Palo Alto Networks Unveils Its Autonomous Security Platform, Cortex XSIAM

Palo Alto Networks (NASDAQ: PANW) has launched Cortex XSIAM, an AI-driven platform that would have the potential to transform the way security businesses deploy data, analytics, and automation.

Photo Nikesh Arora, CEO and chairman at Palo Alto Networks
“We have to radically reimagine how we run cybersecurity using AI, so that an enterprise is able to respond to all attacks in real time, not days, not weeks, not months,” said Nikesh Arora, CEO and chairman at Palo Alto Networks.

Extended Security Intelligence & Automation Management (XSIAM) transforms infrastructure telemetry into an intelligent data base that can power best-in-class artificial intelligence and speed up threat response.

Cortex XSIAM is a self-contained security platform that aims to challenge the multibillion-dollar SIEM market by providing a contemporary alternative that can keep up with today’s threat landscape.

“Organizations are still taking hours, or even days or months, to remediate threats – those are hours and days we no longer have given the speed and sophistication of attacks that are now commonplace. The SIEM space has been frozen and still relies heavily on human-driven workflows,” said Nikesh Arora, CEO and chairman at Palo Alto Networks. “This is not an area where we need an evolutionary approach. This is an area where we need a revolutionary approach. We have to radically reimagine how we run cybersecurity using AI, so that an enterprise is able to respond to all attacks in real time, not days, not weeks, not months.”

SIEM

For many years, the SIEM category (security information and event management) has supported security operations as a tool to gather and analyze alarms and logs, resulting in incremental security improvements. As a result, security operations teams continued to tack on additional solutions that promised to tackle specific issues, resulting in a disjointed and inefficient security architecture, according to Palo Alto Networks. Given how quickly processing and data storage have increased, it would be critical to rethink how we can give real-time security that can keep up with ubiquitous, AI-powered assaults.

Palo Alto claims its Coretex XSIAM solution to offer a ground-breaking approach that collects granular data – not just logs and alerts – to drive machine learning for natively autonomous response actions like alert cross-correlation, detection of highly sophisticated, emerging threats, and automated remediation based on native threat intelligence and attack surface.

Specifically, Cortex XSIAM will alter security operations by allowing enterprises to:

  • Build an intelligent data foundation while reducing costs – Cortex XSIAM can natively ingest, standardize, and integrate granular data throughout the security infrastructure at almost half the list price of conventional security systems.
  • Respond in minutes rather than days – Cortex XSIAM detects emerging threats across the entire security infrastructure, automates the correlation of alerts and data into incidents, and uses a self-learning recommendation engine to determine response next-steps by providing multiple layers of AI-driven analytics built on the data foundation.
  • Proactively outpace threats – Through native attack surface management, Cortex XSIAM will allow continuous vulnerability identification and automate response based on integrated threat intelligence from tens of thousands of Palo Alto Networks clients.

Palo Alto Networks’ Cortex XSIAM solution is currently available to a select group of clients, with wider availability planned later this year.