Palo Alto Networks unveiled Cortex XSIAM 2.0, which includes a new bring-your-own machine learning (BYOML) framework upgrading the capability of the AI-driven security operations platform and enabling users to add their custom AI models.
XSIAM capabilities
XSIAM offers AI models with security analytics and protection against threats. It enables users to customize and create their own ML models through the BYOML framework. This allows security teams to create and integrate their own ML models for fraud detection, security research, and sophisticated data visualisation.
Through increased visibility and threat prioritisation, the XSIAM Command Center allows security teams to monitor security operations with a comprehensive view of data sources and alerts. With the new MITRE ATT&CK Coverage Dashboard, overall defense against threats can be gauged.
Gonen Fink, senior vice president, of Cortex products, at Palo Alto Networks, said “effective security operations are a major challenge for companies all worldwide. The speed at which attackers are moving, coupled with new regulatory requirements like the SEC Mandate requiring public companies to disclose material cybersecurity incidents within four days of discovery, make it impossible to handle cyber threats with traditional manual approaches. Using artificial intelligence and automation, XSIAM 2.0 closes this gap by addressing operational complexity, stopping threats at scale, and speeding up incident remediation.”
“As a solution built from the ground up with lessons learned from a suite of leading security products, XSIAM delivers a comprehensive autonomous SOC solution that scores high on a wide range of key criteria," Andrew Green, research analyst, GigaOm, said.
