Confluera's Anomaly Detection and Security Insights is a feature set within the CxDR Platform that combines behavioral analytics and machine learning to detect suspicious host and network behaviors in real time. The platform provides SecOps teams with continuous visibility into security indicators and anomalous patterns across server and container workloads. Monitored activities include user activity, runtime behavior, privileged behavior, lateral movements, and network activity. Key capabilities include: - **Security KPI Monitoring:** Distills event telemetry into actionable insights and KPIs covering runtime executables, file activities, user behavior, lateral movements, privileged activity, north-south network activity, and mission-critical asset manipulation. - **Workload-Centric UEBA:** Baselines user and application activity per workload to identify patterns that may indicate a compromised account or exploited application. - **Behavioral Baseline Tracking:** Automatically profiles each workload based on observed activity patterns and flags deviations from established baselines. - **Noise Reduction:** Uses a Continuous Attack Graph approach to reduce false positives and surface threats with higher relevance. The platform targets enterprise SecOps teams and is also offered to MSSPs. A 30-day trial is available.