{"id":198902,"date":"2026-03-24T18:37:00","date_gmt":"2026-03-24T22:37:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/24\/databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering\/"},"modified":"2026-03-24T18:50:11","modified_gmt":"2026-03-24T22:50:11","slug":"databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/24\/databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering\/","title":{"rendered":"Databricks Expands Into Cybersecurity Arena With New Lakewatch Offering"},"content":{"rendered":"<p><a href=\"https:\/\/www.crn.com\/news\/security\/2026\/databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering\">Databricks Expands Into Cybersecurity Arena With New Lakewatch Offering<\/a><\/p>\n<p><a href=\"https:\/\/www.crn.com\/news\/security\/2026\/databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering\">https:\/\/www.crn.com\/news\/security\/2026\/databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-24 18:37:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.crn.com\">www.crn.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>        Databricks is applying its AI and data platform\u2014and disclosing two acquisitions\u2014as it brings an agentic approach to traditional SIEM cybersecurity.<\/p>\n<p>        Databricks is expanding into the cybersecurity space, launching Tuesday a new agentic SIEM product that taps into the data management and AI capabilities of the company\u2019s core Data Intelligence Platform to provide threat detection and investigation capabilities.<br \/>\n        Databricks says its new Lakewatch offering is designed to help organizations defend against increasingly sophisticated attackers using AI and agents that reduce the time security teams have to detect and respond to attacks.<br \/>\n        \u201cSecurity is really a data problem, at the core of it,\u201d said Andrew Krioukov, general manager of Lakewatch, in an interview with CRN. \u201cOur strengths are data and AI. We see this as the evolution of SIEM.\u201d<br \/>\n        [Related: 20 Coolest AI And Security Products At RSAC 2026]<br \/>\n        Krioukov noted that prior to this product launch, some customers were already running security workloads on the Databricks platform, loading security logs and other security data into Databricks, \u201cbecause it was the best place for doing threat analytics,\u201d and outperforming existing tools,\u201d Krioukov said.<br \/>\n        Lakewatch, currently in private preview, unifies security, IT and business data into a single, governed environment for AI detection and response, according to the Databricks announcement. It enables organizations to ingest, retain and analyze huge volumes of multi-modal data that provides security teams with complete visibility across an enterprise.<br \/>\n        With Lakewatch security operations teams also can deploy security agents to automate threat detection and response \u201cat massive scale,\u201d according to the company.<br \/>\n        Databricks\u2019 move into SIEM (security information and event management) stems from the company\u2019s previously undisclosed acquisition in May 2025 of Antimatter, a startup developing technology for secure authentication and authorization of AI agents.<br \/>\n        Krioukov, who was co-founder and CEO of Antimatter, said that company\u2019s technology was originally built on the Databricks platform and provided the kernal of Lakewatch. \u201cWe were real partners before we were acquired,\u201d he said.<br \/>\n        \u201cBut certainly, Lakewatch has grown to be much, much more than what we had nine months ago. And I\u2019d say in record time too,\u201d Krioukov said, pointing to the product itself, Databricks\u2019 broader vision, and the Antimatter team that tripled in size within Databricks post-acquisition to develop Lakewatch.<br \/>\n        Databricks announced that it also acquired SiftD.ai, founded by the creator of Splunk\u2019s Search Processing Language (SPL), a move that\u2019s expected to bring \u201cdeep expertise\u201d in large-scale detection engineering and modern threat analytics, Databricks said. Krioukov said the SiftD.ai personnel have joined his team.<br \/>\n        The Core Concepts Behind Lakewatch<br \/>\n        Lakewatch is designed around three pillars, according to Krioukov, the first being that security teams need to be able to see all of an organization\u2019s data in open formats, including unstructured data such as text, audio and images that he said traditional SIEM tools struggle to work with.<br \/>\n        Second is the need to leverage agentic AI to automate manual security practices that are too slow and cumbersome for today\u2019s increased pace of cyberattacks. Using Lakewatch and Databricks\u2019 Agent Bricks tools for building production agents, customers can build, optimize and deploy custom security agents. Lakewatch is also integrated with Databricks\u2019 Genie AI assistant to automate security processes such as alert triage.<br \/>\n        \u201cThe attackers are moving faster and faster and so the time to respond is dropping,\u201d Krioukov said. \u201cWe\u2019re applying AI to help the teams that are tasked with defending a company, to help automate their workflows, help them do their jobs faster, so that they can spot threats sooner and react to those threats faster.\u201d<br \/>\n        And the third pillar, openness and flexibility, is based on the ability of the Databricks platform to work with data from a broad range of sources and connect to IT systems from the large number of companies within Databricks\u2019 technology partner ecosystem.<br \/>\n        Databricks debuted Lakewatch at this week\u2019s RSAC 2026 conference in San Francisco where Databricks co-founder and CEO Ali Ghodsi was a keynote speaker and, in his presentation, focused on how much AI has replaced traditional SIEM.<br \/>\n        Krioukov said that given the importance of data and AI within the realm of cybersecurity, Lakewatch is not just a side product for Databricks.<br \/>\n        \u201cDatabricks and Ali [Ghodsi] and the board have decided that this is a major investment area\u2026and that\u2019s what spurred all this, both the acquisitions and the growth of the team,\u201d he said, calling the RSAC event the \u201cbig coming out party\u201d for the company\u2019s entrance into the cybersecurity space.<br \/>\n        Krioukov said Lakewatch provides opportunities for the company\u2019s channel partners around new security use cases such as leveraging business data for fraud detection.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Databricks Expands Into Cybersecurity Arena With New Lakewatch Offering https:\/\/www.crn.com\/news\/security\/2026\/databricks-expands-into-cybersecurity-arena-with-new-lakewatch-offering Publish Date: 2026-03-24 18:37:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":198903,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.crn.com\/news\/security\/2026\/media_1d908b20389a886af4532d2042f02f77274e63477.png?width=1200&format=pjpg&optimize=medium","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24],"class_list":["post-198902","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/198902"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=198902"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/198902\/revisions"}],"predecessor-version":[{"id":198904,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/198902\/revisions\/198904"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/198903"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=198902"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=198902"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=198902"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}