Stellar Cyber Automates SecOps with Industry First
Multi-Layer AI™ in One Platform
AI Breakthrough Slashes Threat Detection and Response Times by Orders of Magnitude to Supercharge Analysts’ Efficiency and Reduce Risks and Costs
SAN JOSE, CA – August 5, 2024 – Stellar Cyber, the open, automation-driven security operations platform powered by Open XDR, is introducing Multi-Layer AI™ in a forthcoming release of its platform. The new version of the platform incorporates four distinct AI technologies – Machine Learning (ML), Graph ML, Generative AI and Hyper Automation – all in a single platform that slashes threat detection and response times by 90% or more.
Multi-Layer AI extends Stellar Cyber’s long-time AI leadership in the cybersecurity solutions market. The company pioneered the use of AI in a SecOps platform with the debut of its Open XDR platform in 2018. With this new approach, the platform now leverages AI in multiple steps in the detection/response process to slash alert volume, prioritize threats, counsel analysts and respond automatically.
How Multi-Layer AI Improves Security
Managing torrents of data from dozens of cybersecurity tools takes a lot of time, which is why most major data breaches have taken months to discover. Successfully responding to cybersecurity attacks is about awareness combined with the ability to act on it quickly. The only way to gain awareness is by collecting data from every key point in the attack surface, such as:
The Network, using tools like firewalls, IDS and NDR
- Endpoints, using tools like EDR and EPP
- SaaS, using emails and applications like Office 365 and Google Workspace
- Clouds, using PaaS/IaaS like AWS, Azure, GCP and OCI
- Vulnerability Assessment, using tools like Tenable and Rapid7
- Identity Management systems, using tools like Active Directory, Azure AD, and Okta
Each security tool stores data in its own format. In the Stellar Cyber platform, the data is automatically normalized into a single-format data lake so it can be effectively referenced with AI-driven components.
The Stellar Cyber platform now leverages four different forms of AI to:
- Reduce the amount of data presented
- Correlate multiple threats into contextual scenarios to reduce the time analysts need to act on those scenarios
- Guide analysts about how best to address threats, further reducing response time
- Automatically stop many threats by communicating with firewalls and other systems.
Here’s how Stellar Cyber uses Multi-Layer AI to speed detection and responses:
- Detection AI – The platform’s ML-based AI (incorporating Supervised, Unsupervised, and Deep Learning ML leveraging recurrent neural networks) evaluates 10-100Tb/day of data and automatically detects common threats, eliminating 90% of manual detection. This converts terabytes of data to thousands of alerts per day.
- Correlation AI – The platform’s Graph ML technology spots correlations between two or more alert signals, weak or strong, assembling them into contextual cases that identify impacted and potentially impacted assets. This process converts thousands of alerts into hundreds of manageable cases per day, reducing analysts’ workload by 85%.
- Copilot AI – The platform’s Generative AI (Gen AI) implementation, AI Investigator, speeds complex threat analysis by providing instant responses to analysts’ questions, further reducing the number of analyst decisions to 10-100/day and cutting threat response times by up to 400%. For example, an analyst can ask, “Show all the incidents where data was exported between 12-9AM,” or “Which emails went to domains in Russia?”
- Hyper Automation AI – The platform uses ML to change the state of external systems to address known attack techniques like phishing. For example, the Stellar Cyber platform can use Hyper Automation to notify a CRM platform and stop a user from sending emails to Russia.
Stellar Cyber’s History of AI Innovation
Since its debut at RSAC in 2018, Stellar Cyber’s Open XDR platform has led the way in using AI to simplify and speed cybersecurity detection and response.
“Stellar Cyber founder and CTO Aimei Wei recognized back in 2015 that the essential cybersecurity challenge was having to manually process and interpret terabits of data per day – analysts were so buried in alerts that they couldn’t tell the real ones from the false ones, and it could take months to see and respond to the real threats,” said Steve Garrison, SVP Marketing at Stellar Cyber. “That’s why we baked AI into our SecOps platform from Day One, and why we are continuing to leverage it in all forms as we move forward.”
Supporting Customer Quotes
“Stellar Cyber is the most cost-effective way to adopt AI and XDR,” said Erwin Eimers, CISO of Sumitomo Chemical.
“The platform’s AI delivers a complete view of security events across our clients’ global infrastructure under one pane of glass,” said Todd Willoughby, Director of Security & Privacy at RSM US.
“Stellar Cyber’s AI delivers orders of magnitude faster detection and response than competitors,” said Joshua Cole, CTO & Co-Founder of Assura, Inc.
“Stellar Cyber’s platform helped us consolidate tools, and its AI makes it far easier to identify and act upon alerts,” said Jon Mayled, CISO at 5-Hour Energy.
As the originator of Open XDR and the use of AI to speed threat detection and response, Stellar Cyber now makes the next leap forward with multi-layer AI.
About Stellar Cyber
Stellar Cyber’s Automation-driven Security Operations Platform, including NG-SIEM and NDR and powered by Open XDR, delivers comprehensive, unified security without complexity, empowering lean security teams of any skill to successfully secure their environments. With Stellar Cyber’s Multi-Layer AI™, enterprises, MSSPs and MSPs reduce risk with early and precise threat identification and remediation while slashing costs, retaining investments in existing tools, and improving analyst productivity – delivering a 20X improvement in MTTD and an 8X improvement in MTTR. The company is based in Silicon Valley. For more information, contact https://stellarcyber.ai.
Contact:
Veronica Welch
VEW Media
(M) 508-789-6370
Skype: veronica.welch
WhatsApp: 508-789-6370