Palo Alto Networks has unveiled the 2.0 version of its Cortex XSIAM (eXtended security intelligence and automation management) platform, which features a bring-your-own-machine learning (BYOML) framework, according to the company.
XSIAM 2.0 is generally available to Palo Alto Networks customers.
A Closer Look at the BYOML Framework
The BYOML framework provides security teams with access to the security data stored on XSIAM, Palo Alto Networks stated. It allows security teams to build their own ML models on XSIAM's data lake.
With the framework, security teams can use their own ML models in conjunction with XSIAM, Palo Alto Networks stated. That way, they can utilize ML for fraud detection, security research, data visualization and other use cases.
Palo Alto Networks Introduces XSIAM Command Center
Along with the BYOML framework, Palo Alto Networks has incorporated the XSIAM Command Center into its 2.0 release. The XSIAM Command Center provides security teams with insights into their data sources and alerts, the company noted. It enables these teams to identify and prioritize security incidents within a single platform.
Furthermore, XSIAM 2.0 features a MITRE ATT&CK Coverage Dashboard that organizations can use to evaluate their overall defense against common threat actor tactics and techniques, Palo Alto Networks indicated. It also provides AI and automation capabilities that allow organizations to automate manual tasks and receive recommendations on how to automate their security operations.
Palo Alto Networks Offers AI-Powered Zero Trust Management Solution
The XSIAM 2.0 release comes after Palo Alto Networks in November 2023 released Strata Cloud Manager, a zero trust management and operations solution that helps organizations stop network disruptions.
Organizations can use Strata Cloud Manager to use predictive analytics to anticipate network capacity bottlenecks and assess deployment health up to seven days ahead, Palo Alto Networks stated. They can also perform AI-powered analysis of network security policies and real-time compliance checks and monitor configuration and security policies across secure access service edge (SASE) solutions, hardware and software firewalls and other form factors.
Palo Alto Networks provides cybersecurity platforms and services that are backed threat intelligence and feature automation capabilities, the company indicated. MSSPs, MSPs and other technology providers can integrate these platforms and services into their portfolios by joining Palo Alto Networks' NextWave Partner Community.