| FEATURE | DESCRIPTION |
|---|---|
Secure, personalized queries |
Protect sensitive investigation data and ensure users only see their own query syntax and results, preventing unauthorized access to private data. We added a restriction setting for administrators to streamline the Query Center for non-admin users. |
Clearer query accountability |
Audit your searches accurately. Instantly see if a query was run by a person, a system, or an API key to speed up troubleshooting and security reviews. We standardized field labels and updated the "Issued by" field to clearly distinguish between who owns a query and who ran it. |
Federated Search |
Seamlessly query across external datasets stored in AWS, GCP, or Azure. Search and analyze remote data directly from XSIAM using XQL - without ingesting it or incurring additional storage costs. To use Federated Search, please see our documentation. |