What’s New in Exabeam Product Development — February 2024
- Mar 04, 2024
- Jeannie Warner
- 3 minutes to read
Table of Contents
This month welcomes one of the most significant releases Exabeam has offered to date. In February, we rolled out Threat Center — a unified workbench for threat detection, investigation, and response (TDIR), Exabeam Copilot — a cybersecurity virtual assistant, Automation Management, and Microsoft Sentinel integration, as well as a slew of major improvements for managing dashboards and dashboard visualizations.
Nothing gets us more excited than delivering exceptional value for our customers. With these new features, you will experience improvements right away, from accelerated investigations and reduced alert fatigue to improved security communications.
Please join us on March 12 at 8 a.m. PDT for an in-depth webinar that expands on the details of the release. We’ll explore each key feature, offering detailed insights and live demonstrations.
Threat Center: a unified workbench for TDIR
Powered by the AI-driven Exabeam Security Operations Platform, Threat Center simplifies security analyst workflows by centralizing threat management, investigative tools, and automation. Threat Center reduces alert fatigue with prioritization, automated evidence collection, and timeline creation, providing every analyst with a uniform view of a threat. Correlating disparate alerts allows organizations to mitigate an entire threat at once, not just a portion of it. Meanwhile, Exabeam Copilot provides generative AI functionality, delivering simple threat explanations and recommended actions. Threat Center is a unified workbench for TDIR, complemented by AI to uplevel skills and automate tasks for more focused and consistent investigation and response.
Exabeam Copilot: A gen AI virtual assistant for cybersecurity
Exabeam Copilot revolutionizes the Exabeam Security Operations Platform with a generative AI experience, empowering security teams with powerful productivity and insights. Through natural language processing (NLP), security analysts and engineers can effortlessly create complex search queries in almost any language, bypassing the need for advanced programming knowledge. This generative AI capability accelerates the training of security analysts, facilitates risk communication with detailed threat explanations, and deepens threat understanding through a security-centric large language model (LLM) powered by Google’s Sec-PaLM 2 and VertexAI. Exabeam Copilot uplevels security expertise for faster, more precise TDIR.
Automation Management
Automation Management combines security orchestration, automation, and response (SOAR) with pre-built playbooks and a no-code playbook editor to document processes, standardize response efforts, and decrease the time needed to resolve security incidents. With easy-to-configure workflows, security teams can quickly address common threats and routine tasks by automating repetitive processes, reducing the amount of time an analyst spends detecting, investigating, and responding to threats.
Automation Management also helps orchestrate across security tools. Breakdown data silos by folding together multiple security products. Build use cases for your organization’s unique needs and enable a more efficient response with less risk of human error.
Easily augment Microsoft Sentinel with advanced TDIR capabilities
Modern security landscapes demand not just log data collection, but meaningful insights extracted from massive amounts of log data. While Microsoft Sentinel security information and event management (SIEM) excels at log aggregation and basic analysis, security teams often require additional layers of intelligence to detect sophisticated threats and achieve faster incident response. Exabeam user and entity behavior analytics (UEBA) andTDIR capabilities are powerful tools to augment Sentinel, providing unmatched value and addressing critical customer challenges.
Dashboard visualization library and dashboard management improvements
In February we introduced a dashboard visualization library where reusable visualizations can be created, stored, and accessed for use across multiple dashboards. You can now create visualizations either within a dashboard or independently. Visualizations in the library can be edited, duplicated, published, added to existing dashboards, and deleted. You can also add visualizations to the library after you’ve created them in a dashboard.
For a complete list and description of the Exabeam February release features, please visit Exabeam Security Operations Platform Release Notes.
Stay up to date with Exabeam Community
Dig into the new release in the Exabeam Community. Engage in live ExaExpert Q&A sessions every other week, or join technical discussions at your convenience. Your curiosity and questions are always welcome.
Jeannie Warner
Director, Product Marketing | Exabeam | Jeannie Warner, CISSP, is the Director of Product Marketing at Exabeam. Jeannie is an information security professional with over twenty years in infrastructure operations/security starting her career in the trenches working in various Unix help desk and network operations centers. She started in Security Operations for IBM MSS and quickly rose through the ranks to technical product and security program manager for a variety of software companies such as Symantec, Fortinet, and Synopsis (formerly WhiteHat) Security. She served as the Global SOC Manager for Dimension Data, building out their multi-SOC “follow the sun” approach to security. Jeannie was trained in computer forensics and practices, and plays a lot of ice hockey.
More posts by Jeannie WarnerLearn More About Exabeam
Learn about the Exabeam platform and expand your knowledge of information security with our collection of white papers, podcasts, webinars, and more.
