An intuitive security investigation tool that decreases cyber security incidents.

Search

Execute searches up to 10X faster and process advanced security analytics immediately. Powered by Vertica, Investigate’s columnar database responds to queries faster than traditional databases, enabling it to search years of event data in seconds. It facilitates threat hunting within massive datasets without limiting the time span or result size of searches, enabling analysts to ask questions at scale.

Simplify

Make threat analysis easy and simple with built-in analytics and guided suggestions. Investigate is simple to use, and helps users perform advanced security analytics with its guided experience. Junior analysts can easily build or modify a query by choosing from suggestions or clicking a drop-down menu, and advanced users save time when scripting complex queries through intelligent suggestions.

Visualize

Create insightful charts and dashboards optimized for security investigation. Create your own data visualizations with Investigate, or take advantage of our pre-made charts, visualizations, and dashboards, saving you time and effort.

Integrate

Gain a complete view of security events by integrating existing security operations solutions. Move from ArcSight ESM to Investigate with a simple right-click. Investigate adds a valuable layer to your security analytics foundation, and leverages your existing ArcSight data collection architecture. Investigate also integrates with several SOAR tools to provide quick investigation, streamlined workflows, and fast response times.