New-Scale SIEM is a cloud-native solution that combines fast, modern search capabilities with powerful correlation, reporting, dashboarding, and case management features. It leverages Generative AI to enhance productivity and includes cloud-scale log management. The platform offers a centralized workbench for threat detection, investigation, and response (TDIR), streamlining analyst workflows. Key features include high-performance search across terabytes of data in seconds, AI-powered NLP search, and Threat Center case management for quick incident response. It also provides service and health consumption monitoring, easy log collection, data preparation using a Common Information Model (CIM), and a Threat Intelligence Service for accurate IoC analysis. The platform supports flexible and adaptable deployment, aligning data ingestion with critical business outcomes through the Outcomes Navigator. With powerful Gen AI assistance via Exabeam Copilot, security skills are upleveled through natural language translations and automated threat explanations.

Features:

• HIGH PERFORMANCE SEARCH: Search across terabytes of data in seconds. A highlight of New-Scale SIEM is its Search — a single interface that allows analysts to search data at lightning-fast speeds. Power users can leverage a powerful advanced query language, and less experienced users can utilize Natural Language Processing (NLP) to execute searches, timelines, and create powerful visualizations.
• THREAT CENTER CASE MANAGEMENT: Quickly and easily create, respond, and close cases. A feature within the Threat Center workbench, incidents from the New-Scale Platform or third-party products are centralized for an analyst’s review. Create a case to start tracking your response or assign the case to the person responsible for responding. Easily document your response and track your progress.
• STREAMLINE ANALYST WORKFLOWS: Centralize threat detection, investigation, and response (TDIR). Threat Center unifies alerts, cases, detections and automation within a single interface. It streamlines TDIR through alert prioritization, automated evidence collection, and timeline creation ensuring a consistent view of threats.
• SERVICE AND HEALTH CONSUMPTION: Visualize platform consumption and service health. Engineers can quickly identify any issues within New-Scale Platform services, determine the root cause, and remediate issues. Deep visibility into the platform helps isolate service or performance issues faster, saving valuable time. Service and Health also lets users monitor their daily consumption to control costs and avoid overages.
• LOG COLLECTION MADE EASY: Add a new data source in minutes. Securely collect data from on-premises or cloud data sources at scale using a single interface. A wizard enables custom parser creation from new or templated log sources making it easy to develop, deploy, and manage error-free parsers. Process events at over 2 million per second (EPS) sustained.
• DATA PREPARATION AND ORGANIZATION: Ingestion powered by a Common Information Model (CIM). A Common Information Model provides the New-Scale Platform normalized, security-relevant logs that are faster and easier to parse, store, and manage. The CIM promotes rapid detection and response, visualizations and reporting, and high-performance search.
• THREAT INTELLIGENCE SERVICE: Aggregating and analyzing feeds for better accuracy. Available at no additional cost and refreshed every 24 hours, the Threat Intelligence Service ingests commercial and open-source feeds, then aggregates, scrubs, and ranks them, using machine learning algorithms to produce a highly accurate stream of IoCs.
• REPORTING AND DASHBOARD BUILDING: Build dashboards and reports using a business intelligence-type tool. Print, export, and view dashboard data with pre-built compliance reports and customize dashboards with 14 different chart types. Custom reports allow organizations to glean value from their SIEM data that is tailored to their requirements without purchasing additional tools. Leverage natural language to quickly and easily create dashboards.
• POWERFUL CORRELATION BUILDING: Build custom detections from scratch or use a template. Turn your searches into powerful threat-hunting rules in one click. Properly designed correlation rules enable you to surface a broad range of behaviors and events. Write, test, publish, and monitor up to 1,000 custom correlation rules, including defining higher criticality for those that correspond to Threat Intelligence Service-sourced activity.
• FOCUSED ON OUTCOMES: Align data ingestion with critical business outcomes. Outcomes Navigator, an application on the New-Scale Platform, helps organizations follow their unique security journeys. Rather than forcing a path, it guides you toward outcomes. As the only vendor mapping data to security outcomes and MITRE ATT&CK®, Exabeam offers insights and solutions to close any gaps.
• POWERFUL GEN AI ASSISTANCE: Uplevel security skills and knowledge with Exabeam Copilot. Accelerate learning with intuitive natural language translations of complex queries in almost any language. Sharpen threat understanding with detailed context and automated threat explanations for every case.
• FLEXIBLE AND ADAPTABLE DEPLOYMENT: Easy to Get Started. The modular, AI-driven New-Scale Security Operations Platform is delivered through three products: New-Scale Fusion, New-Scale SIEM, and New-Scale Analytics. The platform provides powerful, fully integrated log management, SIEM, UEBA, SOAR, and insider threat capabilities, plus compliance. With New-Scale, replace a SIEM or augment one with behavioral analytics and automation.