Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

elastic

Detecting the undetectable: Building a fraud detection framework with Elastic

Nov 17, 2025 By Kyle Rozanitis In Elastic
Learn how public sector organizations are using Elastic to identify fraudulent activity with rules and anomaly detection jobs fine-tuned for their specific use cases. Every organization faces the challenge of identifying and combating fraud. In the financial services industry, it might be credit card fraud; in the auto insurance space, staged accident fraud; and in the public sector, unemployment, health insurance, or tax fraud.
Read Post
elastic

It's time for the defense and intelligence community to upgrade endpoint security

Nov 13, 2025 By Matt Isett In Elastic
For more than 20 years, the US Intelligence Community (IC) and Department of Defense (DoD) have relied on a legacy Host Based Security System (HBSS) to provide basic endpoint security on critical networks. This solution has generally served its purpose by checking the box for endpoint security. However, most agencies still lack a truly integrated cross-operating system and cross-domain solution for endpoint detection and response (EDR).
Read Post
elastic

Elevating public sector cyber defense with AI-powered threat hunting

Oct 31, 2025 By Brixton Pizzuti In Elastic
Public sector organizations face sophisticated, persistent threats — 38% of public sector organizations say their cyber resilience is insufficient compared to 10% of medium to large private businesses. With sensitive data and critical infrastructure at stake, agencies need tools that enable proactive detection and rapid investigation, all while keeping data inside a secure boundary.
Read Post
elastic

Stopping USB-borne attacks at the endpoint with Elastic Security Device Control

Oct 28, 2025 By Roxana Gheorghe In Elastic
In today’s enterprise environments, endpoints are more than just laptops and desktops. They are the critical bridge where people, applications, and data intersect. While much attention is given to malware prevention and threat detection, one security layer is often underestimated: device control.
Read Post

How AI Cuts SIEM Migration Time from Months to Minutes

Oct 27, 2025 By Elastic In Elastic
SIEM migration is tedious, time-consuming, and pulls security professionals away from actual security work. Manually exporting thousands of detection rules, translating query logic, and fixing errors can take weeks or months. In this episode of AI can do what now?!, Haran Kumar (principal security solutions architect at Elastic) walks through how AI actually helps automate SIEM migration.
View Video
elastic

Advanced vector search in air-gapped environments

Oct 24, 2025 By Josh Phifer In Elastic
For organizations in air-gapped environments with no external network connection, implementing the latest search and AI technology can be challenging, often to the point of impossibility. However, Elastic’s customers in highly sensitive industries, such as national security and defense, have relied on Elastic’s agile technology for over a decade, trusting it for mission-critical use cases in air-gapped environments or even on tech kits.
Read Post
elastic

How Airties migrated from ArcSight to Elastic and cut investigation times from hours to seconds

Oct 20, 2025 By Jon Ashley, In Elastic
In a rapidly evolving digital landscape, organizations must continuously adapt their security operations to keep pace with new threats and business needs. For the team at Airties, a global leader in Wi-Fi mesh technology and access point solutions, this meant rethinking their legacy security information and event management (SIEM) platform. Airties is a manufacturer of access points, primarily serving large telecom operators. Its solutions power the Wi-Fi networks in millions of homes worldwide.
Read Post

How AI is transforming Elastic's Security team

Oct 13, 2025 By Elastic In Elastic
Spending hours creating threat intelligence reports is a thing of the past with our InfoSec AI Assistant, built on Elastic’s Search AI Platform. Mandy Andress, our CISO, shares how the AI Assistant has transformed the way our security team gathers, documents, and reports on threats — cutting report-building time by over 75%. Learn how we’re using generative AI to build threat intelligence reports quickly, assess relevance and risk faster, and shift from reactive defenses to proactive security strategies.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.