Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The latest News and Information on Security Incident and Event Management.

Federated Search: Access Data Beyond Your SIEM-Instantly

Apr 29, 2026 By CrowdStrike In CrowdStrike
See how CrowdStrike Falcon Next-Gen SIEM Federated Search enables security teams to access and query data beyond the SIEM—instantly, and without rehydration. In this demo, you’ll learn how to search data directly where it lives, including external sources like Amazon S3, Falcon LogScale, and NDR platforms, using a single query language.
View Video
sumologic

Observability is security (We just pretended it wasn't)

Apr 28, 2026 By David Girvin In Sumo Logic
For years, we’ve drawn this artificial line that equates observability with uptime, performance, and SRE dashboards, while security is about threats, alerts, SIEMs, and “bad things.” While that separation was always convenient, it was never real. The same logs that tell you your service is slow are the same ones that tell you it’s compromised. We just routed them to different teams, different tools, and different budgets, then acted surprised when neither side had the full picture.
Read Post

Ep 40: What to expect when you are expecting an audit

Apr 28, 2026 By Sumo Logic, Inc. In Sumo Logic
On this episode of Masters of Data, we brought back GRC expert Cassandra Mooseburger to pull back the curtain on audits, and spoiler: it is far less scary than the IRS knocking on your door. We break down what actually separates a certification from an attestation from a report, how to run a prep process that does not send your engineering team running for the hills, and why the social capital you build across the business is just as important as the evidence you collect. If you have ever wondered how compliance work translates into closed deals and customer trust, this one connects those dots.
View Video
exabeam

Behavior Intelligence: The New Model for Securing the Agentic Enterprise

Apr 28, 2026 By Exabeam In Exabeam
Behavior Intelligence is a security operations model that detects risk by analyzing behavior, automates investigation and response using AI, and measures whether security outcomes are improving over time. It focuses on how users, systems, and AI agents operate rather than relying only on predefined rules or knowns indicators of compromise. This shift matters because modern attacks rarely look malicious at first. They look normal.
Read Post
exabeam

Five Reasons Security Operations Teams Augment Microsoft Sentinel With New-Scale Analytics

Apr 24, 2026 By Exabeam In Exabeam
Security operations teams face rising alert volumes, tighter staffing, and growing pressure to reduce risk without adding tools or people. If Microsoft Sentinel sits at the center of your environment, you may already see where it helps and where it starts to strain. For many teams, that moment shows up when detections lag, investigations drag, or too much work funnels to a small group of specialists.
Read Post
graylog

An Introduction to the NIST Risk Management Framework (RMF)

Apr 24, 2026 By Jeff Darrington In Graylog
While inherently critical to today’s businesses that run on data, implementing and enforcing data security and privacy has never been straightforward. Between collecting different types of sensitive data and deploying unique architectures, organizations cannot adopt a one-size-fits-all solution, meaning that every security architecture is unique.
Read Post

The New CISO Ep. 144 - Rob Knoblauch | Your Most Valuable Skills Aren't Technical

Apr 23, 2026 By Exabeam In Exabeam
Cybersecurity debates tend to center on tools, frameworks, and threats. But Rob Knoblauch has built a 25-year career in global security leadership by focusing on the soft skills that determine whether a CISO survives, thrives, or burns out. In this episode of The New CISO, Rob joins Steve Moore to trace the through-line from running a multi-node BBS as a kid to serving as Deputy CISO of one of the world’s largest banks — and the career lessons he’s carried through every chapter.
View Video
elastic

Securing air-gapped environments with Elastic on Google Distributed Cloud

Apr 22, 2026 By Jason Pappalexis In Elastic
If you are not using AI to defend against AI, you will lose. But for organizations operating in air-gapped environments, the path to AI-driven defense can be blocked by the very isolation that protects them. Today, we're announcing that Elastic Security is now the embedded security layer for Google Distributed Cloud (GDC) air-gapped environments, expanding our collaboration with Google Cloud.
Read Post
exabeam

OWASP Defines AI Agent Risk. Behavioral Analytics Detects It

Apr 22, 2026 By Exabeam In Exabeam
The OWASP Top 10 for Agentic Applications defines the most common AI agent risks, but real attacks unfold across multiple stages of behavior. Behavioral analytics detects those risks by modeling how users, AI agents, and their interactions change over time. By observing deviations across inputs, processing, and outputs, security operations teams can identify insider‑driven and agent‑driven threats that traditional, event‑based detection misses.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.