SIEM, Security Strategy, Plan, Budget, Content, Security Program Controls/Technologies

Google Cloud Introduces Chronicle Security Operations

Hi tech Cloud computing and cyber security. Digital data network protection. High-speed connection data analysis. Technology data binary code network conveying. Future technology digital background. (Hi tech Cloud computing and cyber security. Digital

Hi tech Cloud computing and cyber security. Digital data network protection. High-speed connection data analysis. Technology data binary code network conveying. Future technology digital background. (Hi tech Cloud computing and cyber security. Digital

Google Cloud has announced Google Chronicle Security Operations, a software suite designed to help cybersecurity teams detect, investigate and respond to threats. The company unveiled Chronicle Security Operations at its Google Cloud Next '22 virtual conference.

Chronicle Security Operations combines Chronicle's security information and event management (SIEM) technology with the security orchestration, automation and response (SOAR) solutions from Siemplify (which Google Cloud acquired in January 2022) and threat intelligence from Google Cloud, according to a prepared statement.

A Closer Look Chronicle Security Operations

Key features of Chronicle Security Operations include:

  • Single display that shows security data from multiple sources
  • Pre-packaged response playbooks for Google Cloud-based alerts
  • Investigative pivots that allow security analysts to switch between alerts and entities across Chronicle SIEM detections and Chronicle SOAR modules

Chronicle Security Operations is now available in preview mode. Also, Chronicle Security Operations will utilize Mandiant incident and exposure management and threat intelligence capabilities in the future. Google Cloud completed its acquisition of Mandiant in September 2022.

Google Cloud Revamps Its Security Operations

Along with introducing Chronicle Security Operations, Google Cloud has announced the following changes across its security operations:

  • All security operations software falling under the Chronicle brand
  • The Siemplify brand replaced with Chronicle SOAR
  • The security analytics capabilities of Chronicle Security Operations referred to as Chronicle SIEM

In addition to acquiring Mandiant and Siemplify, Google Cloud has made several moves to extend its cybersecurity market reach in 2022, including:

Google Cloud looks poised to make additional moves in the cybersecurity market. It also continues to explore cybersecurity partnerships.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.

Related