What’s New in Google SecOps today?
Introducing the SecOps product release digest, designed to keep you informed about the latest advancements in Google Security Operations (formerly Chronicle). Discover the latest SecOps product features and how they can empower your team.
______________________________________________________________________________________________________________
Gemini AI Playbook Assistant (Public Preview)
Gemini AI Playbook Assistant can help you streamline the process of creating playbooks by turning your prompts into a functional playbook that helps resolve security issues. Users can leverage Gemini to build and configure playbooks, or ask Gemini to suggest flows to cover specific use cases leveraging industry standard approaches. Read More >>
(Gemini AI Playbook Assistant)
Data RBAC (Generally Available)
Data RBAC enhances your data security by allowing role-based access control, customizable permissions based on UDM fields and ingestion parameters, and efficient access management. This fine-grained control minimizes risk, reduces administrative overhead, and ensures users only access data necessary for their role, providing a superior level of flexibility compared to key competitors. Read More >>
Collection Agent (Generally Available)
A collection agent can effortlessly send logs from your Windows, Linux, database events, and other non-cloud data sources to SecOps using our new collection agent. It seamlessly integrates with the SecOps forwarder or functions independently. Built on the OpenTelemetry Collector, it requires no additional licensing. Additionally, leverage the free or paid BindPlane OP (Observability Platform) management console for effortless deployment, remote configuration, and monitoring of your agents. Read More >>
Data export from Google SecOps to BigQuery (Public Preview)
BigQuery export functionality has been enhanced by enabling Bring Your Own Project (BYOP), allowing customers to store and query exported data within their own secure GCP projects. This solution improves data accessibility and strengthens security ensuring customers access the exported data using standard and complaint methods. Read More >>
Native Dashboard Experience (Private Preview)
Native dashboard empowers you to gain deeper insights from your investigations by visualizing your data with charts and graphs created directly from investigations or saved searches. Leverage the familiar YARA-L language for consistent rule creation and experience a faster, more responsive UI that accelerates your workflow.
Language Syntax GA & Stats in Search (Private Preview)
Language Syntax: Consistent YL2 queries across SecOps without the need for switching query languages. Read More >>
Stats in Search: Write language based queries to get statistics and aggregations on data without the need for manual pivot tables. Evaluate all data and not just 1M events.
HTTP V2 Integrations (Generally Available)
This is a no-code integration platform that utilizes HTTP v2 to seamlessly connect with third-party products, empowering you to execute API requests, manage files, and orchestrate asynchronous workflows without writing any code. Read More >>
Customer Spotlight
Pfizer
Pfizer faced the challenge of strengthening its immunity to cybersecurity threats in the complex pharmaceutical landscape. To enhance its security posture, Pfizer is leveraging Google Security Operations to stitch together all its security technologies and protect all of its cloud assets and environments.
Read More >>
Charles Schwab
Charles Schwab faced the challenge of a constantly growing attack surface in the financial industry. To proactively address emerging threats, Charles Schwab partnered with Google Security Operations to scale and enrich their data with threat intelligence and to build a robust security approach.
Read More >>
_________________________________________________________________________________________________________
Ready to dive deeper and unlock the full potential of Google Security Operations? Don’t hesitate to reach out to your representative for detailed information and personalized guidance. We are committed to empowering your team with the knowledge and tools needed to stay ahead of threats and safeguard your organization!
Thanks,
Google Cloud Security
Questions? Join the Google Cloud Security Operations Community