‍Palo Alto, CA–June 9, 2025 —Anvilogic, the agentic SOC platform for detection engineering and triage, today announced it has been named Growth Built on Partner of the Year by Databricks, a recognition that honors the companies' shared mission to rewire the security stack with AI, modular detection logic, and full data visibility—minus the lock-in.

While some vendors are racing to “platformize” the SOC, Anvilogic and Databricks are taking a more viable route: one that delivers a decoupled, modular approach that scales with AI-first security needs, designed for the modern-day detect & triage workflows. This award reflects how far that strategy has come—from theory to real-world impact in some of the world’s most complex environments.

This recognition follows Databricks Ventures’ recent strategic investment in Anvilogic, a move that reinforces the strength of the partnership and the shared vision for transforming security operations with open, AI-native architectures. The investment is accelerating joint innovation, bringing to market a unified solution that automates the detection engineering lifecycle and delivers scalable behavioral analytics across the modern data lakehouse.

“We are honored to be recognized by Databricks as their Growth Built on Partner of the Year,” said Karthik Kannan, founder and CEO of Anvilogic. “This award validates our joint vision for the modern SOC – automated, AI-led cyber-threat detection & triage over a scalable cloud data lake built for the next-gen AI-first workload – an architecture that solves the cost-efficiency problem that plagues enterprises today who are locked into their legacy SIEMs. We are already seeing success with enterprise adoption, e.g., SAP-ECS, and are excited to grow this business jointly.”

SAP’s SecOps Vision to Execution across SAP Business Units

A standout example of this partnership in action is Roland Costea, Chief Information Security Officer for Enterprise Cloud Services at SAP, who championed the early adoption of Anvilogic’s decoupled detection approach and leveraged their Cloud Services business using Databricks’ Lakehouse.

Detection-as-code played a central role, giving SAP the structure and repeatability needed to scale detection logic across teams and environments. Combined with Anvilogic’s AI integrated across various detection functions, the team was able to rapidly deploy and tune detections with version control, transparency, and automation at every stage.

“The impacts that AI makes across the detection lifecycle, from tuning to reducing false positives in alert monitoring to leveraging a cost-effective lakehouse, fundamentally transform the detection engineering process,” said Costea. “We were early adopters of the unified workflow Anvilogic and Databricks provide and have been able to  transform detection engineering outcomes into business enablers recognized at the board level.”

SAP’s deployment achieved a 57% increase in detection coverage across all the MITRE ATT&CK framework and projected  40-50% reduction in alert volume while improving time to detect by 5x—showcasing what’s possible with an abstracted detection layer and AI-driven tuning.

This success highlights the power of combining scalable data infrastructure with a structured, code-driven approach to detection—unlocking velocity and precision across these abstracted layers of the SOC.

Powering the Future of Detection Engineering & Triage with Agentic AI

SAP was also an early design partner of its agentic AI roadmap. The Anvilogic platform now incorporates both semi and fully autonomous agents that support various stages of the detection lifecycle—from building and tuning to triage and deployment—freeing teams from manual overhead and accelerating response. Security teams can now orchestrate hybrid correlation across multiple platforms, deploy detections in their SIEM or lakehouse, and scale with full architectural flexibility.

“Our mission is to break the mold of centralized SIEMs and help security teams operate where the data lives,” added Mackenzie Kyle, VP of Product at Anvilogic. “This award validates our product vision of detection engineering as a modular, agent-powered discipline—one that aligns seamlessly with the modern data stack.”

Key Capabilities of the Anvilogic and Databricks Joint Solution

• Detection-as-Code automation and versioning
  Build and manage behavioral detections using structured logic and version control, natively within Databricks environments.
  
  
• AI Workflows purpose-built for operationalizing pre-built detection content
  Anvilogic’s agentic AI workflows bring detection ideas and report to fully orchestrated detections—from building to tuning to triage—using intelligent agents that act autonomously or collaborate with humans via chat-based interfaces.
  
  
• Automated MITRE ATT&CK coverage analysis
  Identify coverage gaps and receive curated detection recommendations tailored to your data running in the lakehouse, customized by industry, and threat priorities.
  
  
• Precision tuning to reduce false positives
  Continuously optimize detection logic and automatically resolve broken rules and noisy alerts—without compromising visibility or fidelity.
  
  
• Correlated threat narratives across domains
  Connect telemetry from identity, endpoint, email, and cloud sources to surface multi-stage attacks and reduce investigation time.
  
  
• Monte AI copilot-led triage and enrichment
  Monte integrates directly into the Anvilogic platform and SOAR tools to prioritize, enrich, and investigate alerts with full context—streamlining decision-making and reducing analyst fatigue.

Joint Customer Webinar & Industry Collaboration

On June 3, 2025, Anvilogic hosted a dynamic panel discussion titled “SAP’s Playbook for AI-Native Threat Detection,” featuring cybersecurity leaders Roland Costea (SAP), Mackenzie Kyle (Databricks), and Alan W. (Anvilogic). The session explored how SAP is operationalizing AI and detection-as-code to drive advanced threat detection, sharing actionable insights for enterprise SOCs navigating today’s hybrid data environments.

This conversation continued on a larger stage at Databricks’ Data + AI Summit 2025, as part of the Data Intelligence for Cybersecurity Forum: Insights From SAP, Anvilogic, Capital One, and Wiz. There, Mackenzie Kyle presented a breakout session titled “AI-Powered Threat Detection & Triage on the Lakehouse with SAP, Databricks & Anvilogic,” showcasing how enterprises are leveraging lakehouse architecture and ecosystem collaboration to reduce alert fatigue, automate triage, and scale detection engineering.

With global brands like SAP, Databricks, and Anvilogic aligned on stage, the sessions underscored the momentum behind AI-native, partner-powered security operations—and the critical role of shared innovation in building the SOC of the future.

About Anvilogic

Anvilogic is the agentic SOC platform for detection engineering and triage. It uses a modular detection-as-code approach with AI agents to help security teams build, tune, deploy, and manage high-fidelity detections across SIEMs and data lakes—eliminating data silos and reducing legacy SIEM costs. Powered by Monte, its AI copilot, Anvilogic delivers modular architecture, natural language interfaces, and smart automation designed to accelerate detection coverage and SOC performance. Trusted by enterprise security teams across finance, tech, and healthcare. Learn more at www.anvilogic.com.

Media Contact:

PR@anvilogic.com