Gurucul Brings Generative AI Capabilities (Sme) to Next-Gen SIEM

August 11, 2023

urucul platform ingests, correlates, and normalizes all your data without the need for customization to reduce false positives. It automatically detects threats using advanced analytics and out-of-the-box threat content. By leveraging a trained machine learning engine, the platform provides context for targeted threat hunting and investigations. It applies an enterprise class risk engine for prioritizing and automating response actions. (Courtesy of Gurucul) — Gurucul's Sme AI purpose-built capability uses ChatGPT, other Large Language Models and Machine Learning techniques to securely harnesses the power of AI to combat modern threats. (Courtesy of Gurucul)

Gurucul, the 2022 Platinum ‘ASTORS’ Homeland Security Award Champion for Best Security Incident & Event Management Solution (SIEM), has launched a new generative AI capability called Sme (Subject Matter Expert) to accelerate threat detection, supercharge security investigations and automate responses.

Sme AI empowers Security Operations Center (SOC) analysts with powerful insights into a rich, correlated dataset across identity, security, network, enterprise, and cloud platforms. Sme AI will improve SOC team efficiency and help counter the ongoing challenges of limited resources and skill sets, overwhelming alert fatigue, false positives, and mis- or unprioritized alerts.

(See how you can stop chasing false positives by getting the products that do the work for you. Courtesy of Gurucul and YouTube.)

Gurucul pioneered the use of AI and ML in cybersecurity with STUDIO. This open analytics framework allows users to build advanced machine learning behavior models in-house and incorporate third-party AI frameworks and models into the platform.

Gurucul also led the way with automated threat-hunting capabilities, first announced in February 2020, which applied advanced ML algorithms to assess a wide range of behavioral attributes to identify anomalies, outliers, and indicators of compromise.

“Gurucul was founded more than a decade ago on the idea that the application of ML and AI on large data was an enabler for cybersecurity,” explains Saryu Nayyar, CEO at Gurucul.

“The recent widespread acceptance and use of Generative AI validates our continued investment and innovation in ML and AI.”

“Sme AI is purpose-built to support analysts in their day-to-day activities and help them detect, investigate and respond to threats so they can stay ahead of adversaries.”

“While attackers are using AI and manipulating common frameworks to build malware, the security community needs to invest and leverage purpose-built AI to fight this battle more effectively.”

Gurucul Sme AI will dramatically improve threat detection and response capabilities.

Gurucul Sme AI to Detect

Gurucul Sme AI provides proactive suggestions for detection and threat-hunting queries. This increases threat-hunting efficacy, reduces mean time to detection (MTTD), uncovers unknown threats and indicators, and quickly adapts to changing/dynamic/new datasets at a speed impossible for humans to manage alone.
Gurucul Sme AI creates new threat content based on recent trends and learnings across customers and industry verticals to dynamically build detection rules, models, queries, reports, and more.
Gurucul Sme AI is trained for cyber threat detection, insider threats, ITDR, identity, and access-based incidents, including account compromise, AD/LDAP attacks, etc.

Gurucul Sme AI to Investigate

Gurucul Sme AI auto-triages alerts based on historical triage patterns, investigation notes, types of detection, relevance, attack trends, etc. This helps analysts prioritize investigating the riskiest alerts, empowers users, and speeds up investigations by moving away from multiple screens, clicks, and queries and streamlining other interactions with the platform.
Gurucul Sme AI leverages contextually aware and enriched data for efficient investigations.

Gurucul Sme AI to Respond

Gurucul Sme AI easily automates key incident response activities, including creating custom reports, taking bulk actions, and multi-step workflows.
Gurucul Sme AI supports natural language-based, free-form search to simplify and accelerate typical tasks and reporting.
Gurucul Sme AI provides auto-response based on historical response actions to significantly reduce manual steps for critical alerts.
Gurucul Sme AI recommends new SOAR playbooks based on the alerts and response action trends.

Nilesh Dherange, Gurucul Chief Technology Officer

“This feature is the most recent example of how Gurucul is upholding our guiding principles of improving the user experience and fostering better collaboration,” added Nilesh Dherange, CTO at Gurucul.

“We are constantly working to improve the reliability of our Sme AI by augmenting it with traditional ML techniques, scoping down attributes, workflows, and more.”

In Las Vegas, Gurucul will showcase its Sme AI capabilities at Booth #3041 at Black Hat USA 2023 today and tomorrow (August 9-10, 2023).

The launch of Sme AI comes quickly after the launch of the Gurucul Security Analytics and Operations platform, Powered by Snowflake, that will enable customers to seamlessly run Gurucul’s Next-Gen SIEM, Open XDR, UEBA, and Identity Analytics solutions on the Snowflake Data Cloud.

The Powered by Snowflake platform allows data, services, and applications to be optimally deployed between the Snowflake Data Cloud and Gurucul’s cloud-native infrastructure.

In April 2023, Gurucul announced an extension of the capabilities of its award-winning Security Analytics and Operations Platform to help organizations cost-effectively secure their increasingly complex cloud architectures, reach deeper insights faster, and enrich enterprise-wide visibility.

The latest innovations provide industry “firsts” like 500 days of searchable data, robust purpose-built security use cases, identity-based threat detection and response (ITDR) coverage, and unified observability for any cloud environment.

Gurucul was positioned furthest to the right for completeness of vision in the 2022 Gartner Magic Quadrant for Security Information and Event Management and ranked in the top three for all SIEM use cases in the 2022 Gartner Critical Capabilities for SIEM.

Gurucul is changing the way organizations protect their most valuable assets, data, and information from insider and external threats both on-premises and in the cloud.

Gurucul’s real-time Cloud-Native Security Analytics and Operations Platform provides customers Next Generation SIEM, Open XDR, UEBA, and Identity and Access Analytics in one unified platform, combining machine learning behavior profiling with predictive risk-scoring algorithms to predict, prevent and detect breaches.

Global 1000 companies and government agencies use Gurucul technology to fight cybercrimes, IP theft, insider threat, and account compromise, as well as for log aggregation, compliance, and risk-based security orchestration and automation for real-time extended detection and response.

To learn more, visit gurucul.com.

Gurucul Takes Platinum in Fifth ‘ASTORS’ Homeland Security Awards Program

2021 ‘ASTORS’ Awards Luncheon (starting front row, left to right) SIMS Software President & CEO Michael Struttmann; TENEO Risk Advisory Executive Chairman Commissioner Bill Bratton; NEC National Security Systems President Dr. Kathleen Kiernan; TSA Administrator David Pekoske; Fortior Solutions General Counsel Katherine Cowan; NEC Corporation of America Senior Vice President & Chief Experience Officer Raffie Beroukhim; TENEO Risk Advisory Chief of Staff David Cagno; Infragard National Board Member Doug Farber, Lumina Analytics Co-Founder & Chairman Allan Martin, and AMAROK Senior Vice President Sales & Marketing Mike Dorrington.

American Security Today’s Annual ‘ASTORS’ Awards is the preeminent U.S. Homeland Security Awards Program, and now in its Eighth Year, continues to recognize industry leaders of Physical and Border Security, Cybersecurity, Emergency Preparedness – Management and Response, Law Enforcement, First Responders, as well as federal, state and municipal government agencies in the acknowledgment of their outstanding efforts to Keep our Nation Secure.

Gurucul

Best Security Incident & Event Management Solution (SIEM)

Gurucul Next-Gen SIEM
SIEM plays a major role for enterprises looking to reduce the overall security attack surface (and false positives) and resource burdens on security teams. But as attackers get more sophisticated and networks more complex, SIEM tools must evolve as well.
The conventional SIEM paradigm presents Events and Incidents identified by rules-based analytics without context. But Gurucul takes a different approach to SIEM.

Gurucul Next-Gen SIEM delivers security visibility, noise reduction, and risk-driven prioritization to automate investigations and response.

Gurucul’s Next-Gen SIEM is cloud-native, built for speed and scale, and helps to modernize security operations by delivering ultra-high-fidelity detection and automated response. It leverages over 2500 Machine Learning Models powered by data science to produce actionable risk intelligence, and doesn’t rely on signatures, rules, or patterns.
It allows organizations to identify zero-day threats in real-time and is designed to provide both contextual and situational awareness to detect and stop malicious behavior before cyber criminals or rogue insiders can do harm.
Gurucul’s Next-Gen SIEM includes a variety of key features, including a cutting-edge lightweight SaaS architecture with cloud elasticity and predictable costs, real-time threat detection, the industry’s most advanced data-science powered Machine Learning behavior analytics, and the market’s most diverse security content library.
Furthermore, its advanced and intuitive UX provides contextual investigation and intelligent timeline views, blazing fast searches, and risk-based responses. The open, flexible, and extensible platform also unifies SIEM, XDR, UEBA, SOAR, NTA, and Identity and Access Analytics with a single seamless and consolidated view. It supports an open choice of big data repositories and can be deployed flexibly on any leading big data infrastructure.

*Gurucul’s Next-Gen SIEM* allows organizations to identify zero-day threats in real-time and is designed to provide both contextual and situational awareness to detect and stop malicious behavior before cyber criminals or rogue insiders can do harm.

This protects existing IT investments, eliminates data duplication, and reduces storage fees. Customers can simply layer Gurucul’s advanced security analytics engine on top of their existing or new Hadoop, Cloudera, Hortonworks, MapR and Elastic/ELK deployments.
Finally, Gurucul’s Next-Gen SIEM is built to scale. Many agencies have over 250,000 employees. One health insurance customer uses Gurucul to analyze 8 million identities and 500 big data nodes. Another health insurer is using Gurucul to apply advanced analytics to over 15 million identities belonging to employees, partners and customers, and a large financial institution has deployed Gurucul advanced security analytics with its custom cloud big data lake on AWS to risk score access and activity, reduce access risks, and detect unknown threats.
*Gurucul is a returning ‘ASTORS’ Award Champion, having secured Wins in the 2020, 2019, 2018, and 2016 Homeland Security Awards Programs, respectively.

The 45th NYPD Police Commissioner Keechant L. Sewell was the lead Chief Negotiator and Commanding Officer for the Nassau County Police Department’s prestigious negotiation team.

AST is pleased to announce that the 45th Police Commissioner for the City of New York, Keechant L. Sewell has agreed to participate in the 2023 ‘ASTORS’ Homeland Security Awards Ceremony and Banquet Luncheon as a guest speaker.

Please join AST in Welcoming Former Commissioner Sewell to the 2023 ‘ASTORS’ Homeland Security Awards Ceremony Luncheon on Thursday, November 16, 2023 in New York City.

Go to https://americansecuritytoday.com/product/awards-luncheon/ to secure your Seat or reserve a Table and Receive a Special Early Bird Discount.

***Limited space available. There will be No On-Site registrations.

The continually evolving ‘ASTORS’ Awards Program will highlight the trail of Accomplished Women in Leadership in 2023 and the Significance and Positive Impact of Advancing Diversity and Inclusion in our Next Generation of Government and Industry Leaders. Because #MentorshipMatters.

So be on the lookout for exciting upcoming announcements of Speakers, Presenters, Book Signing Opportunities, and Attendees at the 2023 ‘ASTORS’ Awards Presentation Luncheon on Thursday, November 16, 2023 in New York City at ISC East!

(See some highlights of the 2022 ‘ASTORS’ Homeland Security Awards Ceremony and Banquet Luncheon in New York City during ISC East at the Javits Center. Courtesy of AST and YouTube.)

Nominations are currently being accepted for the 2023 ‘ASTORS’ Homeland Security Awards at https://americansecuritytoday.com/ast-awards/.

Comprehensive List of Categories Include:

Access Control/ Identification	Personal/Protective Equipment	Law Enforcement Counter Terrorism
Perimeter Barrier/ Deterrent System	Interagency Interdiction Operation	Cloud Computing/Storage Solution
Facial/IRIS Recognition	Body Worn Video Product	Cyber Security
Video Surveillance/VMS	Mobile Technology	Anti-Malware
Audio Analytics	Disaster Preparedness	ID Management
Thermal/Infrared Camera	Mass Notification System	Fire & Safety
Metal/Weapon Detection	Rescue Operations	Critical Infrastructure
License Plate Recognition	Detection Products	COVID Innovations
Workforce Management	Government Security Programs	And Many Others to Choose From!

Don’t see a Direct Hit for your Product, Agency or Organization?

Submit your category recommendation for consideration to Michael Madsen, AST Publisher, at: mmadsen@americansecuritytoday.com.

Homeland Security remains at the forefront of our national conversation as we experience an immigration crisis along our southern border and crime rates that are dramatically higher than before the Pandemic across the United States.

CBP K9 Team Zaskya Steros and TYKE, with Commissioner Bill Bratton at the 2022 'ASTORS' Awards Luncheon. — CBP K9 Team Zaskya Steros and TYKE, with Police Commissioner Bill Bratton at the 2022 ‘ASTORS’ Awards Luncheon.

These challenges have become a national priority with an influx of investments in innovative new technologies and systems.

Enter American Security Today, the #1 publication and media platform in the Government Security and Homeland Security fields, with a circulation of over 75,000 readers and many tens of thousands more who visit our AST website at www.americansecuritytoday.com each month.

The pinnacle of the Annual ‘ASTORS’ Awards Program is the Annual ‘ASTORS’ Awards Ceremony Luncheon Banquet, an exclusive, full-course plated meal event in the heart of New York City.

The 2022 exclusive sold-out ‘ASTORS’ luncheon featured representatives of law enforcement, public safety, and industry leaders who came together to honor the selfless service of those who stand on the front lines and those who stand beside them – providing the capabilities and technologies to create a safer world for generations to come.

Last year marked the 20th anniversary of the Department of Homeland Security (DHS), which came out in force to discuss comprehensive collaborations between private and public sectors that have led to the development of intelligence and technologies which serve to protect our nation.

Deputy Executive Assistant Commissioner (DEAC) Diane Sabatino, expresses her pride in the women and men of the CBP, and their families who support them.

The keynote address was provided by U.S. Customs and Border Protection (CBP) Office of Field Operations (OFO) Deputy Executive Assistant Commissioner (DEAC) Diane Sabatino, who described the changes to CBP through the tragedy of 9/11 and the relentless commitment to its mission and ongoing investment in the latest technologies and innovations to protect our borders and Homeland.

The resounding theme of the DEAC’s remarks was her pride in the women and men of the CBP and their families who support them.

Deputy Inspector Lashonda Dyce accepts a 2022 'ASTORS' Award on behalf of the NYPD TARU Unit for Excellence in Public Safety. — Deputy Inspector Lashonda Dyce accepts a 2022 ‘ASTORS’ Award on behalf of the NYPD TARU Unit for Excellence in Public Safety, joined at left by Commissioner Bill Bratton, and at right Chief of Department Kenneth Corey.

AST was also joined by Legendary Police Commissioner William Bratton, who spoke about his love for the City of New York, the Profession of law enforcement to which he has dedicated his life, and for which he continues to drive thought leadership and innovation.

New York City Police Department (NYPD) Chief of Department Kenneth Corey, came out to address Luncheon attendees and shared some of his experiences and the changes in policing he’s witnessed over his more than three decades of service.

Katherine Schweit, an attorney, security consultant, and retired FBI special agent, and former head of the FBI’s active shooter program. — Katherine Schweit, attorney, security consultant, retired FBI special agent, and former head of the FBI’s active shooter program.

FDNY Chief Joseph Jardin honored the men and women of the FDNY, not only those who currently serve but all of those who have selflessly served, with special recognition of those lost on 9/11.

Chief Jardin spoke about the continuing health battle of many following 9/11 with cancer and respiratory disease, yet now knowing the full consequences, would not have made a different decision to respond.

As Chief Jardin noted, mission-driven service is the lifeblood of every firefighter, volunteer, and sworn member, and has been so throughout the history of the Fire Service.

Former head of the FBI’s active shooter program, Katherine Schweit joined AST to sign complimentary copies of her book, ‘STOP THE KILLING: How to End the Mass Shooting Crisis,’thanks to the generosity of our 2022 ‘ASTORS’ Awards Sponsors.

The 2023 ‘ASTORS’ Awards Program is Proudly Sponsored by Platinum Event Sponsor: NEC National Security Systems (NSS)

And Our RETURNING Premier Sponsors:

ATI Systems, Automatic Systems of America,

IPVideo Corporation, Rajant Corporation, RX Global, SIMS Software, and American Security Today!

In 2022, AST was pleased to welcome the esteemed New York City Fire Department(FDNY); the New York City Police Department(NYPD); and the NYC Hospital Police, as well as Executive Management from the U.S. Cybersecurity and Infrastructure Security Agency(CISA), and many other DHS agencies, Federal law enforcement agencies, and private/public partnerships such as the National Association of Women Law Enforcement Executives (NAWLEE), the 30×30 Initiative, a coalition of professionals advancing the representation of women in policing; and Operation Lifesaver, Inc. (OLI) (rail safety advocates).

The FDNY was honored in the 2022 'ASTORS' Awards Program for Excellence in Public Safety and Critical Incident Response. — The FDNY was honored in the 2022 ‘ASTORS’ Awards Program for Excellence in Public Safety and Critical Incident Response, accepted by FDNY Chief Joseph Jardin and Deputy Assistant Chief Frank Leeb.

The prestigious Annual ‘ASTORS’ Homeland Security Awards Program highlights the most cutting-edge and forward-thinking security solutions coming onto the market today, to ensure our readers have the information they need to stay ahead of the competition and keep our Nation safe – one facility, street, and city at a time.

Katherine Schweit, former head of the FBI’s active shooter program speaks with 'ASTORS' Attendees and autographs copies of 'STOP THE KILLING: How to End the Mass Shooting Crisis.' — Katherine Schweit, former head of the FBI’s active shooter program speaks with ‘ASTORS’ Attendees and autographs copies of ‘STOP THE KILLING: How to End the Mass Shooting Crisis.’

In 2022 over 240 distinguished guests representing Federal, State, and Local Governments and Industry Leading Corporate Firms gathered from across North America, Europe, and the Middle East to be honored among their peers in their respective fields.

Each year, to keep our communities safe and secure, security dealers, installers, integrators, and consultants, along with corporate, government, and law enforcement/first responder practitioners, convene in New York City to network, learn and evaluate the latest technologies and solutions from premier exhibiting brands at ISC East, the Natural Disaster & Emergency Management Expo (NDEM EXPO), and the ASIS NYC Expo.

ISC East is the Northeast’s leading security & public safety event, hosted in collaboration with sponsor Security Industry Association (SIA) and in partnership with ASIS NYC.

U.S. Customs and Border Protection (CBP) was Honored at the 2022 ‘ASTORS’ Homeland Security Awards Ceremony and Banquet Luncheon in New York City, featuring OFO DEAC Diane Sabatino and Director of Field Operations NY Area Frank Russo (at center).

Corporate firms, the majority of which return year to year to build upon their Legacy of Wins, include:

Advanced Detection Technologies, AMAROK, ATI Systems, Axis Communications, Automatic Systems, BriefCam, Canon U.S.A., Cellbusters, CornellCookson, CyberArk, Fortior Solutions, guardDog.ai, Hanwha Techwin of America, High Rise Escape Systems, IPVideo Corporation, Konica Minolta Business Solutions, NEC National Security Systems, NICE Public Safety, OnSolve, PureTech Systems, Quantum Corporation, Rave Mobile Safety, Regroup Mass Notification, Robotic Assistance Devices, Rajant Corporation, SafeLogic, Select Engineering Services LLC, Singlewire Software, SolarWinds Worldwide, Teledyne FLIR, Valor Systems, and West Virginia American Access Control Systems, *just to name a few!***

Why American Security Today?

The traditional security marketplace has long been covered by a host of publications putting forward the old-school basics to what is Today – a fast-changing security landscape.

American Security Today is uniquely focused on the broader Homeland Security & Public Safety marketplace with over 75,000 readers at the Federal, State, and local levels of government and firms allied to the government.

American Security Today brings forward a fresh, compelling look and read with our customized digital publications that hold readers’ eyes throughout the story with cutting-edge editorial that provides solutions to their challenges.

Harness the Power of the Web – with our 100% Mobile Friendly Publications

AST puts forward the Largest and Most Qualified Circulation in Government with Over 75,000 readers on the Federal, State and Local levels.

AST Digital Publications are distributed to over 75,000 qualified government and homeland security professionals in federal, state, local, and private security sectors.

‘PROTECTING OUR NATION, ONE CITY AT A TIME’

AST Reaches both Private & Public Experts, which is essential to meeting these new challenges.

Today’s new generation of public safety and security experts need real-time knowledge to deal with domestic and international terrorism, lone wolf attacks, unprecedented urban violence, shifts in society, culture, and media bias – making it increasingly difficult for Homeland Security, Law Enforcement, First Responders, Military and Private Security Professionals to implement coordinated security measures to ensure national security and improve public safety.

These experts are from Government at the federal, state, and local levels as well as from private firms allied to the government.

AST provides a full plate of topics in our AST Monthly Magazine Editions, AST Website, and AST Daily News Alerts, covering 23 Vital Sectors such as Access Control, Perimeter Protection, Video Surveillance/Analytics, Airport Security, Border Security, CBRNE Detection, Border Security, Ports, Cybersecurity, Networking Security, Encryption, Law Enforcement, First Responders, Campus Security, Security Services, Corporate Facilities, and Emergency Response among others.

AST has Expanded readership into integral Critical Infrastructure audiences such as Protection of Nuclear Facilities, Water Plants & Dams, Bridges & Tunnels, and other potential targets of terrorism.

Other areas of concern include Transportation Hubs, Public Assemblies, Government Facilities, Sporting & Concert Stadiums, our Nation’s Schools & Universities, and Commercial Business Destinations – all enticing targets due to the large number of persons and resources clustered together.

To learn more, please see the 2022 ‘ASTORS’ CHAMPIONS Edition Fully Interactive Magazine – the Best Products of 2022 ‘A Year in Review.’

The Annual CHAMPIONS edition reviews ‘ASTORS’ Award Winning products and programs, highlighting key details on many of the winning firm’s products and services, including video interviews and more.

The 2022 CHAMPIONS serves as your Go-To Source through the year for ‘The Best of 2022 Products and Services‘ endorsed by American Security Today – and can satisfy your agency’s and/or organization’s most pressing Homeland Security and Public Safety needs.

From Physical Security (Access Control, Critical Infrastructure, Perimeter Protection, and Video Surveillance Cameras and Video Management Systems), to IT Security (Cybersecurity, Encryption, Data Storage, Anti-Malware, and Networking Security – to name a few), the 2022 ‘ASTORS’ CHAMPIONS EDITION has what you need to Detect, Delay, Respond to, and Mitigate today’s real-time threats in our constantly evolving security landscape.

It also features guest editorial pieces from some of the security industry’s most respected leaders and recognized firms in the 2022 ‘ASTORS’ Awards Program.

For more information on All Things American Security Today, as well as the 2023 ‘ASTORS’ Awards Program, please contact Michael Madsen, AST Publisher at mmadsen@americansecuritytoday.com.

AST strives to meet a 3 STAR trustworthiness rating, based on the following criteria:

Provides named sources
Reported by more than one notable outlet
Includes supporting video, direct statements, or photos