Dynatrace has introduced an advanced investigation feature for its Security Investigator tool to enhance the process of solving incidents and finding root causes by integrating performance metrics with log analysis. This feature allows users to gain faster insights into system performance during incidents by correlating logs with metrics such as CPU utilization. Users can easily visualize CPU usage in the context of specific log records by selecting relevant dimensions like pods, containers, or hosts, and modifying the aggregation function or visible metric as needed. The Security Investigator tool is part of the Dynatrace suite and leverages the Grail® data lakehouse to provide evidence-driven security solutions, enabling users to persistently analyze performance charts alongside logs across different nodes in a query tree. This integration helps users not only understand system behavior during incidents but also connect related events, such as network flow logs, to CPU usage for a comprehensive analysis.