Utilizes Dynatrace’s Davis AI for Instant Threat Detection and Response
Dynatrace launches Security Analytics, enhancing hybrid and multicloud defense. Powered by Davis AI, it offers precise insights for threat prioritization and investigation. Planned generative AI addition and AutomationEngine integration further fortify proactive cybersecurity.
Security analysts often lose productivity due to disjointed tools and processes that require considerable human intervention. This approach can result in alerts going uninvestigated for months or years, posing significant risks to their organizations. Many teams rely on traditional Security Information and Event Management, or SIEM solutions, that monitor log data to find IOCs. This data lacks crucial context, such as the underlying cloud infrastructure and application topology, which can help narrow the scope of an investigation. Missing this context makes it difficult to use SIEM solutions to accelerate an investigation or identify and defend against cyber threats.
Security information and event management (SIEM) capabilities alone are no longer sufficient for security operations teams.
Allie Mellen, Senior Analyst at Forrester Research
Allie Mellen, Senior Analyst at Forrester Research, said, “Security information and event management (SIEM) capabilities alone are no longer sufficient for security operations teams. Today’s security analytics platforms combine features to enable analytics, investigation, automation, threat hunting, dashboards, and reporting to help security analysts be more effective.”
Dynatrace Security Analytics addresses these needs by fueling the answers and automation it delivers with logs, metrics, traces, and topology while keeping data context intact. This enables teams to identify and investigate threats that may be impossible to pinpoint from logs alone. Furthermore, Security Analytics adds to other Dynatrace application security capabilities. These include:
- Runtime vulnerability analytics, which provides real-time detection and prioritization of vulnerabilities that have escaped into production environments.
- Runtime application protection, which detects and blocks common application attacks, like SQL injection, command injection, and JNDI attacks.
“In today’s rapidly evolving threat landscape, organizations face an unprecedented risk of cyberattacks that can wreak havoc on their operations and customers’ trust. With Dynatrace Security Analytics, analysts can quickly investigate and verify what happened and leverage observability and security data in full context to analyze and take proactive action to strengthen defenses. Combining these new security analytics with our platform’s other application security capabilities enables our customers to successfully deliver digital transformation with the confidence that their hybrid and multicloud environments are well protected,” said Steve Tack, SVP of Product Management at Dynatrace.
