AI tools and machine learning can help security teams address challenges around escalating alert volumes, resource shortages, and slow detection and response times. Splunk's AI-powered User Behavior Analytics (UBA) uses unsupervised machine learning to detect unknown threats and anomalous user behavior across devices and applications. It analyzes data from various sources and classifies anomalies and threats to help security teams solve advanced use cases and stay ahead of insider and external attacks. Splunk's security orchestration, automation and response (SOAR) tool, Phantom, further helps teams respond faster by automating incident response workflows and reducing manual tasks.