Exabeam Security Analytics
|
For most SIEM products, UEBA and automation is an afterthought. If available at all, most offerings provide either loose integrations, first-generation UEBA, or worse yet, statistical analysis masquerading as machine learning. Exabeam Security Analytics is the only UEBA product in the market that can run on top of an existing legacy SIEM or data lake to upgrade an organization’s defenses and contend with sophisticated and credential-based attacks. Security Analytics takes in logs, and upon intake normalizes and parses them via CIM with data enrichment and threat intelligence to build events — offering over 1,800 fact-based correlation rules, including cloud infrastructure security, and over 750 behavioral model histograms that automatically baseline normal behavior of users and devices to detect, prioritize, and respond to anomalies based on risk scores. The Smart Timeline conveys the complete history of an incident, showing full event flows and activities and scores the risk associated with each event. This eliminates the writing of hundreds of queries and changes the way analysts do their jobs.
|
Key Features:
|