Databricks Launches Lakewatch to Counter AI-Driven Cyber Threats
Lakewatch brings together security, IT and business data into a unified, governed environment, enabling organizations to detect and respond to threats at scale.
Databricks has unveiled Lakewatch, a new open, agentic Security Information and Event Management (SIEM) platform designed to help enterprises defend against increasingly sophisticated AI-powered cyberattacks.
Currently in private preview, Lakewatch brings together security, IT and business data into a unified, governed environment, enabling organisations to detect and respond to threats at scale.
The platform leverages open formats and ecosystems to process large volumes of structured and unstructured data, including audio and video, while reducing costs and avoiding vendor lock-in.
The launch comes as cyber threats grow more advanced, with attackers increasingly using AI agents to scan systems, identify vulnerabilities and execute attacks at machine speed. Traditional security systems, often limited by fragmented data and manual workflows, struggle to keep up.
“Security teams can no longer rely on manual workflows to outpace AI-driven attacks. With Lakewatch, we are giving enterprises a new open data architecture and agentic capabilities to replace stagnating SIEM tools. Defenders must have even better visibility and speed than today’s agent attackers,” said Ali Ghodsi, Co-Founder and CEO of Databricks.
Lakewatch introduces AI-driven capabilities such as automated threat detection, agent-based investigation workflows and “detection-as-code,” enabling security teams to manage and deploy threat detection strategies more efficiently.
It also integrates with an open ecosystem of partners including Okta, Palo Alto Networks and Zscaler.
The platform is powered in part by Anthropic’s Claude models, enhancing its ability to analyse complex signals across enterprise systems.
Industry players such as Adobe and Dropbox are already using Lakewatch to strengthen security operations.
“Databricks provides the foundation needed to move from data-driven to AI-driven approaches for security operations, and Lakewatch is an important step toward bringing security intelligence closer to where data already lives,” said Karthik Venkatesan, Security Engineering Lead at Adobe.
