gcp Google Cloud release notes ·

Google SecOps SIEM adds advanced dashboard filtering (public preview)

securitygcppreviewengineer
feature

Google SecOps SIEM is rolling out advanced filtering capabilities for dashboards. This feature allows security analysts to dynamically inject values, regular expressions, or boolean logic into YARA-L queries using query variables, enhancing dashboard flexibility. The capability is currently in public preview and requires understanding of YARA-L query syntax.

Features (1)
  • Google SecOps SIEM Advanced Filtering in Dashboards

    Advanced Filtering in Dashboards This feature is in Public Preview. Advanced Filtering in dashboards is now available in Google SecOps. This feature enhances dashboard capabilities by enabling security analysts to use query variables, also known as tokens, to inject dynamic values, complex regular expressions, or boolean logic directly into YARA-L queries at runtime. Key aspects of Advanced Filtering include: Token Variable Definition: When creating an advanced filter, you can define a Token Variable. Token variable names must consist only of alphanumeric characters and underscores ( ^[a-zA-Z0

Read the original announcement →

https://docs.cloud.google.com/release-notes#July_15_2026

Related releases