Lakehouse for Cybersecurity Applications
Lower costs, reduce complexity and mitigate threats
The lakehouse unifies your data stack, securely
Learn more
The impact of a unified lakehouse platform
Ingest massive amounts of data
Break the paradigm of more data creating more noise and forcing increased staffing and budget. Easily ingest and retain all your data, without compromise, at a predictable cost.
The Lakehouse Effect
85%
Of queries completed in under 7 seconds
10GB
Of data ingested related to security events per second
Ingestion
Time reduced from 15 minutes to under 1 minute
Akamai runs a pervasive, highly distributed content delivery network (CDN). Its CDN uses approximately 345,000 servers in more than 135 countries and over 1,300 networks worldwide to route internet traffic for some of the largest enterprises in media, commerce, finance, retail and many other industries. About 30% of the internet’s traffic flows through Akamai servers. Akamai also provides cloud security solutions. In 2018, the company launched a web security analytics tool that offers customers a single, unified interface for assessing a wide range of streaming security events and performing analysis of those events. The web analytics tool helps Akamai customers make informed actions in relation to security events in real time.
Solution Accelerators
Databricks-developed solutions to deliver the data and AI-driven outcomes that matter most — faster
Databricks Solution Accelerators are purpose-built guides — fully functional notebooks and best practices — that speed up retail results. Save time on discovery, design, development and testing in use cases like IOC matching, context graph analytics and incident investigation.
DNS Analytics
Accelerate time to detection and response across petabytes of data
Tap into DNS traffic logs, enrich streaming threat intelligence, and apply advanced analytics to detect DNS abnormalities and prevent malicious attacks.
Indicator-of-Compromise (IOC) Matching
Multicloud query foundation for IOC matching built for incident responders, threat hunters, detection engineers and security engineers
Perform an ad hoc scan of all the data (logs, telemetry, etc.) during an incident response by leveraging a security lakehouse for a given list of atomic Indicators-of-Compromise (IOCs) without the need to have a deep understanding of the table schema.
Context Graph Analytics
Build time series knowledge graphs for cybersecurity
Perform an impact analysis (blast radius) on affected areas across the enterprise when given a compromised user account/apps/IP address.
Incident Investigation Using Graphistry
Investigate and analyze threat activities using your own language
Sifting through vast amounts of log and telemetry data is key to investigating cybersecurity incidents. The ability to understand the patterns and relationships in the data is critical to uncovering the tactics, techniques and procedures used by the threat actor.
Partner Solutions
Easily discover and integrate data, analytics and AI solutions with your lakehouse
Partner Connect makes it easy for you to discover data, analytics and AI tools directly within the Databricks platform — and quickly integrate the tools you already use today. With Partner Connect, you can simplify tool integration to just a few clicks and rapidly expand the capabilities of your lakehouse.
Security Operations Center (SOC) Modernization
Leverage an end-to-end security operations platform on your own Databricks Lakehouse Platform deployments while keeping the flexibility of owning all the data and having the power to build additional security analytics on the lakehouse.
MLSec Platform is a first-of-its-kind cybersecurity solution
Rapidly design, develop and deploy your ML models while HiddenLayer MLSec Platform provides comprehensive security to protect, preserve, detect and respond to attacks on those models.
Multicloud Security Data Lake
Mach5 turns your Databricks Lakehouse into a fully searchable security platform. Collect, store, search and analyze all your security logs and data in every cloud without paying egress costs while providing a single, familiar interface for your SOC analysts to stay focused on solving security problems.
Dive Deeper
Cybersecurity Partners
Fueling data and AI innovation in modern software products
Top software companies — from startups like Abnormal Security to enterprises like Adobe — have built products on the lakehouse. To fuel this data and AI revolution, Databricks is increasing our investments in companies that build on the Databricks Lakehouse Platform.
Marketplace
An open marketplace is more than just data
Exchange data sets, notebooks, dashboards, and models between providers and consumers. These assets can be seamlessly discovered, evaluated and shared, speeding up time-to-value for end consumers.
Migrations
Modernize your data platform by moving to the Databricks Lakehouse
Reduce costs, innovate faster and simplify your data platform by migrating to the Databricks Lakehouse from your enterprise data warehouse or legacy data lake.
Webinar
Security for AI explained
AI has become a critical technology for business success. The ability to continue to innovate and differentiate with AI requires a thorough and effective approach to securing AI. Watch this joint webinar with HiddenLayer and featuring a guest analyst speaker from Forrester Research.