By Kasey Cross, Director, Next-Gen SIEM & Log Management
As organizations grow more complex and data sources proliferate, teams spend more time setting up, managing and extracting value from their SIEMs rather than focusing on breach prevention.
The future of security demands next-gen SIEM technology built for scale and speed. Today we are announcing AI and workflow automation breakthroughs, new defenses to detect and stop threats, and advancements to aid the migration from legacy SIEM to Falcon Next-Gen SIEM.
New CrowdStrike Falcon® Fusion SOAR enhancements empower teams to quickly stop attacks by automating nearly any task. Featuring a modern user experience and a new content library with an expanding set of prebuilt workflows and 300+ actions — including 200 new third-party actions — Falcon Fusion SOAR provides unmatched automation, orchestration and response capabilities to CrowdStrike customers at no extra cost.
To outsmart today’s adversaries, organizations need full threat visibility and accurate detections. Detection Posture Management maps active detection rules to MITRE ATT&CK® techniques to provide a clear view of detection coverage. Teams can use this to evaluate detection capabilities across data sources, including Falcon and third-party data, all in one place.
Falcon Next-Gen SIEM simplifies collecting and processing data from any source, even if a prebuilt parser doesn’t exist, with our new AI-generated parsers. By analyzing sample logs with multiple large language models, Falcon Next-Gen SIEM can classify log structure and contents to build parsers, saving hours of busywork. Users can review and update AI-generated parsers with a flexible parser editor.
Read our deep-dive blog to learn more about the new capabilities in Falcon Next-Gen SIEM.