Databricks Enters Security Market With Lakewatch — Open, Agentic SIEM at RSAC 2026
Databricks has been on a quiet march toward becoming the infrastructure layer for enterprise AI for years — data lakes, MLflow, Delta Lake, Unity Catalog. Today at RSAC 2026, the company took its most surprising market move yet: entering enterprise cybersecurity with the announcement of Lakewatch, an open agentic SIEM. What Is Lakewatch? SIEM stands for Security Information and Event Management — the category of tools that ingest security telemetry, correlate it, generate alerts, and support incident response. Splunk has dominated this category for years; SentinelOne, Microsoft Sentinel, and Elastic Security are the major challengers. ...