The volume of security telemetry is growing faster than any team can analyze, and the result is analyst burnout, missed detections and Tier 3 talent walking out the door. In this session, Julio Gómez Ortega of Elastic demonstrates how context engineering and Search AI can fundamentally change how SOC teams operate, turning hours of manual investigation into minutes of artificial intelligence-assisted threat analysis without replacing the humans who matter most.

The session will explore:

• Why alert fatigue and fragmented tooling are pushing analysts toward burnout;
• How context engineering - feeding LLMs with real-time organizational data, internal procedures and cross-tool telemetry - enables AI to reconstruct complete attack chains;
• How Elastic's Attack Discovery and AI assistant demonstrate this in practice, including cross-platform correlation across EDR, SIEM and cloud tools, automated firewall rule analysis, Jira ticket lookup, and anonymized data handling for privacy-compliant AI workflows.