Introducing Lakewatch

Cyberattacks are no longer just human-operated. AI-driven threats now move at machine speed, exploiting gaps across systems while your SOC is still triaging yesterday's alerts. Traditional SIEMs weren't built for this reality: they force painful trade-offs between data volume, retention, and cost, leaving security teams flying blind with only a fraction of their telemetry in view.

In this session, we'll take you inside Lakewatch, Databricks' open, agentic SIEM built for machine speed defense. We'll start with the "why": what motivated us to build something fundamentally different. Then we'll demo how Lakewatch unifies 100% of your security, IT, and business telemetry in one governed environment using open formats and Unity Catalog, with no costly duplication and no vendor lock-in. You'll see how embedded AI agents powered by Genie Code automate threat detection and response at machine speed, and we'll close with an exclusive peek at the roadmap and what's coming next.

Whether you're evaluating your current SIEM, dealing with runaway data costs, or looking to modernize your SOC on your existing Databricks investment, this session is your practical starting point.

Key takeaways:

• Why traditional SIEMs structurally fail against AI-driven threats
• How Lakewatch unifies all your telemetry with open formats and Unity Catalog
• How Genie agents automate detection, hunting, and response
• A first look at the Lakewatch roadmap and what's coming next