Databricks, a leading cloud data analytics platform, has expanded into the cybersecurity market with the launch of Lakewatch, a new AI-driven security product. To build this capability, the company quietly acquired two startups, Antimatter and SiftD.ai, in undisclosed deals finalized last year and this week, respectively. This move highlights Databricks’ aggressive growth strategy following a recent $5 billion funding round, as well as the rising importance of integrating AI into security infrastructure.
The Acquisitions: A Strategic Play
The acquisition of Antimatter, a startup backed by New Enterprise Associates, brings valuable intellectual property related to secure AI agent deployment. Antimatter’s technology focused on creating a “data control plane” – a system for managing access and protecting sensitive data while using AI agents. This suggests Databricks aims to address a critical concern in AI-driven security: ensuring that powerful AI tools don’t inadvertently expose valuable data.
SiftD.ai, a much smaller company that launched its interactive agent-human collaboration tool just last November, appears to be an “acqui-hire.” The startup’s co-founder and CEO, Steve Zhang, is a veteran of Splunk, where he developed the Search Processing Language. His expertise is likely key to integrating AI agents into Databricks’ existing platform.
Lakewatch: AI-Powered Security in Action
Lakewatch leverages Databricks’ data storage capabilities and applies AI agents powered by Anthropic’s Claude to perform traditional Security Information and Event Management (SIEM) tasks, such as threat detection and investigation. The combination of massive data analysis with AI automation is designed to improve security efficiency and responsiveness.
The product is intended to work with both human analysts and AI agents in tandem. SiftD.ai’s interactive notebook approach, similar to Jupyter, likely provides the interface for this collaborative workflow.
Why This Matters
Databricks’ entry into the cybersecurity space signals a growing trend: the convergence of big data analytics and AI-powered security. Traditional SIEM solutions often struggle to keep pace with modern threats, generating overwhelming alerts that require manual review. AI can automate parts of this process, but only if it has access to the right data and is deployed securely.
“The integration of AI into security is not just about automation; it’s about making sense of the vast amounts of data that security teams must analyze daily,” says Andrew Krioukov, now leading the Lakewatch team at Databricks.
The acquisitions of Antimatter and SiftD.ai were small in terms of headcount (fewer than 50 employees combined), but strategically significant. They provide Databricks with both the talent and the technology needed to establish a credible foothold in the competitive cybersecurity market. The company’s ability to quickly integrate these assets will determine whether Lakewatch becomes a game-changer or just another AI-powered security tool.
