New-Scale Fusion is built on Google Cloud Platform (GCP), which has a 99.5% uptime service level agreement. Exabeam adds application-level resiliency and redundancy. Our global cloud operations team monitors platform health signals around the clock to detect and address issues. You can check service availability at any time through a dedicated status page.
Exabeam New-Scale SIEM
New-Scale SIEM is a cloud-native SIEM built on New-Scale Fusion. It delivers fast search, strong correlation, and centralized case management. Investigate threats faster with cloud-scale log management and a unified threat detection, investigation, and response (TDIR) workbench.
Request a Demo Read the Data SheetHIGH-PERFORMANCE SEARCH
Search Terabytes of Data In Seconds
Query TBs of security data in seconds through an investigation-ready search interface. New-Scale SIEM works for every analyst. Power users build advanced queries, and your team can run natural-language searches, create timelines, and build visualizations.
- Power searches, dashboards, and timelines with NLP.
- Use simple or advanced query options based on experience.
AI-DRIVEN AUTOMATION
Automate Workflows With AI Agents
Exabeam Nova is an intelligent agent framework that automates routine and strategic security operations tasks. It creates case summaries, classifies threats, and provides consistent insights that help your team work more efficiently.
- Reduce manual validation and documentation.
- Deliver faster, more consistent decisions.
OUTCOMES-FOCUSED SECURITY
Connect Security Work To Business Value
Outcomes Navigator translates technical data into measurable business value. It maps ingested data to security use cases and MITRE ATT&CK®, giving you insight into human and non-human entity behavior. Exabeam Nova Advisor Agent makes recommendations to strengthen your security posture.
- Benchmark your program against peers to guide investments.
- Quantify and report on compliance for common frameworks.
CENTRALIZED TDIR WORKBENCH
Unify Threat Detection, Investigation, and Response
Threat Center brings alerts, cases, detections, and watchlists into one workbench. It accelerates TDIR by automating prioritization, triage, and evidence collection so analysts can manage cases from start to finish.
- Streamline investigation workflows and reduce context switching.
- Respond faster with automated evidence gathering and guided case decisions.
PLATFORM SERVICE AND HEALTH
Monitor Platform Health and Consumption
Identify, diagnose, and address issues quickly within New-Scale Platform services. Deep operational visibility helps engineers isolate service or performance concerns, and daily consumption metrics help manage costs.
- Detect anomalies in ingestion or processing rates.
- Forecast scaling or cost needs.
SIMPLIFIED LOG COLLECTION
Add a New Data Source in Minutes
Collect data from on-premises and cloud sources at scale with prebuilt collectors that process more than two million events per second (EPS). A guided wizard helps you create, deploy, and manage custom parsers from new or existing templates.
- Start with over 7,000 prebuilt log parsers.
- Use API, agent, syslog, SIEM, or data lake transport.
COMMON INFORMATION MODEL
Standardize Data For Faster Analysis
The Common Information Model (CIM) normalizes data at ingestion to make logs easier to parse, store, and manage. The CIM speeds detection, response, visualization, and high-performance search.
- Transform raw data into organized, actionable security events.
- Standardize event definitions across all sources.
- Normalize emerging log sources for easier parsing and analysis.
THREAT INTELLIGENCE SERVICE
Improve Accuracy With Curated Threat Feeds
The Exabeam Threat Intelligence Service ingests and scores commercial and open-source threat feeds. It refreshes every 24 hours and is included at no extra cost. It uses machine learning to produce a highly accurate stream of indicators of compromise (IoCs).
- Compare intelligence to historical context to lower false positives.
- Enrich detections by linking IoCs to active cases.
- Ingest your own feeds using the STIX/TAXII Cloud Collector.
CUSTOM REPORTING AND DASHBOARDS
Build Dashboards and Reports With Natural Language
Create custom dashboards using 14 chart types and schedule compliance reports for delivery. Natural-language prompts help you build reports quickly, giving you insight into SIEM data without extra tools.
- Keep leadership informed through scheduled reports.
- Explore SIEM data with interactive dashboards.
CUSTOM DETECTION ENGINEERING
Build Correlation Rules From Search
Convert searches into detection rules in one click. Write, test, publish, and monitor up to 1,000 custom correlation rules, and assign higher criticality to rules backed by high-fidelity intelligence.
- Build rules from scratch, use a template, or save a search.
- Define events of interest and the conditions they must meet.
- Assign conditions and criticality to guide response.
FLEXIBLE AND ADAPTABLE DEPLOYMENT
Easy to Get Started
New-Scale Fusion combines the strengths of New-Scale SIEM and New-Scale Analytics in one modular platform. It brings together log management, SIEM, behavioral analytics, dynamic risk scoring, and automation to help your team detect insider threats, reduce manual work, and meet compliance goals. You can use New-Scale Fusion to replace your SIEM or augment your current system with advanced analytics and automation.
How can we help? Talk to an expert.
Contact UsFrequently Asked Questions
How does the vendor ensure availability of the SIEM solution?
Where is the solution delivered from, and where is my data stored?
New-Scale SIEM is delivered from GCP. Data is stored securely in availability centers worldwide, and new locations are added regularly. At purchase, you choose where your service is hosted from a list of available global regions. Customer data is protected and isolated.
How is my data collected and transported?
Data is transported securely to the New-Scale Platform. Methods include Exabeam Collectors, log forwarding, and API-based ingestion from SIEMs such as QRadar, Microsoft Sentinel, or Splunk. Collectors run as virtual machines on your premises behind your firewalls and use SSL to forward encrypted data. They can also collect data from public clouds like AWS, Azure, and GCP, as well as SaaS applications like Microsoft Office 365 and Salesforce.
“Using Exabeam reminded me of how surprisingly fast the platform updates. There is an almost daily improvement on desired functions, and with Exabeam, it all keeps getting better.”
-
-
Keisuke Kawakami
Infrastructure System Division | MTI Ltd.
Learn More About Exabeam
Learn about the Exabeam platform and expand your knowledge of information security with our collection of white papers, podcasts, webinars, and more.
-
Blog
Making the Switch: A Step-by-Step Guide to Migrating from On-premises to Cloud-native SIEM
- Show More
See Exabeam in Action
Request more information or request a demo of the industry’s most powerful platforms for threat detection, investigation, and response (TDIR).
Learn more:
- If self-hosted or cloud-native SIEM is right for you
- How to ingest and monitor data at cloud scale
- How monitoring and analyzing AI and automated agent behavior uncovers risky non-human activity
- How to automatically score and profile user activity
- See the complete picture using incident timelines
- Why playbooks help make the next right decision
- Support compliance mandates
Award-Winning Leaders in Security
