Frequently asked
questions.
Quick answers about Phalanxia's platform, deployment, security, compliance, and pricing.
About the platform.
What is Phalanxia?
Phalanxia is an AI-powered cyber risk intelligence platform built on ARES — 15 specialized agent clusters and 76 sub-agents that detect, investigate, and respond to insider threats and compromised accounts. Our autonomous agents use evidence-based triage to understand user intent and accelerate security investigations from weeks to minutes.
How is Phalanxia different from traditional UEBA tools?
Traditional UEBA tools generate thousands of anomaly alerts without context, leaving security teams to manually investigate each one. Phalanxia is different in four key ways:
- AI deep research: autonomous agents conduct comprehensive investigations automatically.
- Intent understanding: LLMs analyze behavior to determine whether actions are malicious or legitimate.
- False-positive reduction: evidence-based triage substantially reduces false-positive burden through multi-agent investigation.
- Tier 2/3 focus: built for deep investigation, not just alert triage.
What types of threats does Phalanxia detect?
Phalanxia excels at detecting human-driven threats including:
- Malicious insiders attempting data exfiltration
- Compromised accounts being used by attackers
- Accidental insider risks and policy violations
- Privilege abuse and unauthorized access
- Departing employees with suspicious activity
- Credential sharing and account misuse
Getting up and running.
How long does deployment take?
Standard deployment is about 5 business days; complex or highly regulated environments may take longer. Our platform learns your environment automatically, minimizing configuration overhead.
What integrations do you support?
Phalanxia integrates with 50+ security and business tools including:
- Identity & access: Okta, Azure AD, Duo, Ping Identity
- Endpoint security: CrowdStrike, Carbon Black, SentinelOne
- SIEM & analytics: Splunk, Elastic, Sumo Logic, Microsoft Sentinel
- Cloud & SaaS: AWS, Azure, GCP, Microsoft 365, Google Workspace
Don't see your tool? We can build custom integrations on request.
Is Phalanxia cloud-based or on-premise?
Phalanxia is available in multiple deployment models to meet your requirements:
- SaaS: fully managed cloud deployment (most popular)
- Private cloud: dedicated instance in your own cloud environment
- On-premise: available for highly regulated industries
All deployment options include the same features and capabilities.
Data protection and regulatory fit.
How does Phalanxia protect customer data?
Security is fundamental to everything we build:
- End-to-end encryption for data in transit and at rest
- SOC 2 Type II in progress
- GDPR and CCPA compliant
- Regular penetration testing and security audits
- Role-based access controls and audit logging
- Data residency options available
What compliance frameworks do you support?
Phalanxia helps organizations meet requirements for:
- SOC 2
- ISO 27001
- NIST Cybersecurity Framework
- PCI-DSS
- HIPAA
- GDPR
- CMMC (for DoD contractors)
We provide automated compliance reporting and audit trails for all frameworks.
Do you offer a privacy-first approach?
Yes. Phalanxia is designed with employee privacy in mind. We focus on detecting security threats, not monitoring every employee action. Our approach includes:
- Risk-based monitoring focused on high-risk behaviors
- Data minimization and retention policies
- Anonymization options for low-risk users
- Transparent employee notification capabilities
- Compliance with employee privacy regulations
Plans, trials, and support.
How is Phalanxia priced?
Pricing is based on the number of monitored users and selected features. We offer flexible plans for organizations of all sizes:
- Starter: for small teams (up to 500 users)
- Professional: for growing companies (500–5,000 users)
- Enterprise: for large organizations (5,000+ users)
Contact us for a customized quote based on your specific needs.
Do you offer a free trial?
We offer a 30-day proof of concept (POC) for qualified organizations. During the POC you will:
- Connect your existing data sources
- See real threats in your environment
- Experience the AI investigation agents firsthand
- Work with our team to tune and optimize
Contact us to schedule a demo and discuss POC eligibility.
What kind of support do you provide?
All customers receive comprehensive support:
- 24/7 technical support for critical issues
- Dedicated customer success manager
- Regular platform updates and new features
- Training and onboarding assistance
- Access to our security research team
- Community forum and knowledge base
Enterprise customers receive priority support and custom SLAs.
Still have questions?
Talk to us.
Schedule a 15-minute call with our team. No commitment required.