The current threat landscape has created new challenges for security analysts and incident responders, as both the number of alerts and their complexity have increased significantly. Many organizations, whether they have small IT teams or dedicated SOCs (security operation centers) end up overwhelmed by the number of alerts they must handle. As responders often lack the time or resources to investigate every alert, or even prioritize the most critical ones, a high-risk threat might go unnoticed. Potentially, this could allow devastating breaches to occur, damaging an organization’s finances and reputation.