approach to automation, where cybersecurity use cases like SOAR, XDR, compliance, cloud security, and Identity and Access Management (IAM) become building blocks for DevSecOps solutions.”