Sourcefire Turns Failed Deal Into an Opportunity

By Dina ElBoghdady
Washington Post Staff Writer
Tuesday, May 30, 2006

Network security firm Sourcefire Inc. enthusiastically agreed to sell itself for $225 million in October, watched the deal crumble in March, then immediately began searching for new investors -- and found them.

Not many companies bounce back after an attention-grabbing deal fails. But Columbia-based Sourcefire has secured $20 million in late-stage funding, announced its first-ever cash-flow positive quarter and started preparing to go public since its proposed sale to Check Point Software Technologies Ltd. fell through.

Check Point, of Ramat Gan, Israel, and Sourcefire agreed to withdraw the deal after a federal panel, the Committee on Foreign Investment in the United States, expressed concerns about the transaction's national security implications. Sourcefire makes software that protects against hackers and sells it to U.S. intelligence agencies and some of the country's largest companies, such as Lockheed Martin Corp. The companies and the federal panel declined to discuss details of the investigation or why the deal was scuttled.

While the deal's collapse was disappointing, it may turn out to be fortuitous, said Wayne Jackson, Sourcefire's chief executive. As the investigation into the sale dragged on, Sourcefire's revenue kept increasing, and presumably so did its value.

"By the end of it, we felt we were leaving quite a bit of money on the table," said Jackson, who joined Sourcefire in 2002, about two years after selling his firm Riverbed Technologies Inc. to Aether Systems Inc. for $1 billion. "The company's value changed quite a bit during that time, and we started to see a lot of additional potential in the company as a stand-alone entity."

Sourcefire does not disclose its revenue or income, except to say that the company is profitable and that its sales in 2005 rose 68 percent from the previous year. Analysts estimate that the company had $35 million in revenue in 2005 and that its list of customers keeps growing.

For all those reasons, Meritech Capital Partners of Palo Alto, Calif., led the most recent round of financing, which injected the largest one-time infusion of capital into Sourcefire since it was founded in 2001.

"We've looked at dozens of security companies out there, and this is one of two or three that we've decided to invest in," said Mike Gordon, Meritech's managing director. "In this sector, it's very hard to get beyond a few initial customers and develop momentum, and Sourcefire has developed that momentum."

The company has raised $53.7 million and still has about half of that in cash, Jackson said.

Sourcefire is the creation of Martin Roesch, who invented the coding program Snort in 1998 in his home in Eldersburg, Md., while juggling a day job as a software engineer. Roesch posted Snort, which "sniffs" packets of data to detect signs of network intrusion, on the Internet.

Snort is an open-source program, meaning anyone can download it free, modify it, copy it or resell it.

While allowing anyone to inspect and manipulate network security software may sound counterintuitive, it's not, said Scott Crawford, a senior analyst at Enterprise Management Associates, an information-industry research firm in Boulder, Colo.

CONTINUED     1        >

© 2006 The Washington Post Company