![](\"https:\/\/i0.wp.com\/d1v1e13ebw3o15.cloudfront.net\/data\/89738\/pool_and_spa_logo\/..jpg?ssl=1\")
<\/p>\nSearch AI company Elastic<\/a> has launched a serverless security package aimed at bringing AI-driven detection and triage into existing Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR) tools.<\/p>\n The solution, Elastic AI SOC Engine (EASE), uses Elastic\u2019s Attack Discovery platform and an AI assistant to help Security Operations Centre (SOC) analysts more rapidly uncover hidden, coordinated threats. It is designed for deployment in security environments that utilise Splunk<\/a>, Microsoft Sentinel<\/a>, CrowdStrike<\/a>, and other popular tools.<\/p>\n It supports agentless integrations by ingesting alerts from third-party platforms, allowing users to apply AI analysis to alerts. The solution can be used to triage, correlate and prioritise alerts, and data connections can enrich investigations with knowledge from sources including Jira, GitHub, and SharePoint.<\/p>\n Elastic GM for Observability and Security Santosh Krishnan said in today\u2019s threat environment, SOC analysts can be overwhelmed by high alert volumes.<\/p>\n \u201cEASE brings Elastic\u2019s proven AI capabilities into the security tools teams already use, to automatically prioritise threats, correlate alerts, and accelerate investigations, reducing the load on teams,\u201d he said. \u201cWhen ready, teams can seamlessly migrate to Elastic Security for a unified, AI-driven platform that brings together SIEM, EDR, and cloud security, without missing a beat.\u201d<\/p>\n