Elastic has announced the general availability of Workflows in version 9.4, providing a native automation layer for Security, Observability, and Search directly within the Elastic platform. This update introduces significantly expanded capabilities, particularly for security teams, through 25 dedicated case management steps. These steps allow for the full automation of the case lifecycle, including creation, evidence attachment, and analyst assignment, all manageable via typed and validated YAML configurations.
Key features in this release include the "Human-in-the-loop" primitive, which allows workflows to pause for analyst review before taking critical actions, and natural language authoring for generating workflows using AI. The platform also introduces composable workflows, enhanced flow-control primitives like loops and switches, and a new execution-based pricing model. These integrations aim to streamline security operations by keeping automation within the tools where analysts already work.
Top comments (0)