Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

elastic

Elevating public sector cyber defense with AI-powered threat hunting

Oct 31, 2025 By Brixton Pizzuti In Elastic
Public sector organizations face sophisticated, persistent threats — 38% of public sector organizations say their cyber resilience is insufficient compared to 10% of medium to large private businesses. With sensitive data and critical infrastructure at stake, agencies need tools that enable proactive detection and rapid investigation, all while keeping data inside a secure boundary.
Read Post
elastic

Stopping USB-borne attacks at the endpoint with Elastic Security Device Control

Oct 28, 2025 By Roxana Gheorghe In Elastic
In today’s enterprise environments, endpoints are more than just laptops and desktops. They are the critical bridge where people, applications, and data intersect. While much attention is given to malware prevention and threat detection, one security layer is often underestimated: device control.
Read Post

How AI Cuts SIEM Migration Time from Months to Minutes

Oct 27, 2025 By Elastic In Elastic
SIEM migration is tedious, time-consuming, and pulls security professionals away from actual security work. Manually exporting thousands of detection rules, translating query logic, and fixing errors can take weeks or months. In this episode of AI can do what now?!, Haran Kumar (principal security solutions architect at Elastic) walks through how AI actually helps automate SIEM migration.
View Video
elastic

Advanced vector search in air-gapped environments

Oct 24, 2025 By Josh Phifer In Elastic
For organizations in air-gapped environments with no external network connection, implementing the latest search and AI technology can be challenging, often to the point of impossibility. However, Elastic’s customers in highly sensitive industries, such as national security and defense, have relied on Elastic’s agile technology for over a decade, trusting it for mission-critical use cases in air-gapped environments or even on tech kits.
Read Post
elastic

How Airties migrated from ArcSight to Elastic and cut investigation times from hours to seconds

Oct 20, 2025 By Jon Ashley, In Elastic
In a rapidly evolving digital landscape, organizations must continuously adapt their security operations to keep pace with new threats and business needs. For the team at Airties, a global leader in Wi-Fi mesh technology and access point solutions, this meant rethinking their legacy security information and event management (SIEM) platform. Airties is a manufacturer of access points, primarily serving large telecom operators. Its solutions power the Wi-Fi networks in millions of homes worldwide.
Read Post

How AI is transforming Elastic's Security team

Oct 13, 2025 By Elastic In Elastic
Spending hours creating threat intelligence reports is a thing of the past with our InfoSec AI Assistant, built on Elastic’s Search AI Platform. Mandy Andress, our CISO, shares how the AI Assistant has transformed the way our security team gathers, documents, and reports on threats — cutting report-building time by over 75%. Learn how we’re using generative AI to build threat intelligence reports quickly, assess relevance and risk faster, and shift from reactive defenses to proactive security strategies.
View Video
elastic

AI can do what now?! Agentic AI is the autonomous future coming to security operations

Oct 8, 2025 By Elastic Security Team In Elastic
Agentic AI in cybersecurity promises to transform workflows as we know them, enabling a new level of personalization, automation, efficiency, and innovation. It’s already being deployed by security teams for use cases like autonomous threat detection and response, advanced threat hunting, automated incident investigation, real-time fraud protection, and more. So, how is agentic AI working overtime to help security analysts build a more resilient security posture?
Read Post
elastic

From endpoint to XDR: Operationalize Jamf Protect data in Elastic Security

Oct 6, 2025 By Raquel Tabuyo In Elastic
Enhance your threat detection, investigation, and response capabilities by integrating Jamf Protect macOS data within Elastic Security. Security teams often struggle to detect and respond to macOS threats with endpoint data alone. The integration with Jamf Protect changes that. Jamf Protect delivers rich macOS telemetry and built-in protections like Threat Prevention and Network Protection, powered by Jamf Threat Labs.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.