At Synqly, we believe security integrations should be simple, secure, and scalable. In our recent “Behind the Build” webinar, we shared what our engineering and product teams have been working on over the last quarter and gave attendees a preview of what’s coming next. This recap highlights the major product updates, architectural enhancements, and expanded capabilities shaping cybersecurity integration’s future.
Would you rather watch the video on demand? Click here to catch it all.
Built for Security and IT Operations
Synqly remains the only integration platform focused exclusively on cybersecurity and IT operations. Our platform enables vendors, managed service providers, and enterprise teams to build native integrations through a single, unified API. The Synqly architecture removes the burden of point-to-point development, dramatically reducing the time and cost required to scale integrations.
Synqly customers are achieving up to 90 percent savings in time and costs associated with integration development. This efficiency is driven by our AI-enabled platform, which normalizes data across diverse tools and categories, including SIEM, EDR, asset management, ticketing, identity, and vulnerability management.
Expanding the Ecosystem
Since launch, Synqly has rapidly expanded its catalog of supported integrations, now maintaining the largest security-focused integration ecosystem on the market. Recent additions include:
- Enhanced support for ticketing and notification tools, allowing partners to automate ticket creation and event routing.
- New SIEM integrations, including Google SecOps and CrowdStrike Next Gen SIEM, along with advanced data normalization capabilities.
- Google Workspace support for identity use cases and new endpoint integrations with Malwarebytes.
- Launch of our cloud security category, with initial capabilities to query findings and asset data from cloud platforms. More audit and compliance data features are planned.
Each of these integrations is added based on customer needs, with our team scaling to meet those requests. As our ecosystem grows, so does the value we deliver through our prebuilt multiplex connectors and normalized data schemas.
Intelligent Architecture and Adaptive Data Mapping
One of the most significant updates this quarter is our enhanced SIEM architecture and the introduction of Adaptive Data Mapping. This new feature allows customers to extend Synqly’s normalized data schema to include custom attributes and define their own mappings. It gives security vendors and developers the flexibility to meet unique integration requirements without relying on rigid, predefined formats.
This extensibility marks a significant step forward in our mission to support more advanced use cases and deliver highly tailored integrations.
Asynchronous Operations and Scheduled Workflows
Also released in beta, Asynchronous Operations allows Synqly customers to run large data pulls or schedule recurring integration jobs. Whether querying high-volume telemetry from a SIEM or scheduling daily vulnerability scans, customers now have more control over when and how data flows.
Output from asynchronous operations can be routed to cloud destinations like Amazon S3 or SQS, supporting more complex data pipelines without requiring custom job management.
Strengthening Embedded Deployments
Synqly continues to invest in its embedded deployment option, which mirrors the capabilities of our SaaS platform but is designed for self-hosted and hybrid environments. Enhancements include:
- Ongoing improvements to Helm charts to streamline deployment and management.
- Expanded support for local key management system (KMS) integrations, allowing customers to securely store credentials without sharing them externally.
This commitment ensures that customers operating in highly regulated industries or air-gapped environments can fully leverage Synqly while meeting their security and compliance requirements.
Enhanced Connectivity with Synqly Bridge
We also introduced major updates to Synqly Bridge, our lightweight proxy tool for enabling integrations with vendors running in customer data centers or private networks. Bridge offers secure credential handling through local KMS integrations and requires minimal maintenance, making it ideal for connecting on-prem environments without compromising on visibility or control.
Introducing Synqly Labs
Looking ahead, we are proud to announce Synqly Labs, the first dedicated lab environment for testing cybersecurity integrations. With mock provider support and vendor validation, Labs allows customers to validate functionality, test data flows, and ensure integration quality before going live, without exposing sensitive data.
This fully managed environment lowers the barrier to safe testing and demonstrates Synqly’s continued leadership in integration-first development tools.
Launching the Model Context Protocol (MCP)
The biggest announcement this quarter was the launch of the Synqly Model Context Protocol (MCP). MCP is a new protocol that enables agentic AI systems to interact with integrations using structured, normalized, and actionable commands. AI products can now stream data, issue real-time enrichment queries, and trigger actions across Synqly’s integration ecosystem, eliminating the need for separate integrations for each tool.
MCP enables vendors to accelerate the development of AI-driven security capabilities and reduces the complexity of building multi-tool workflows. By abstracting integration challenges, Synqly MCP allows security-focused AI agents to work out-of-the-box with hundreds of products, making intelligent automation a reality.
