https://community.databricks.com/t5/announcements/databricks-announces-lakewatch-new-open-agentic-siem/m-p/152323#M684 <P data-end="388" data-start="163">Earlier this week, Databricks announced <STRONG data-end="216" data-start="203">Lakewatch</STRONG>, a new open, agentic SIEM designed to help organizations defend against increasingly sophisticated, AI-driven attacks. Lakewatch is currently available in Private Preview.</P> <P data-end="676" data-start="390">Lakewatch unifies security, IT, and business data into a single, governed environment for AI detection and response. Built on open formats, it enables customers to ingest, retain, and analyze unprecedented volumes of multi-modal data while reducing costs and eliminating vendor lock-in.</P> <P data-end="701" data-start="678">Here’s what stands out:</P> <UL data-end="1204" data-start="702"> <LI data-end="781" data-start="702" data-section-id="4jiq31">Unifies security, IT, and business data into a single, governed environment</LI> <LI data-end="876" data-start="782" data-section-id="11riek3">Enables customers to ingest, retain, and analyze unprecedented volumes of multi-modal data</LI> <LI data-end="979" data-start="877" data-section-id="t5b0q">Built on the Open Cybersecurity Schema Framework (OCSF) and supports Delta Lake and Apache Iceberg</LI> <LI data-end="1087" data-start="980" data-section-id="1iwqah3">Provides fine-grained access control at table, row, column, and attribute levels with full auditability</LI> <LI data-end="1204" data-start="1088" data-section-id="j879t6">Decouples storage from compute, allowing customers to store data and only pay for compute when running analytics</LI> </UL> <P data-end="1389" data-start="1206">Lakewatch also introduces agentic capabilities through Genie and Genie Spaces, helping automate tasks such as log ingestion, detection creation, rule tuning, and threat investigation.</P> <P data-end="1600" data-start="1391">By bringing the lakehouse architecture to security operations, Lakewatch enables teams to analyze security data alongside business data, retain full-fidelity telemetry, and respond to threats more effectively.</P> <DIV style="text-align: center; margin-top: 20px;"><A style="background-color: #ff3620; color: #ffffff; padding: 12px 24px; text-decoration: none; border-radius: 25px; font-size: 14px; display: inline-block;" href="https://www.databricks.com/blog/databricks-announces-lakewatch-new-open-agentic-siem?utm_source=bambu&amp;utm_medium=social&amp;utm_campaign=advocacy" target="_blank"> Read Full Announcement </A></DIV> Fri, 27 Mar 2026 15:30:35 GMT Rishabh_Tiwari 2026-03-27T15:30:35Z https://community.databricks.com/t5/announcements/databricks-announces-lakewatch-new-open-agentic-siem/m-p/152323#M684 <P data-end="388" data-start="163">Earlier this week, Databricks announced <STRONG data-end="216" data-start="203">Lakewatch</STRONG>, a new open, agentic SIEM designed to help organizations defend against increasingly sophisticated, AI-driven attacks. Lakewatch is currently available in Private Preview.</P> <P data-end="676" data-start="390">Lakewatch unifies security, IT, and business data into a single, governed environment for AI detection and response. Built on open formats, it enables customers to ingest, retain, and analyze unprecedented volumes of multi-modal data while reducing costs and eliminating vendor lock-in.</P> <P data-end="701" data-start="678">Here’s what stands out:</P> <UL data-end="1204" data-start="702"> <LI data-end="781" data-start="702" data-section-id="4jiq31">Unifies security, IT, and business data into a single, governed environment</LI> <LI data-end="876" data-start="782" data-section-id="11riek3">Enables customers to ingest, retain, and analyze unprecedented volumes of multi-modal data</LI> <LI data-end="979" data-start="877" data-section-id="t5b0q">Built on the Open Cybersecurity Schema Framework (OCSF) and supports Delta Lake and Apache Iceberg</LI> <LI data-end="1087" data-start="980" data-section-id="1iwqah3">Provides fine-grained access control at table, row, column, and attribute levels with full auditability</LI> <LI data-end="1204" data-start="1088" data-section-id="j879t6">Decouples storage from compute, allowing customers to store data and only pay for compute when running analytics</LI> </UL> <P data-end="1389" data-start="1206">Lakewatch also introduces agentic capabilities through Genie and Genie Spaces, helping automate tasks such as log ingestion, detection creation, rule tuning, and threat investigation.</P> <P data-end="1600" data-start="1391">By bringing the lakehouse architecture to security operations, Lakewatch enables teams to analyze security data alongside business data, retain full-fidelity telemetry, and respond to threats more effectively.</P> <DIV style="text-align: center; margin-top: 20px;"><A style="background-color: #ff3620; color: #ffffff; padding: 12px 24px; text-decoration: none; border-radius: 25px; font-size: 14px; display: inline-block;" href="https://www.databricks.com/blog/databricks-announces-lakewatch-new-open-agentic-siem?utm_source=bambu&amp;utm_medium=social&amp;utm_campaign=advocacy" target="_blank"> Read Full Announcement </A></DIV> Fri, 27 Mar 2026 15:30:35 GMT https://community.databricks.com/t5/announcements/databricks-announces-lakewatch-new-open-agentic-siem/m-p/152323#M684 Rishabh_Tiwari 2026-03-27T15:30:35Z