Cybereason has introduced its new SIEM Detection and Response (SDR) solution with Observe.
Cybereason’s SDR SaaS solution addresses issues with outdated SIEM architectures and enhances SOC effectiveness through the automated ingestion and enrichment of data across an organisation’s digital footprint.
SDR Consolidates All Security Data Into A Central Data Lake: SDR solves the problem with legacy SIEM architecture by removing the cost barrier to ingesting a wide variety of security-relevant data to gain meaningful visibility across their enterprise. SDR consolidates data from individual purpose-built siloes into one unified observability platform, streamlining detection, investigation, and response for speedy breach detection and improved business resilience.
Open Platform: Cybereason's open architecture allows organisations to ingest any structured and unstructured data to gain critical insights across all their existing enterprise IT and security stacks without getting locked into restrictive vendor platforms. This approach ensures that businesses can seamlessly integrate SDR into their existing infrastructure, maximising their return on investment and minimising disruption.
AI-Driven, Advanced Analytics: Combining observability with Cybereason’s advanced detection and response capabilities allows SecOps teams to leverage AI-driven analytics across the entire IT estate. Cybereason core technology, powered by the MalOp™ Detection Engine, allows automated triage and investigation workflows. SDR helps analysts build the full narrative of an attack from root cause through attack timeline, affected devices, users, and other identity, network, workspace and cloud assets.
This automated approach significantly reduces Mean Time to Detection (MTTD) and Cybereason’s Unified Portal enables faster response, including guided remediation (MTTR) to tackle complex and sophisticated cyber attacks.
“We are excited to launch this powerful solution. Working for months with our partners gave us the opportunity to build technology that fit the actual needs of our customers; such as exponential data growth, IT complexity and advanced generative AI threats. The new solution provides a scalable observability platform to quickly correlate threats across diverse IT platforms while reducing data cost and enabling software consolidation.” said Eric Gan, Cybereason CEO
“Cybereason recognises that Security is a data problem. Observe enables consolidation of all security event data in a single, central, data lake. This improves visibility into the security posture of an organisation and also lowers costs because of its modern cloud architecture.” said Jeremy Burton, Observe CEO
