Introducing Log Investigator: Transform your security operations with AI-powered log analysis

Detecting and responding to potential Identity security threats is no longer simply an advantage in modern cybersecurity but a necessity. At the same time, as organizations scale their digital operations, Identity security practitioners need access to a richer and more complex set of identity log data than before — one demanding constant attention and analysis.

That’s why we’re excited to announce that Log Investigator, a groundbreaking Okta AI solution that revolutionizes how organizations interact with their Okta System Log, is available for Early Access.

The growing challenge of Identity log analysis

Okta's System Log is an invaluable resource for security teams. It captures a comprehensive record of all Identity-related activities and events within an organization's Okta deployment and contains nearly 1,000 distinct event types covering various aspects of Identity plus rich context like device context and IP reputation.

Identity logs are expanding at an unprecedented rate. As the leading Identity provider, Okta’s log volumes doubled over the past two years alone. This surge was primarily driven by digital transformation, growing workforce mobility, cloud app proliferation, and increased security controls. It‘s also outpaced the traditional log analysis methods. When minutes matter in threat detection, security teams need a better way to extract insights from their Identity logs.

With the recent development in generative AI technologies, Okta has capitalized on the opportunity to dramatically simplify this experience for Identity security practitioners. 

Your AI-powered Identity security companion

Think of Log Investigator as the Sherlock Holmes of System Log data. Powered by Okta AI, Log Investigator transforms complex log analysis into an intuitive, conversational experience. Instead of wrestling with complex query syntax or manually sifting through countless events, administrators are empowered to ask simple questions in natural language to receive immediate, actionable insights.

Key features and benefits

Below are the chief benefits users can reap from Log Investigator.

• Natural language interface: Ask questions about your Okta data in plain English, making it easy to explore and refine Identity security logs for practitioners of any experience level.
• Contextual Intelligence: Gain insights into when and how an action took place within your organization.
• Enhanced productivity: Reduce the time spent on log analysis, reducing training time for new security team members, freeing up personnel to focus on strategic initiatives rather than routine investigations.  
• Context-aware search: Access insights into Okta-specific concepts and relationships across nearly 1,000 Okta event types.

Responsible AI innovation 

Log Investigator takes a Generative AI-based approach using large language models (LLM) to generate queries from the user’s natural language questions on System Log.

AI Innovation in security must be built on a foundation of trust. Log Investigator has been developed with careful consideration of industry best practices for AI implementation in enterprise software. Our development process adheres to Okta’s Responsible AI principles regarding privacy, security, responsible innovation, and more general principles and obligations regarding customer data.

We work to ensure appropriate data handling safeguards are in place because honoring customer trust is our priority in our approach to emerging AI technologies. We practice rigorous risk management, even at the earliest stage of product incubation. As an example, Log Investigator performs validations to protect against prompt injections and other malicious attacks.

What’s next?

This initial phase of our Early Access release has generated tremendous interest, and we've already reached capacity for the first cohort. We appreciate the enthusiasm from our customers and are excited to review their feedback ahead of General Availability. We'll continue sharing updates on the feature’s progress and future availability.

As we continue innovating and pushing the boundaries of Identity technology, we’re exploring new ways to enhance our offerings and make our data even more accessible. We’re always interested in hearing from you, as your feedback is vital to shaping our future developments.

Have questions about this blog post? Reach out to us at [email protected].

Explore more insightful Engineering Blogs from Okta to expand your knowledge.

Ready to join our passionate team of exceptional engineers? Visit our career page.

Unlock the potential of modern and sophisticated Identity management for your organization. Contact Sales for more information.

Disclaimer:  Any products, features, functionalities, certifications, authorizations, or attestations referenced in this material that are not currently generally available or have not yet been obtained or are not currently maintained may not be delivered or obtained on time or at all. Product roadmaps do not represent a commitment, obligation or promise to deliver any product, feature, functionality, certification or attestation and you should not rely on them to make your purchase decisions.