SIEM

The latest News and Information on Security Incident and Event Management.

Modernize your Security Operations with Elastic Security

Aug 29, 2023 By Elastic In Elastic

Cybersecurity is evolving. Protection needs to be dynamic. Investigation… faster. An effective response requires accurate context. Modernizing your security operations with Elastic extends security visibility, uncovers potential threats, and integrates with existing security systems — for a swift and proactive response. Everything you need on one open and unified platform, built for the hybrid cloud. Elastic Security empowers your business to achieve more even in the most complex digital environments.

View Video

Elastic

Read more about Modernize your Security Operations with Elastic Security

Why your security analytics needs proactive threat hunting

Aug 24, 2023 By Christopher Beier and Janet Alexander In Sumo Logic

Even the mightiest, most prestigious companies and enterprises are not exempt from the advanced threats of cyber attackers. In the ever-evolving cybersecurity threat landscape, an organization's security team like yours needs robust security measures for network security, endpoint security, threat detection, anomaly detection, data protection, security monitoring, application security and information security.

Read Post

Sumo Logic

Read more about Why your security analytics needs proactive threat hunting

CrowdStrike Falcon LogScale Demo

Aug 23, 2023 By CrowdStrike In CrowdStrike

We've always said, "You don’t have a malware problem, you have an adversary problem." Watch to find out how to detect, investigate and hunt for advanced adversaries with Falcon LogScale. You'll see firsthand how Falcon LogScale accelerates security operations to stop breaches with petabyte-scale log management and lightning-fast search that's up to 150x faster than traditional SIEMs.

View Video

CrowdStrike

Read more about CrowdStrike Falcon LogScale Demo

MDR vs MSSP vs SIEM - a guide for threat detection

Aug 22, 2023 By Mark Nicholls In Redscan

In this article, we aim to cut through the jargon by outlining how these solutions compare, their potential challenges and their impact on organisations’ security posture.

Read Post

Redscan

Read more about MDR vs MSSP vs SIEM - a guide for threat detection

What's next: Black Hat 2023 takeaways

Aug 22, 2023 By Mark Settle In Elastic

Black Hat USA 2023 showcased advancements in cybersecurity and provided a platform for cutting-edge research. This blog recaps highlights from the event, exploring major trends and examining how they may shape the field in the coming months and years.

Read Post

Elastic

Read more about What's next: Black Hat 2023 takeaways

An Introduction to Application Security

Aug 21, 2023 By Jeff Darrington In Graylog

While security teams may “run on Dunkin’,” companies run on applications. From Salesforce and Hubspot to ServiceNow and Jira, your organization relies on a complex, interconnected application ecosystem. In 2022, organizations used an average of 130 Software-as-a-Service (SaaS) applications. While these technologies enabled them to reduce costs and achieve revenue targets, they created new security risks.

Read Post

Graylog

Read more about An Introduction to Application Security

Integrate Sigma detection rules with Datadog Cloud SIEM

Aug 21, 2023 By Nimisha Saxena In Datadog

As organizations grow, they naturally need to analyze logs from more data sources. But as these data sources expand in number and type, it becomes more difficult for teams to scale their security detection rules to keep up with the ever-changing threat landscape. Sigma is an open source project that aims to address this challenge. By leveraging the expertise of the open source community, Sigma enables security teams to implement out-of-the-box rules that cover a wide range of threat scenarios.

Read Post

Datadog

Read more about Integrate Sigma detection rules with Datadog Cloud SIEM

Sumo Logic Customer Brown Bag - Security - MITRE ATT&CK - August 15, 2023

Aug 18, 2023 By Sumo Logic In Sumo Logic

In this session, David and Peter walk us through Sumo's new MITRE ATT&CK Coverage Explorer.

View Video

Sumo Logic

Read more about Sumo Logic Customer Brown Bag - Security - MITRE ATT&CK - August 15, 2023

Threat hunting with Sumo Logic: The Command Line

Aug 17, 2023 By Anton Ovrutsky In Sumo Logic

Consider the following scenario: you are asked by your leadership to find dedicated time for threat hunting activities within your network. After some time, access to the shiny new tool of choice is granted and you are super excited to get started. You log into the tool and are greeted with a lovely search bar; how do you proceed from here? The tool presenting the blank search bar is undoubtedly powerful and feature packed.

Read Post

Sumo Logic

Read more about Threat hunting with Sumo Logic: The Command Line

Centralized Log Management for TISAX Compliance

Aug 16, 2023 By The Graylog Team In Graylog

The Trusted Information Security Assessment Exchange (TISAX) is the certification process for engaging in the Verband der Automobilindustrie (VDA), the German Association of the Automotive Industry, Information Security Assessment (ISA). The ENX Association, a collection of automobile manufacturers, suppliers, and four national automotive associations, established TISAX to create an overarching industry standard and make reporting more efficient.

Read Post