Open Source Startup Podcast E177: RunReveal's Anti SIEM SIEM Platform (With AI That Actually Works!)
6 snips
Jul 8, 2025 Alan Braithwaite, Co-Founder & CTO of RunReveal, discusses the evolution of modern security tools and why teams are reevaluating their data management strategies. He shares insights on the advantages of building RunReveal on the open-source ClickHouse database, enhancing flexibility for security teams. The conversation dives into their commitment to open sourcing and community engagement through innovative projects. Additionally, Alan highlights the transformative role of AI in automating security investigations and the importance of educating teams on these new technologies.
AI Snips
Chapters
Transcript
Episode notes
Founders' Pivot from Honeypots
- Alan and Evan started RunReveal building honeypots but found it hard to sell to security teams.
- They pivoted to building a competitive security data platform based on their backgrounds and customer feedback.
RunReveal's Modern SIEM Approach
- Existing SIEM tools use proprietary databases and are costly with inefficient alert handling.
- RunReveal uses ClickHouse to create an all-in-one platform with normalized logs and AI-enabled faster investigations.
Shift Toward Build Versus Buy
- Hyperscale companies build their own security data pipelines instead of buying SIEMs.
- RunReveal aims to reduce data engineering overhead by providing integrations and smoothing data normalization.