Cortex XSIAM 2.0 Unleashes Customization Power with BYOML Framework for Enhanced Cybersecurity

Palo Alto Networks introduces Cortex XSIAM 2.0, featuring a Bring-Your-Own-Machine-Learning framework for enhanced security customization.

20 November 2023 – Palo Alto Networks has unveiled Cortex XSIAM 2.0, an upgraded version of its AI-driven security operations platform. This release introduces a groundbreaking Bring-Your-Own-Machine-Learning (BYOML) framework, empowering security teams to craft and integrate their machine learning models into XSIAM, addressing the evolving threat landscape with unprecedented customization capabilities.

Palo Alto Networks, a leader in cybersecurity solutions, has been at the forefront of revolutionizing security operations. The company’s Cortex XSIAM, designed to combat the increasing speed and sophistication of cyber threats, has now evolved with the introduction of version 2.0. This advanced release not only amplifies out-of-the-box AI models but also pioneers a BYOML framework, providing security teams with the tools to create and integrate bespoke machine learning models. With over 5 petabytes of security data ingested daily and an impressive 1 exabyte stored in total, XSIAM offers a unified and robust approach to security analytics.

The BYOML framework not only extends the platform’s capabilities but also offers organizations the flexibility to tailor AI models for unique use cases, including fraud detection, security research, and advanced data visualization. This marks a significant leap forward in the convergence of Security Operations Center (SOC) capabilities, incorporating Extended Detection and Response (XDR), Security Orchestration, Automation, and Response (SOAR), Security Information and Event Management (SIEM), and more into a single, streamlined platform.

XSIAM 2.0 addresses key challenges faced by organizations today, providing increased visibility and threat prioritization. The introduction of the XSIAM Command Center offers security teams a comprehensive view of data sources and alerts, enabling efficient identification and prioritization of security incidents within a unified platform. Furthermore, the MITRE ATT&CK Coverage Dashboard allows organizations to swiftly assess their defense against a broad spectrum of threat actor tactics and techniques.

Customer success stories underline the impact of XSIAM 2.0, with notable achievements such as a 75% reduction in incidents requiring investigation for an oil and gas company, Boyne Resorts streamlining investigations with 20 additional data sources, and Imagination Technologies witnessing a remarkable 10x improvement in incident closure rates.

In recognition of its recent success, Cortex XSIAM was identified as a Leader and Outperformer in GigaOm’s 2023 Radar Report on Autonomous SOC, solidifying its position as a comprehensive autonomous SOC solution.

As organizations grapple with the ever-evolving threat landscape and regulatory requirements, Palo Alto Networks’ Cortex XSIAM 2.0 emerges as a strategic ally, closing the gap in operational complexity, scaling threat prevention, and expediting incident remediation through the power of artificial intelligence and automation.

Author: Terry KS

Share This Post On