https://store-images.s-microsoft.com/image/apps.65363.b2fd870e-4e23-42e2-98b7-abe3e1cd76e5.4250ba70-df37-411f-8ca2-0129858902b4.53ef8406-619c-4f0a-81c6-f0a17156d229

Salem the AI Cyber Analyst for SOC Automation

Salem Inc.

Salem the AI Cyber Analyst for SOC Automation

Salem Inc.

An AI cyber analyst that investigates your cyber alerts to find the few that actually matter.

Why Salem?

Salem uses AI decision intelligence to investigate your cyber alerts and surface the few that require your immediate attention. This can help you to:

    • Increase coverage of current cyber operations by analyzing use cases of all severity types. Salem can help expand your scope by supporting a broad range of alert use cases covering endpoint, identity, cloud, and network activity.
    • Detect threats faster by lowering mean-time-to-detect (MTTD) malicious activity. Operating at machine speed, Salem gets to work on each alert it receives immediately and swiftly escalates the ones that matter directly to you.
    • Reduce SOC analyst fatigue by automatically analyzing alerts at machine scale, 24/7. This can free up your security team to refocus on high-impact work such as developing advanced detection rules, researching TTPs & tools, and incident response.

How does Salem work?

    1. Salem investigates alerts from your existing SIEM, EDR, and other threat detection tools. By analyzing the alerts generated by these tools, Salem identifies potentially malicious activity based on known TTPs and deviations from established behavioral norms.
    2. Salem’s AI is trained to follow the investigation paths of a seasoned cyber analyst to identify real threats quickly & consistently. Salem comes pre-trained so it can immediately provide value upon deployment. From there, Salem investigates every alert it receives at machine speed, 24/7, without fatigue.
    3. Salem learns and applies your business context to improve situational awareness for each alert. All of your data & context does not go on to train Salem’s AI models; rather, Salem keeps this information within your environment to aid future investigations. As Salem learns, it produces more precise alert escalations and seeks less feedback from your security team.

How has Salem impacted clients?

Salem is currently serving a US-based, Fortune 100 pharmaceutical manufacturer, supporting detections generated across 65,000 global endpoints. Salem has proven to be valuable in correctly validating cyber threats and quickly escalating those threats to incident responders (average is ~2 minutes). Salem also:

    1. Escalated 1 alert for every 70 it investigated
    2. Identified threats 24x faster than the existing managed security service
    3. Caught the red team red-handed on 3 separate occasions

https://store-images.s-microsoft.com/image/apps.14205.b2fd870e-4e23-42e2-98b7-abe3e1cd76e5.4250ba70-df37-411f-8ca2-0129858902b4.f6b28561-4a38-42d2-91d8-74ad6f586174
/staticstorage/5b4dcb1/assets/videoOverlay_7299e00c2e43a32cf9fa.png
https://store-images.s-microsoft.com/image/apps.14205.b2fd870e-4e23-42e2-98b7-abe3e1cd76e5.4250ba70-df37-411f-8ca2-0129858902b4.f6b28561-4a38-42d2-91d8-74ad6f586174
/staticstorage/5b4dcb1/assets/videoOverlay_7299e00c2e43a32cf9fa.png
https://store-images.s-microsoft.com/image/apps.1966.b2fd870e-4e23-42e2-98b7-abe3e1cd76e5.bad801b4-aa55-40a3-b400-973061422567.2063a1a2-8838-47b8-9389-766cb8c705e0
https://store-images.s-microsoft.com/image/apps.52186.b2fd870e-4e23-42e2-98b7-abe3e1cd76e5.bad801b4-aa55-40a3-b400-973061422567.e1bf5bba-0682-4f6b-a6cc-2b4cf40a6677
https://store-images.s-microsoft.com/image/apps.56223.b2fd870e-4e23-42e2-98b7-abe3e1cd76e5.bad801b4-aa55-40a3-b400-973061422567.c66222a2-2de6-4ca1-a2c4-fe046cb6ca27