Search form

Upcoming Webinars

Delivering ROI on AI: How AI transforms customer support efficiency
January 13, 2025
Boost Application Performance with Elastic APM
January 14, 2025
Winter Edition: Getting the most out of Elastic Observability & new features
January 22, 2025
Observability Interactive Session
January 23, 2025

On-Demand Webinars

This Holiday Season, Make It DAM...Different
Cloudinary Ushers in a New DAM Era
Turn Your High-Volume CDN Log Analytics into Actionable Insights
The Future of IT Operations - AIOps, Observability and Beyond
Equinox levels up its observability fitness with Elastic
Observability Trends: Key Considerations for Modern Observability
Navigating Today's I&O Landscape: Leveraging Cloud, Hyper-Convergence and Observability
2024 Tech Trends: 10 Predictions for Tomorrow's IT Evolution
2024 Security Trends: How Generative AI Is Changing the Threat Landscape
Getting the Most Out of Elastic Observability & New Features
Tales from the trenches: Security leaders share insights on protecting higher education
The Impact of AIOps and GAI on Modern Observability
Maximizing Customer Lifetime Value: Transforming Ecommerce with AI-Powered Search
AI Meets Search: Powering a New Generation of Insights
Harnessing the Power of Generative AI in Retail
What's New in Application Monitoring: Maximizing Operational Efficiency with Enhanced Performance Insights
Supercharge Your IT Resources
Automate and Save Time
Building & Monitoring Lighting Fast, Cloud Native Payment Experiences
Getting the Most Out of Elastic Observability & New Features
Automox Virtual Summit 2023
Puzzled by Patching: Solve Endpoint Pains On-Demand
Perfecting the Customer & Employee Digital Experience with TMNAS
Gaining App-Centric Visibility Into Your IT Infrastructure
Preventing Outages: Monitor What Matters
Bridging Visibility Gaps in Your Multi-Cloud Infrastructure
Cloud Trends and How Observability Enables Hybrid Cloud and Operational Efficiency

All Webinars...

Analyst Reports

Gartner® Magic Quadrant™ for Digital Experience Monitoring 2024
Gartner® Magic Quadrant™ for Observability Platforms 2024

All Analyst Reports...

White Papers

Powering Big Data Next-Gen Cloud Data Platforms
Building the Cybersecurity Platforms of the Future
Reimagining Digital Asset Management for Content Operations, Marketing, and E-commerce
Harnessing the Power of Visual-First Experiences
AI is Taking "Management" Out of Digital Asset Management for IT and Product Teams
The Ultimate APM Playbook: Overcoming Roadblocks & Best Practices
Modernizing the AdTech Stack
10 best practices for mastering Azure monitoring
Key factors to consider when evaluating application monitoring tools
Cloud monitoring: A complex yet essential aspect of effective cloud management
Level up with distributed tracing: Enhancing application performance with Applications Manager
Top challenges of digitization and how network traffic analysis can help
What is APM: Understanding the Basics of Application Performance Management
What is end-user experience monitoring?
How IT leaders can drive more with less
Bandwidth throttling - A strategic approach to network bandwidth monitoring and optimization with NetFlow Analyzer
Address multi-client network traffic monitoring challenges with OpManager MSP’s new NetFlow Analyzer integration
Full-stack observability: Implementation, benefits, and ROI
Network traffic analysis for today's IT
The 2024 Observability Landscape — a survey of observability decision-makers
2024 State of IT Operations Report: Journey to Agility
OpUtils IP scanner for visibility: See everything, manage effortlessly
Digital experience monitoring in Applications Manager
How to monitor Apache web server performance metrics
How IT leaders can drive more with less
Firewall Segmentation
Startup vs. running configuration conflict: Its impact, and how to avoid it
A comprehensive guide to enhance performance and reliability in your storage systems
An IT leader's enterprise guide to drive more with less
Website monitoring in Applications Manager

All White Papers...

Elastic Accelerates SIEM Data Onboarding with Automatic Import Powered by Search AI
August 07, 2024
Share this

Elastic is accelerating the adoption of AI-driven security analytics by automating SIEM data onboarding with Automatic Import.

This new feature — the only one of its kind for a security analytics or SIEM solution — automates the development of custom data integrations. With Automatic Import, Elastic Security now adds custom data sources faster than any competing security analytics solution— from up to several days to less than ten minutes— facilitating broader visibility and easier SIEM implementation.

One of Elastic’s largest security customers recently migrated nearly 200 data sources, including many custom technologies. Customers of this scale can now save hundreds of hours of consulting time and weeks to months of implementation time.

“Automatic Import addresses one of the biggest headaches of switching SIEMs: onboarding custom data sources,” said Michelle Abraham, research director, Security and Trust at IDC. “The feature automates the development of new data integrations, reducing the cost, complexity and stress of migration.”

Automatic Import applies generative AI to expedite labor-intensive SecOps tasks, building on previous Elastic AI-driven security analytics innovations like Elastic AI Assistant, which answers security questions and guides practitioner workflows, and Attack Discovery, which automates alert triage. Elastic can mitigate the security challenges intrinsic to fast-changing environments and messy data due to the company’s ability to handle unstructured data at scale and surface relevant insights via Large Language Models and RAG.

Powered by the Elastic Search AI Platform, Automatic Import provides model-agnostic access to harness the knowledge from large language models (LLMs) and the ability to ground answers in proprietary data using retrieval augmented generation (RAG). This is made possible by the flexibility of Search AI Lake and the company’s expertise in enabling security teams to leverage data of any kind.

“Automatic Import makes building and testing custom data integrations easier, helping us quickly enhance visibility throughout our environment,” said Nate Thompson, senior manager, Cybersecurity Analytics & Automation at Dana Inc.

Elastic Security ships with 400+ prebuilt data integrations, and Automatic Import makes it practical to extend visibility beyond these to an evolving array of security-relevant technologies and applications. These integrations normalize data to Elastic Common Schema (ECS), enabling uniform analysis with dashboards, search, alerting, machine learning, and more.

“Establishing visibility across an enterprise IT environment is inherently difficult, but no matter how the attack surface changes, security teams can’t afford to fly blind. Until now, onboarding custom data has been costly and complex,” said Mike Nichols, vice president of product for security at Elastic. “Automatic Import arrives at a critical moment to address these challenges, as organizations explore replacement options for their legacy SIEM tools.”

Automatic Import is launching with support for Anthropic models via Elastic’s connector for Amazon Bedrock. It supports JSON and NDJSON-based log formats.

Automatic Import is available to all customers with an Enterprise license.

Share this

Related Links

www.elastic.co
Elastic Security at Black Hat 2024
REPORT: The 2024 Observability Landscape — a survey of observability decision-makers
WEBINAR: Observability Trends - Key Considerations for Modern Observability
BLOG: Elastic accelerates SIEM data onboarding with Automatic Import powered by Search AI

The Latest

2025 NetOps Predictions
December 18, 2024

Industry experts offer predictions on how NetOps, Network Performance Management, Network Observability and related technologies will evolve and impact business in 2025 ...

2025 Observability Predictions - Part 6
December 17, 2024

In APMdigest's 2025 Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 6 covers cloud, the edge and IT outages ...

2025 Observability Predictions - Part 5
December 16, 2024

In APMdigest's 2025 Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 5 covers user experience, Digital Experience Management (DEM) and the hybrid workforce ...

2025 Observability Predictions - Part 4
December 12, 2024

In APMdigest's 2025 Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 4 covers logs and Observability data ...

2025 Observability Predictions - Part 3
December 11, 2024

In APMdigest's 2025 Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 3 covers OpenTelemetry, DevOps and more ...

2025 Observability Predictions - Part 2
December 10, 2024

In APMdigest's 2025 Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 2 covers AI's impact on Observability, including AI Observability, AI-Powered Observability and AIOps ...

2025 Observability Predictions - Part 1
December 09, 2024

The Holiday Season means it is time for APMdigest's annual list of predictions, covering IT performance topics. Industry experts — from analysts and consultants to the top vendors — offer thoughtful, insightful, and often controversial predictions on how Observability, APM, AIOps and related technologies will evolve and impact business in 2025 ...

From Experimentation to Execution: How Generative AI is Transforming Business Priorities
December 05, 2024
Generative AI represents more than just a technological advancement; it's a transformative shift in how businesses operate. Companies are beginning to tap into its ability to enhance processes, innovate products and improve customer experiences. According to a new IDC InfoBrief sponsored by Endava, 60% of CEOs globally highlight deploying AI, including generative AI, as their top modernization priority to support digital business ambitions over the next two years ...
AI Trends Under the Radar for 2025: 5 Ways AI Will Improve Customer Experience
December 04, 2024

Technology leaders will invest in AI-driven customer experience (CX) strategies in the year ahead as they build more dynamic, relevant and meaningful connections with their target audiences ... As AI shifts the CX paradigm from reactive to proactive, tech leaders and their teams will embrace these five AI-driven strategies that will improve customer support and cybersecurity while providing smoother, more reliable service offerings ...

The Data Observability Imperative: Bridging the Gap Between Strategy and Execution
December 03, 2024

We're at a critical inflection point in the data landscape. In our recent survey of executive leaders in the data space — The State of Data Observability in 2024 — we found that while 92% of organizations now consider data reliability core to their strategy, most still struggle with fundamental visibility challenges ...