ExtraHop launched RevealX™ platform, which is designed to automate security operations center (SOC) workflows, as the need for using Artificial Intelligence (AI) increases with 38% of security leaders saying that the technology can help manage and mitigate cyber risks. The platform builds upon Smart Triage, that claims to help SOC analysts in threat detection, investigation, and response (TDIR) lifecycle with the use of AI.
AI Search Assistant
The new generative AI-powered search assistant claims to take on the role of a threat hunting companion through an AI-powered natural language search interface. Moreover, the AI Search Assistant claims to help analysts understand their attack surface and suggests relevant environment-based queries and identifies risks.
“As SOC analysts find themselves more resource-strapped than ever before, the generative AI search assistant from ExtraHop offers immediate value via simple, conversational searches that help quickly locate potential threats,” said Chris Kissel, research vice president, Security and Trust, IDC. “ExtraHop continues to build upon its proprietary AI and machine learning capabilities, and is driving an innovative approach to threat detection that helps organisations identify security issues before it’s too late.”
Smart Investigations
With machine learning architecture, Smart Investigations claims to automatically generate investigations through correlating detections. It also claims to prioritise most critical threats, accelerate investigation and response times through informed real-time network insights.
“AI is inherent to ExtraHop’s DNA, having been baked into our product since day one,” said Kanaiya Vasani, chief product officer, ExtraHop. “SOC analysts can now apply AI to automate the more mundane and time-consuming functions often bogging them down, like threat hunting, alert correlation, and triage. Recouping the time and resources often spent on these tasks, enterprises can focus on tackling critical threats to more effectively manage their cyber risk.”
