Exabeam partners with Google Cloud on new Generative AI features for improving security operations

Exabeam, a global cybersecurity pioneer that created New-Scale SIEM™ for advancing security operations, and a 2023 Google Cloud Technology Partner of the Year for Security - Analytics announced it is expanding its partnership with Google Cloud in the development of generative artificial intelligence (AI) models in its cloud-native New-Scale SIEM product portfolio.

As a Google Cloud partner, the collaborative development process on Google Cloud generative AI products will accelerate the design of AI-based security product enhancements for Exabeam.

Generative AI advancements

“We chose to build the Exabeam Security Operations Platform on Google Cloud, not only for its hyperscale and speed but for its ability to support the type of technically advanced security products we build at Exabeam. Google Cloud’s current and future innovations in AI are the perfect complement to our security market-focused AI capabilities,” said Adam Geller, CEO, of Exabeam. 

“We look forward to unveiling the generative AI advancements in New-Scale SIEM that are underway with Google Cloud to modernise security operations in new and previously unimaginable ways.” 

User and entity behaviour analytics (UEBA)

Exabeam was one of the first to use AI to increase the accuracy and speed of threat detection

Exabeam developed its user and entity behaviour analytics (UEBA) by leveraging machine learning (ML), one of the earliest applications of AI in the security information and event management (SIEM) and security markets.

Exabeam was one of the first to use AI to increase the accuracy and speed of threat detection and also automate investigations. 

Machine learning

To counteract alert fatigue faced by security analysts industrywide, Exabeam leveraged ML early to cluster, add context to, and reduce the number of alerts with notable events or users to help improve security team productivity. 

Exabeam’s ML-based Smart TimelinesTM are pre-built timelines designed to automatically reconstruct the events underlying a security incident.

Streamline cybersecurity reports

“We're proud that Exabeam has tapped Google Cloud's generative AI capabilities to improve its security products,” said Vineet Bhan, Global Head of Security Partnerships at Google Cloud.

“We look forward to seeing the impact this will make on businesses looking to enhance security workflows and streamline cybersecurity reports through generative AI.”

Vertex AI platform

Exabeam New-Scale SIEM is designed to allow customers to experience faster parsing and data onboarding

By tapping into Google Cloud’s Vertex AI platform, Exabeam’s AI and ML capabilities are further evolving to simplify threat detection, investigation, and response (TDIR) design and workflows for engineers, analysts, threat hunters, managers, and CISOs.

Exabeam New-Scale SIEM is designed to allow customers to experience faster parsing and data onboarding, higher fidelity detections, investigation productivity gains, and a stronger overall security posture. 

Natural language processing (NLP)

The partnership with Google Cloud will result in the use of generative AI by leveraging natural language processing (NLP) to improve search and investigations when giving cybersecurity professionals context and timelines about notable incidents.

Large language models (LLMs) will be used to further reduce the noise of false positives. 

Assistant functionality

The resulting innovative advancements are intended to streamline repetitive security operations tasks, improve TDIR accuracy, and ultimately make cybersecurity reports easier to understand for all company stakeholders.  

Embedding generative AI into New-Scale SIEM products is also intended to enable assistant functionality to expedite and simplify the investigation process by asking questions in natural language, as well as provide advanced insights and suggested next steps to less experienced security responders and analysts.