Palo Alto Networks Unveils Machine Learning Framework


Palo Alto Networks has unveiled the 2.0 version of its Cortex XSIAM (eXtended security intelligence and automation management) platform, which features a bring-your-own-machine learning (BYOML) framework, according to the company.

XSIAM 2.0 is generally available to Palo Alto Networks customers.

A Closer Look at the BYOML Framework

The BYOML framework provides security teams with access to the security data stored on XSIAM, Palo Alto Networks stated. It allows security teams to build their own ML models on XSIAM's data lake.

With the framework, security teams can use their own ML models in conjunction with XSIAM, Palo Alto Networks stated. That way, they can utilize ML for fraud detection, security research, data visualization and other use cases.

Palo Alto Networks Introduces XSIAM Command Center

Along with the BYOML framework, Palo Alto Networks has incorporated the XSIAM Command Center into its 2.0 release. The XSIAM Command Center provides security teams with insights into their data sources and alerts, the company noted. It enables these teams to identify and prioritize security incidents within a single platform.

Furthermore, XSIAM 2.0 features a MITRE ATT&CK Coverage Dashboard that organizations can use to evaluate their overall defense against common threat actor tactics and techniques, Palo Alto Networks indicated. It also provides AI and automation capabilities that allow organizations to automate manual tasks and receive recommendations on how to automate their security operations.

Palo Alto Networks Offers AI-Powered Zero Trust Management Solution

The XSIAM 2.0 release comes after Palo Alto Networks in November 2023 released Strata Cloud Manager, a zero trust management and operations solution that helps organizations stop network disruptions.

Organizations can use Strata Cloud Manager to use predictive analytics to anticipate network capacity bottlenecks and assess deployment health up to seven days ahead, Palo Alto Networks stated. They can also perform AI-powered analysis of network security policies and real-time compliance checks and monitor configuration and security policies across secure access service edge (SASE) solutions, hardware and software firewalls and other form factors.

Palo Alto Networks provides cybersecurity platforms and services that are backed threat intelligence and feature automation capabilities, the company indicated. MSSPs, MSPs and other technology providers can integrate these platforms and services into their portfolios by joining Palo Alto Networks' NextWave Partner Community.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.