At Google Cloud, we’re on a mission to accelerate security outcomes for every organization.
Today, we are leveling up the analyst experience, and enabling faster security operations with our new search and investigative experience.
We are thrilled to announce the general availability of our new investigative and search experience as part of our Chronicle Security Operations suite. We are fulfilling our security-analyst first vision with a reimagined investigative experience, backed by improved search performance.
With these new innovations in Chronicle Security Operations, customers can:
Want a faster search ? Want to use enhanced filtering to drive threat hunting?
Security Challenge |
Now with Investigative workbench |
“I don’t know what to look for” |
Use our new UDM search fields and values list to filter to find actionable activity of interest |
“Difficult to write detections based on search” |
With our one-click filter-to-query conversion drive enhanced customized detections and accelerate threat hunting |
Ultimately, with this launch, we are enabling you to accelerate your threat hunting, search and response capabilities and more easily and efficiently address core SIEM workloads.
We’ve already seen tremendous success with customers leveraging curated detections in preview, and now you can too. Learn more about investigative workbench and UDM search, and how to get started with your organization here.