What’s New in Exabeam Product Development — February 2024 - Exabeam

What’s New in Exabeam Product Development — February 2024

March 04, 2024


Reading time
4 mins

This month welcomes one of the most significant releases Exabeam has offered to date. In February, we rolled out Threat Center (Tech Preview) — a unified workbench for threat detection, investigation, and response (TDIR), Exabeam Copilot — a cybersecurity virtual assistant, Automation Management (Tech Preview), and Microsoft Sentinel integration, as well as a slew of major improvements for managing dashboards and dashboard visualizations. 

Nothing gets us more excited than delivering exceptional value for our customers. With these new features, you will experience improvements right away, from accelerated investigations and reduced alert fatigue to improved security communications.

Please join us on March 12 at 8 a.m. PDT for an in-depth webinar that expands on the details of the release. We’ll explore each key feature, offering detailed insights and live demonstrations. 

Highlights from the release include: 

Threat Center: a unified workbench for TDIR

Powered by the AI-driven Exabeam Security Operations Platform, Threat Center simplifies security analyst workflows by centralizing threat management, investigative tools, and automation. Threat Center reduces alert fatigue with prioritization, automated evidence collection, and timeline creation, providing every analyst with a uniform view of a threat. Correlating disparate alerts allows organizations to mitigate an entire threat at once, not just a portion of it. Meanwhile, Exabeam Copilot provides generative AI functionality, delivering simple threat explanations and recommended actions. Threat Center is a unified workbench for TDIR, complemented by AI to uplevel skills and automate tasks for more focused and consistent investigation and response.

Fig 1. Threat Center with detection groupings and automated evidence collection

Exabeam Copilot: A gen AI virtual assistant for cybersecurity

Exabeam Copilot revolutionizes the Exabeam Security Operations Platform with a generative AI experience, empowering security teams with powerful productivity and insights. Through natural language processing (NLP), security analysts and engineers can effortlessly create complex search queries in almost any language, bypassing the need for advanced programming knowledge. This generative AI capability accelerates the training of security analysts, facilitates risk communication with detailed threat explanations, and deepens threat understanding through a security-centric large language model (LLM) powered by Google’s Sec-PaLM 2 and VertexAI. Exabeam Copilot uplevels security expertise for faster, more precise TDIR.

Fig 1. Exabeam Copilot plain language threat explanation, generated by AI

Automation Management

Automation Management combines security orchestration, automation, and response (SOAR) with pre-built playbooks and a no-code playbook editor to document processes, standardize response efforts, and decrease the time needed to resolve security incidents. With easy-to-configure workflows, security teams can quickly address common threats and routine tasks by automating repetitive processes, reducing the amount of time an analyst spends detecting, investigating, and responding to threats.

Automation Management also helps orchestrate across security tools. Breakdown data silos by folding together multiple security products. Build use cases for your organization’s unique needs and enable a more efficient response with less risk of human error.

Easily augment Microsoft Sentinel with advanced TDIR capabilities

Modern security landscapes demand not just log data collection, but meaningful insights extracted from massive amounts of log data. While Microsoft Sentinel security information and event management (SIEM) excels at log aggregation and basic analysis, security teams often require additional layers of intelligence to detect sophisticated threats and achieve faster incident response. Exabeam user and entity behavior analytics (UEBA) andTDIR capabilities are powerful tools to augment Sentinel, providing unmatched value and addressing critical customer challenges.

Fig 3. Simple configuration experience for Microsoft Sentinel augmentation

Dashboard visualization library and dashboard management improvements

In February we introduced a dashboard visualization library where reusable visualizations can be created, stored, and accessed for use across multiple dashboards. You can now create visualizations either within a dashboard or independently. Visualizations in the library can be edited, duplicated, published, added to existing dashboards, and deleted. You can also add visualizations to the library after you’ve created them in a dashboard.

Fig 4. New visualization library for improved dashboarding experience

For a complete list and description of the Exabeam February release features, please visit Exabeam Security Operations Platform Release Notes.

Stay up to date with Exabeam Community

Dig into the new release in the Exabeam Community. Engage in live ExaExpert Q&A sessions every other week, or join technical discussions at your convenience. Your curiosity and questions are always welcome.

Exabeam Community

Similar Posts

What’s New in Exabeam Product Development – March 2024

Take TDIR to a Whole New Level: Achieving Security Operations Excellence

Action, Remediation, and Lessons Learned: Implementing Incident Response

Recent Posts

What’s New in Exabeam Product Development – March 2024

Take TDIR to a Whole New Level: Achieving Security Operations Excellence

Generative AI is Reshaping Cybersecurity. Is Your Organization Prepared?

See a world-class SIEM solution in action

Most reported breaches involved lost or stolen credentials. How can you keep pace?

Exabeam delivers SOC teams industry-leading analytics, patented anomaly detection, and Smart Timelines to help teams pinpoint the actions that lead to exploits.

Whether you need a SIEM replacement, a legacy SIEM modernization with XDR, Exabeam offers advanced, modular, and cloud-delivered TDIR.

Get a demo today!