SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom
Bits ai 2
#
SIEM
#
Digital Transformation
#
Cloud Security

Datadog launches AI security analyst for Cloud SIEM

Mon, 23rd Mar 2026
Author image
By Joseph Gabriel Lagonsin, News Editor

Datadog has launched Bits AI Security Analyst for Cloud SIEM, and the product is now generally available worldwide.

The tool is designed to investigate security alerts automatically, cutting work that can take analysts hours to as little as 30 seconds in some cases. Datadog says it can reduce mean time to resolution by more than 90%, with the release headline citing investigation time reductions of up to 98%.

The launch comes as security operations teams face rising alert volumes and more data to review across cloud environments, identity systems and endpoint tools. Datadog argues these pressures are being intensified by AI-enabled attacks, adding to the burden on already stretched security operations centre teams.

Analysts often need to acknowledge alerts, gather evidence, correlate signals, assess findings and decide whether escalation is necessary. Bits AI Security Analyst is intended to handle those steps autonomously within Cloud SIEM, using the security and observability data already available in the platform.

That matters for Datadog because Cloud SIEM sits within a broader security and observability business that competes with specialist security vendors and larger platform providers. By embedding an AI investigation agent directly into the product, Datadog is aiming to reduce the operational drag of routine alerts while keeping analysts focused on more complex incidents.

Tim Knudsen, Vice President of Security Products at Datadog, outlined the company's view of the problem.

"Traditional SIEMs are leaving enterprises increasingly exposed because queues keep growing and investigations take longer to correlate and enrich context. On top of this, you have security talent shortages," said Tim Knudsen, Vice President of Security Products at Datadog. "Datadog Cloud SIEM with Bits AI Security Analyst solves this problem by autonomously investigating alerts, and leveraging security and observability signals to deliver accurate, fully explained verdicts that dramatically reduce remediation times."

Alert pressure

Security teams have long complained about alert fatigue, where high volumes of warnings overwhelm staff and make genuine threats harder to identify quickly. Datadog is positioning the new product as a response, arguing that human analysts alone cannot reliably triage and remediate every threat as environments grow more complex.

The company says the AI agent can analyse a wider range of data than a human investigator could manage in the same timeframe, while still returning a verdict with supporting explanation. It draws on a unified view of infrastructure, cloud services, identities, endpoint detection and response systems, and observability telemetry.

That is significant because fragmentation remains a major weakness in many security operations workflows. Alerts may originate in one system, evidence may sit in another, and analysts often have to move between tools to build context before deciding whether activity is benign or malicious.

Datadog's argument is that a single environment for both observability and security data gives its investigation agent enough context to automate more of that process. It also points to its existing integration base and role-based access controls as part of the deployment model for customers already using Cloud SIEM.

Market push

The release also highlights how quickly AI agents are becoming a central battleground in cyber security products. Vendors are racing to show that generative AI and autonomous systems can do more than summarise alerts, and can instead take on work normally handled by experienced analysts.

Datadog used the launch to highlight the scale of its existing foothold in the market.

"One-in-four Fortune 500 companies rely on Datadog Security to help them detect, prioritise and remediate threats, vulnerabilities and misconfigurations. We are already a trusted partner and we continuously evolve our Cloud SIEM capabilities to directly face today's sophisticated threats, especially as GenAI attacks intensify," said Yanbing Li, Chief Product Officer at Datadog. "To combat modern attacks, SOCs need intelligent, autonomous systems that can investigate and report clearly. That's exactly what Bits AI Security Analyst delivers-a trusted AI agent that acts as an always-on senior SOC analyst teammate."

For customers, the key test will be whether autonomous investigations consistently reduce workload without creating false confidence or obscuring how decisions are made. Datadog says the tool delivers fully explained verdicts, a point likely to matter for security teams that need to justify escalation decisions and preserve audit trails during incident response.

According to Datadog, teams using other SIEM products can spend hours acknowledging alerts, running investigations, gathering evidence, analysing results and escalating when needed, while users of Bits AI Security Analyst can complete those steps in minutes.

Related stories
Anthropic launches Claude Opus 4.7 with stronger coding
CIQ launches Linux compliance platform ahead of deadlines
Your.Cloud acquires Pure Cloud Solutions in UK push
Emerson & OPSWAT strike global reseller deal for OT patching
OVHcloud adds Quandela Belenos quantum computer to platform

Top stories

Team Cymru launches Total Insights Feeds for threat data
FIRST conference highlights AI & CVE disclosure push
Protegrity launches AI Team Edition for secure inferencing
CERN joins OpenSearch foundation as associate member
OpenAI launches Trusted Access for Cyber with major names