Built for the device-identity problem, not the platform pitch.
Most healthcare cybersecurity platforms try to do everything. We picked one thing — identify every device on the network, accurately, every day — and built only that. The rest of your security stack is fine. What it has trouble with is the assumption underneath: that the inventory feeding every other control is accurate. That is the part we work on.
Who built it.
Founded by Shai Moshe. The engineering team is small, network-fluent, and worked on the device-identification problem long before the OCR Risk Analysis Initiative made it a board-level discussion. The 750-million-device reference library underneath the platform started as a private research dataset; it is still growing weekly.
Why healthcare specifically.
The device tail in a hospital is harder than the device tail almost anywhere else. Infusion pumps run firmware images from 2014. Imaging modalities ship from the manufacturer with their own undocumented support tunnels. Pharmacy automation talks to vendor cloud services nobody on the IT side has heard of. Most security platforms either skip these devices or misidentify them. Our switch-side approach works on them, which is why OCR-investigation-prepping CISOs were the audience we knew we could help first.
What we will not become.
A SIEM. A threat-detection platform. A configuration-assessment tool. A healthcare-IoT risk-scoring suite. Those exist; some of them are excellent. Our output is the identity feed under them. When a customer asks "can you also do X?" the answer is almost always "no — we will partner with whoever you already use for X." That discipline is the difference between a platform that holds up under audit and one that doesn't.
Where we are.
Headquartered in the United States. Telemetry available in U.S., EU, Canada, and on-prem. Reachable at contact_us@cybriq.io.