Automated Investigation helps ensure analysists have a complete and accurate set of data when they handle a threat. It can also significantly reduce the alert fatigue caused by noisy legacy threat detection systems by ensuring all alerts that are sent to the SOC team are worthy of their time.

It also reduces the dwell time of any potential breaches by reducing the amount of man-power needed, a huge benefit given the lack of funding and manpower most SOCs face.