SIEM

The latest News and Information on Security Incident and Event Management.

10 rules for security leadership

Aug 30, 2023 By Mandy Andress In Elastic

I have worked as a security leader since the early commercial days of the internet, where the CISO role only existed in some areas of financial services. Participating in the growth and maturity of security as a business function has been an amazing journey. I have learned a lot of lessons on my own, through my personal experiences, or via my peers. One thing I was not able to do was learn from experienced CISOs that have time and distance to reflect on how to best be successful as a CISO.

Read Post

Elastic

Read more about 10 rules for security leadership

What to expect when you're expecting a cybersecurity audit for compliance

Aug 30, 2023 By JT Rakitan In Sumo Logic

What to expect when you’re expecting a cybersecurity audit for compliance A cybersecurity audit is a structured evaluation or assessment conducted to determine an organization's level of compliance with relevant cybersecurity regulations, industry standards and internal policies. Read on to learn what an audit is looking for, the challenges of an audit, how to prepare for one, and the tools that can help your organization get ready.

Read Post

Sumo Logic

Read more about What to expect when you're expecting a cybersecurity audit for compliance

Modernize your Security Operations with Elastic Security

Aug 29, 2023 By Elastic In Elastic

Cybersecurity is evolving. Protection needs to be dynamic. Investigation… faster. An effective response requires accurate context. Modernizing your security operations with Elastic extends security visibility, uncovers potential threats, and integrates with existing security systems — for a swift and proactive response. Everything you need on one open and unified platform, built for the hybrid cloud. Elastic Security empowers your business to achieve more even in the most complex digital environments.

View Video

Elastic

Read more about Modernize your Security Operations with Elastic Security

Why your security analytics needs proactive threat hunting

Aug 24, 2023 By Christopher Beier and Janet Alexander In Sumo Logic

Even the mightiest, most prestigious companies and enterprises are not exempt from the advanced threats of cyber attackers. In the ever-evolving cybersecurity threat landscape, an organization's security team like yours needs robust security measures for network security, endpoint security, threat detection, anomaly detection, data protection, security monitoring, application security and information security.

Read Post

Sumo Logic

Read more about Why your security analytics needs proactive threat hunting

CrowdStrike Falcon LogScale Demo

Aug 23, 2023 By CrowdStrike In CrowdStrike

We've always said, "You don’t have a malware problem, you have an adversary problem." Watch to find out how to detect, investigate and hunt for advanced adversaries with Falcon LogScale. You'll see firsthand how Falcon LogScale accelerates security operations to stop breaches with petabyte-scale log management and lightning-fast search that's up to 150x faster than traditional SIEMs.

View Video

CrowdStrike

Read more about CrowdStrike Falcon LogScale Demo

MDR vs MSSP vs SIEM - a guide for threat detection

Aug 22, 2023 By Mark Nicholls In Redscan

In this article, we aim to cut through the jargon by outlining how these solutions compare, their potential challenges and their impact on organisations’ security posture.

Read Post

Redscan

Read more about MDR vs MSSP vs SIEM - a guide for threat detection

What's next: Black Hat 2023 takeaways

Aug 22, 2023 By Mark Settle In Elastic

Black Hat USA 2023 showcased advancements in cybersecurity and provided a platform for cutting-edge research. This blog recaps highlights from the event, exploring major trends and examining how they may shape the field in the coming months and years.

Read Post

Elastic

Read more about What's next: Black Hat 2023 takeaways

An Introduction to Application Security

Aug 21, 2023 By Jeff Darrington In Graylog

While security teams may “run on Dunkin’,” companies run on applications. From Salesforce and Hubspot to ServiceNow and Jira, your organization relies on a complex, interconnected application ecosystem. In 2022, organizations used an average of 130 Software-as-a-Service (SaaS) applications. While these technologies enabled them to reduce costs and achieve revenue targets, they created new security risks.

Read Post

Graylog

Read more about An Introduction to Application Security

Integrate Sigma detection rules with Datadog Cloud SIEM

Aug 21, 2023 By Nimisha Saxena In Datadog

As organizations grow, they naturally need to analyze logs from more data sources. But as these data sources expand in number and type, it becomes more difficult for teams to scale their security detection rules to keep up with the ever-changing threat landscape. Sigma is an open source project that aims to address this challenge. By leveraging the expertise of the open source community, Sigma enables security teams to implement out-of-the-box rules that cover a wide range of threat scenarios.

Read Post