Securonix Unified Defense SIEM

Securonix unveiled a new SIEM platform that represents “the next wave of the journey that we have in our sim platform,” Securonix CEO Nayaki Nayyar told CRN. Securonix’s Unified Defense SIEM works with data feeds from Snowflake’s data lake, with the aim of better accommodating the massive volumes of security-relevant data that modern enterprises generate through a cloud-native approach. The platform can leverage 365 days worth of “hot” searchable data from the Snowflake Data Cloud, “which no other vendor does,” Nayyar said.

Doing so provides enhanced visibility into potential threats, and also offers a single-tier storage model that can support large-scale searches while eliminating many of the data management issues associated with a standard tiered-storage model, the company said.

Other key capabilities include Threat Content-as-a-Service, which features up-to-date content about the latest threats curated by Securonix, as well as a Threat Content Analyzer capability for helping to understand gaps in threat detection. The Unified Defense SIEM also enables proactive cyberdefense through capabilities such as Autonomous Threat Sweeper, which Securonix called the first product to retroactively look for indicators of compromise as well as adversary tactics, techniques and procedures, according to the company.