HomeVulnerabilityHunters broadcasts full adoption of OCSF and introduces OCSF-native search

Hunters broadcasts full adoption of OCSF and introduces OCSF-native search

RSA Convention, San Francisco, Might 7, 2024 – Hunters, the pioneer in fashionable SOC platforms, immediately introduced its full adoption of the Open Cybersecurity Schema Framework (OCSF), coupled with the launch of groundbreaking OCSF-native Search functionality. This strategic development underscores Hunters’ dedication to standardizing and enhancing cybersecurity operations by open, built-in information sharing frameworks.

Uri Might, CEO of Hunters, defined the strategic significance of this transfer, stating, “Adopting OCSF as our major information mannequin represents a transformative step in our journey to raise cybersecurity operations. Alongside this, our new superior OCSF-native search performance is about to rework how security information is searched and analyzed, providing unprecedented effectivity and precision.”

Democratizing Safety Operations with OCSF

The adoption of OCSF gives a unified, standardized language throughout cybersecurity instruments and platforms, simplifying information integration and evaluation workflows. The adoption fosters frictionless interoperability and permits enhanced collaboration amongst cybersecurity professionals, selling flexibility and innovation by eliminating constraints imposed by proprietary information codecs.

“Adopting OCSF is not going to solely improve our AI-driven security options, but additionally allow seamless information integration throughout huge and numerous datasets, dramatically enhancing the pace and accuracy of menace detection and response,” added Might.

A few of the advantages of adopting OCSF embrace:

  • Streamlined Operations and Enhanced Collaboration – practitioners use frequent security language, selling environment friendly sharing of insights and finest practices, bolstering collective protection methods.
  • Breaking Vendor Lock-in and Data Silos – Organizations are usually not constrained by proprietary information codecs from particular distributors.
  • Revolutionizing Risk Searching and Investigation – By shifting from logs to context-aware occasions and objects, OCSF permits multi-stage assault evaluation and context-rich menace searching.
  • Accelerating AI and Gen-AI in Safety – Standardized information schema accelerates the event of AI-driven security options.
See also  8 issues that needs to be in an organization BEC coverage doc

OCSF-native Search Performance: A New Period in Cybersecurity Analytics

Hunters is thrilled to launch their revolutionary OCSF-native search performance, designed particularly for SOC analysts and menace hunters. This modern expertise addresses the complexities of “question engineering” by leveraging a common information schema—OCSF—to streamline the search course of throughout numerous information codecs and environments. The brand new search capabilities not solely reduces the frustration and errors related to conventional question syntax but additionally enhances each common and specialised investigation capabilities, remodeling how security groups work together with information and considerably accelerating their operations.

OCSF-Native Search is Revolutionizing Search within the following methods:

  • Occasion and Object Primarily based Looking out: A New Search Paradigm – Hunters SOC platform introduces occasion and object-based looking out, eliminating the complexities of source-specific log codecs, by enabling analysts to go looking cybersecurity occasions and objects with out the necessity for discipline normalization or navigating numerous log codecs.
  • Democratizing Data Evaluation: Equipping Analysts of All Ranges for Success – OCSF-native search simplifies the search expertise, eliminating the necessity for SQL proficiency or specialised information in instruments like Kibana or KQL. With an intuitive interface tailor-made to the OCSF mannequin, analysts of all expertise ranges can shortly turn into proficient, bypassing conventional complexities and prolonged coaching periods. 
  • Entity Investigation Curated Workflows: Investigations with a Single Click on – With this new functionality analysts can pivot instantly from Hunters alerts to Search with a single click on, routinely populating and executing queries for deep context. This eliminates the necessity for guide question constructing, facilitating a seamless investigative workflow that permits analysts to effectively discover and analyze security incidents.
  • Timeline Expertise: Enhanced Chronological Perception for Safety Evaluation – A brand new timeline-based strategy to go looking permits analysts to discover the chronological development of security occasions. This function gives insights into patterns, anomalies, and potential threats, enhancing the investigative workflow. Analysts can establish correlations, monitor menace evolution, and streamline investigations effectively.

“Our new search performance is a game-changer for each skilled and novice security practitioners,” says Yuval Itzchakov, CTO at Hunters. “It elevates SOC operations by offering Tier 1 analysts with the readability wanted for higher-level evaluation and democratizes security insights, making superior investigations accessible to extra staff members.”

See also  Cisco urges rapid software program improve after state-sponsored assault

Contributing to the Neighborhood – OCSF Mapping

Together with this new product launch, Hunters can also be proud to contribute to the cybersecurity neighborhood by sharing 100 mappings of security logs to the OCSF schema. This contribution is a part of their dedication to fostering an open and collaborative surroundings the place information sharing accelerates innovation and strengthens security postures throughout the business. 

The complete adoption of OCSF and the launch of our OCSF-native search performance mark vital milestones in Hunters’ ongoing mission to innovate and automate cybersecurity analytics and operations. By embracing open requirements and offering highly effective, intuitive search capabilities, they aren’t solely advancing our platform but additionally contributing to a extra interconnected, environment friendly, and efficient cybersecurity ecosystem.

To be taught extra, go to us at RSAC Sales space #4317, Moscone North, or contact us on www.hunters.security 

Ada Filipek
Hunters
ada.filipek@hunters.ai
7733150814

- Advertisment -spot_img
RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular