%term

The latest News and Information on Security Incident and Event Management.

Why Most Incident Response Retainers Fail When It Matters Most

Apr 30, 2026 By LevelBlue In LevelBlue

Many companies have an incident response retainer...but it doesn't actually make them risk ready. That's because too many retainers are built on outdated, hour-based "use it or lose it" models that don't actually reduce risk, improve resilience, or focus on outcomes. A modern retainer should drive preparedness, align with today's insurance realities, and actively lower exposure before an incident happens.

View Video

LevelBlue

Read more about Why Most Incident Response Retainers Fail When It Matters Most

How to secure cloud workloads without building a full-scale SOC

Apr 30, 2026 By Adam White In Sumo Logic

You don’t need a 20-person SOC to protect your cloud-native environment. What you need is the right strategy: map your risk, embed security early, automate detection, and let smart tooling do the heavy lifting. Here’s how security and DevOps leaders with limited resources can achieve enterprise-level protection without enterprise-level headcount.

Read Post

Sumo Logic

Read more about How to secure cloud workloads without building a full-scale SOC

Elastic Security: an agentic security operations platform

Apr 29, 2026 By Elastic In Elastic

In this video, we introduce Elastic Security and how it helps modern teams manage security operations more efficiently. It brings together detection, investigation, and response into one unified platform using AI, automation, and integrated security tools. Additional Resources.

View Video

Elastic

Read more about Elastic Security: an agentic security operations platform

The Metric AI Security is Missing

Apr 29, 2026 By Exabeam In Exabeam

As autonomous and semi-autonomous AI systems take on more responsibility within the enterprise, they shift from being “features” of software to becoming true internal actors. They make decisions, take actions, call tools, orchestrate workflows, and influence other AI agents. With this evolution, we must confront an uncomfortable truth: the metrics and response patterns we built for deterministic software no longer work.

Read Post

Exabeam

Read more about The Metric AI Security is Missing

Whole-of-state cyber defense: How AI-driven security helps US states protect what matters most

Apr 29, 2026 By Bobby Suber In Elastic

Short answer: Because attackers exploit fragmentation faster than governments can respond This shift toward collective cyber defense is a cornerstone of the new federal vision. The March 2026 National Cyber Strategy for America explicitly calls for a "new level of relationship between the public and private sectors" and demands "unprecedented coordination across government" to protect the American people.

Read Post

Elastic

Read more about Whole-of-state cyber defense: How AI-driven security helps US states protect what matters most

Augmented SOC Investigations with SOC Analyst Agent - Customer Brown Bag - April 23rd, 2026

Apr 29, 2026 By Sumo Logic, Inc. In Sumo Logic

Join us as Sam steps into the shoes of a SOC analyst and see how Sumo Logic’s SOC Analyst Agent enhances your investigations.

View Video

Sumo Logic

Read more about Augmented SOC Investigations with SOC Analyst Agent - Customer Brown Bag - April 23rd, 2026

Federated Search: Access Data Beyond Your SIEM-Instantly

Apr 29, 2026 By CrowdStrike In CrowdStrike

See how CrowdStrike Falcon Next-Gen SIEM Federated Search enables security teams to access and query data beyond the SIEM—instantly, and without rehydration. In this demo, you’ll learn how to search data directly where it lives, including external sources like Amazon S3, Falcon LogScale, and NDR platforms, using a single query language.

View Video

CrowdStrike

Read more about Federated Search: Access Data Beyond Your SIEM-Instantly

Ep 40: What to expect when you are expecting an audit

Apr 28, 2026 By Sumo Logic, Inc. In Sumo Logic

On this episode of Masters of Data, we brought back GRC expert Cassandra Mooseburger to pull back the curtain on audits, and spoiler: it is far less scary than the IRS knocking on your door. We break down what actually separates a certification from an attestation from a report, how to run a prep process that does not send your engineering team running for the hills, and why the social capital you build across the business is just as important as the evidence you collect. If you have ever wondered how compliance work translates into closed deals and customer trust, this one connects those dots.

View Video

Sumo Logic

Read more about Ep 40: What to expect when you are expecting an audit

Behavior Intelligence: The New Model for Securing the Agentic Enterprise

Apr 28, 2026 By Exabeam In Exabeam

Behavior Intelligence is a security operations model that detects risk by analyzing behavior, automates investigation and response using AI, and measures whether security outcomes are improving over time. It focuses on how users, systems, and AI agents operate rather than relying only on predefined rules or knowns indicators of compromise. This shift matters because modern attacks rarely look malicious at first. They look normal.

Read Post

Exabeam

Read more about Behavior Intelligence: The New Model for Securing the Agentic Enterprise

Observability is security (We just pretended it wasn't)

Apr 28, 2026 By David Girvin In Sumo Logic

For years, we’ve drawn this artificial line that equates observability with uptime, performance, and SRE dashboards, while security is about threats, alerts, SIEMs, and “bad things.” While that separation was always convenient, it was never real. The same logs that tell you your service is slow are the same ones that tell you it’s compromised. We just routed them to different teams, different tools, and different budgets, then acted surprised when neither side had the full picture.

Read Post