%term

The latest News and Information on Security Incident and Event Management.

Top 10 SIEM best practices for modern security operations

Jan 13, 2026 By Sridhar Karnam In Sumo Logic

Nowadays, it’s not uncommon for enterprise IT leaders to find themselves in a situation that seems like a catch-22. On one hand, they’re expected to make data-driven decisions that improve productivity and profitability in a business. On the other, they’re preoccupied with their core responsibilities such as protecting critical systems, maintaining network security, and accelerating investigations when a security event occurs. Traditional tooling won’t keep up with modern systems.

Read Post

Sumo Logic

Read more about Top 10 SIEM best practices for modern security operations

Decoding the 2025 MITRE ATT&CK Evals: A Call for Clarity and a Guide for Analysts

Jan 13, 2026 By Exabeam In Exabeam

The latest MITRE ATT&CK Enterprise Evaluations are out, featuring scenarios that emulate sophisticated actors like Scattered Spider and Mustang Panda. While every release of the findings is a significant event for the security community, this year’s evaluation highlights both new and recurring concerns for security professionals.

Read Post

Exabeam

Read more about Decoding the 2025 MITRE ATT&CK Evals: A Call for Clarity and a Guide for Analysts

Using LLMs, CVSS, and SIEM Data for Runtime Risk Prioritization

Jan 13, 2026 By Jeff Darrington In Graylog

A recent University of North Carolina Wilmington study tested whether general-purpose large language models could infer CVSS v3.1 base metrics using only CVE description text, across more than 31,000 vulnerabilities. The results show measurable progress, but they also expose a hard limit that matters far more than model selection: Model quality helps, but missing context sets a ceiling on reliability.

Read Post

Graylog

Read more about Using LLMs, CVSS, and SIEM Data for Runtime Risk Prioritization

EventSentry v6.0: New Features Overview

Jan 13, 2026 By NETIKUS.NET LTD In EventSentry

Introduction video showcasing the main new features in EventSentry v6.0, including native Azure log support, HEC, digital log signing, oauth support, location filtering, sigma and more.

View Video

EventSentry

Read more about EventSentry v6.0: New Features Overview

EventSentry Training [05-05]: HTTP Receiver (HEC) / Network Services

Jan 13, 2026 By NETIKUS.NET LTD In EventSentry

How to setup EventSentry to collect (receive) logs in JSON format from remove devices via the HTTPS protocol (aka HEC).

View Video

EventSentry

Read more about EventSentry Training [05-05]: HTTP Receiver (HEC) / Network Services

EventSentry Training [08-12]: Digitally Signing Event Logs

Jan 13, 2026 By NETIKUS.NET LTD In EventSentry

How to digitally sign event logs and Syslog data with EventSentry.

View Video

EventSentry

Read more about EventSentry Training [08-12]: Digitally Signing Event Logs

PGA of America Trusts LevelBlue as Official Cybersecurity Advisor

Jan 12, 2026 By LevelBlue In LevelBlue

LevelBlue and the PGA of America share a commitment to excellence under pressure. As the Official Cybersecurity Advisor of the PGA of America, LevelBlue brings championship standards of protection, continuity, and trust to the organizations that keep the game - and business - moving forward. From fairways to firewalls, LevelBlue safeguards mission-critical operations, member data, and high-profile events with always-on defense, accelerated response, and expert-led security operations powered by AI-driven threat intelligence.

View Video

LevelBlue

Read more about PGA of America Trusts LevelBlue as Official Cybersecurity Advisor

Cyber Resilience, AI Threats & Business Impact: Findings from 2025 LevelBlue Futures Report

Jan 9, 2026 By LevelBlue In LevelBlue

Cyberattacks are evolving fast; powered by AI, deepfakes, ransomware, phishing, and growing software supply chain risk. So how prepared is your organization? In this webcast, we breakdown key findings from the 2025 LevelBlue Futures Report (in partnership with FT Longitude). The report is based on a global survey of 1,500 C-suite and senior executives across 16 countries and seven industries, including healthcare, financial services, energy, and manufacturing.

View Video

LevelBlue

Read more about Cyber Resilience, AI Threats & Business Impact: Findings from 2025 LevelBlue Futures Report

The New CISO Podcast Ep. 139 - Alex Rice | Safety Third: Why Security Shouldn't Be Your Top Priority

Jan 8, 2026 By Exabeam In Exabeam

In this episode of The New CISO, host Steve Moore speaks with Alex Rice, Founder, CTO, and CISO at HackerOne, about challenging one of cybersecurity's most deeply held beliefs—that security should be the top priority. Drawing from his journey building security programs at Facebook and founding HackerOne, Alex introduces the "safety third" philosophy and explains why accepting that security is never first can actually make you more effective as a leader.

View Video

Exabeam

Read more about The New CISO Podcast Ep. 139 - Alex Rice | Safety Third: Why Security Shouldn't Be Your Top Priority

Why AI Transformations in Security Fail Like New Year's Gym Resolutions

Jan 7, 2026 By The Graylog Product Team In Graylog

Enterprise AI adoption moved fast. Speed mattered. Shipping mattered. Getting AI into production mattered. That phase is over. Security leaders are now asking a harder question: whether the AI already embedded in security operations is safe, explainable, and aligned with how modern SOC teams actually work. The focus has shifted from adoption to trust, specifically explainability, governance, and operational fit.

Read Post