That’s where Siemens sees Chronicle’s Backstory – leveraging Google’s infrastructure – playing a role. “What company in the world is best positioned to apply AI and machine learning to ingest these different data streams, tag them, mix them, and begin to identify patterns,” he asked.
The company spelled out the competitive market it's intending to take on, which includes the entire on-premises data security market, such as SIEMs, Hadoop, and Elasticsearch, as well as security for all the related infrastructure, including servers, networking, and storage. "We really compete with doing security intelligence on your own to try to stop cyber attacks," Alphabet said.
Backstory relies on Google’s vast infrastructure, machine learning and data analytics tools to simplify the task at lower cost, helping companies to more easily filter out the signal of imminent security threats from the noise of false alarms that accompany them.
For example, an organization that missed a breach on its network initially will be able to use Backstory to find the origins of the incident and track what played out as a result. Crucially, Backstory customers will also benefit from the discoveries Chronicle makes by looking for patterns and anomalies in the combined data set of all its clients.
...Backstory gives security analysts the ability to parse potential threats from the avalanche of alerts, helping them more quickly pinpoint the real vulnerabilities. In a crowded U.S. market for cybersecurity vendors, there are few existing ways for security teams to knit all of the data from their different products in a unified system.
...a database of attack code called VirusTotal managed by another arm of Google-parent Alphabet Inc.
What exactly had Chronicle built, and why did it need the moonshot treatment to exist?
"We can work with an average security team and turn them into a great security team..."