๐The Next Web (TNW)โขFreshcollected in 70m
Databricks acquires Panther Labs to boost AI security
๐กDatabricks expands its security footprint to challenge CrowdStrike with AI-powered analytics.
โก 30-Second TL;DR
What Changed
Databricks acquires Panther Labs
Why It Matters
This acquisition positions Databricks as a more formidable player in the security data lake market, leveraging AI to detect and respond to cyber threats.
What To Do Next
Explore Databricks' security data lake architecture to see how it compares to traditional SIEM solutions for your AI security needs.
Who should care:Enterprise & Security Teams
๐ง Deep Insight
AI-generated analysis for this event.
๐ Enhanced Key Takeaways
- โขPanther Labs is recognized for its cloud-native SIEM (Security Information and Event Management) platform, which utilizes a 'Detection-as-Code' approach using Python for security rules.
- โขThe acquisition integrates Panther's real-time threat detection capabilities directly into the Databricks Data Intelligence Platform, specifically leveraging the Unity Catalog for unified security governance.
- โขDatabricks aims to leverage Panther's technology to reduce the 'data tax' associated with traditional SIEMs by allowing security teams to query data in its native format within the Data Lakehouse.
- โขThis acquisition follows Databricks' previous security-focused investments, including the acquisition of Arcion and the development of its own internal security monitoring tools.
- โขThe deal is expected to accelerate Databricks' 'Lakehouse Security' initiative, enabling customers to perform security analytics at petabyte scale without moving data to proprietary, expensive storage silos.
๐ Competitor Analysisโธ Show
| Feature | Databricks (w/ Panther) | Splunk | CrowdStrike (Falcon) |
|---|---|---|---|
| Core Architecture | Data Lakehouse (Open) | Proprietary Indexing | Endpoint-First / Cloud-Native |
| Data Storage | Decoupled (S3/ADLS) | Proprietary | Proprietary |
| Detection Logic | Detection-as-Code (Python) | SPL (Splunk Processing Lang) | Behavioral/ML Models |
| Pricing Model | Compute/Storage Usage | Data Ingestion Volume | Per-Endpoint/Module |
| Primary Strength | Unified Data/AI Analytics | Mature Ecosystem/SIEM | Endpoint/Workload Protection |
๐ ๏ธ Technical Deep Dive
- Panther Labs utilizes a serverless architecture built on AWS, allowing for massive horizontal scaling of log ingestion and processing.
- The platform supports 'Detection-as-Code' via Python, enabling security engineers to version control, test, and deploy detection logic through CI/CD pipelines.
- Integration with Databricks involves mapping Panther's normalized security schemas (based on Panther's internal schema or OCSF) to Delta Lake tables.
- The system leverages Databricks' Photon engine to accelerate complex SQL-based security queries across massive datasets stored in Parquet format.
- Security telemetry is processed via a streaming pipeline, allowing for sub-second alerting on high-fidelity threats before data is fully persisted to the Lakehouse.
๐ฎ Future ImplicationsAI analysis grounded in cited sources
Databricks will launch a native 'Security Lakehouse' product by Q4 2026.
The integration of Panther's detection engine with Databricks' storage layer provides the necessary foundation for a dedicated security-focused data product.
Splunk will face increased churn among enterprise customers seeking to consolidate security and data engineering budgets.
Databricks' ability to offer security analytics on existing data lakes eliminates the need for redundant data ingestion into expensive proprietary SIEM platforms.
โณ Timeline
2018-09
Panther Labs founded by Jack Naglieri to modernize SIEM with cloud-native detection.
2021-09
Panther Labs raises $120 million Series B funding led by Coatue Management.
2023-10
Databricks acquires Arcion to enhance data ingestion and replication capabilities.
2024-06
Databricks announces the expansion of its Data Intelligence Platform with enhanced security features.
2026-06
Databricks officially acquires Panther Labs to integrate security analytics into the Lakehouse.
๐ฐ
Weekly AI Recap
Read this week's curated digest of top AI events โ
๐Related Updates
Same topic
Explore #cybersecurity
Same product
More on databricks-/-panther-labs
Same source
Latest from The Next Web (TNW)
Public First report: China leads in AI perception
The Next Web (TNW)โขJun 19
Disney launching AI tool for automated TV ad generation
The Next Web (TNW)โขJun 19
Copia Automation raises $26M for industrial code management
The Next Web (TNW)โขJun 19
General Atlantic eyes $18bn stake in China's Kling AI
The Next Web (TNW)โขJun 19
AI-curated news aggregator. All content rights belong to original publishers.
Original source: The Next Web (TNW) โ