Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

sumologic

Why your security needs a modern SIEM solution

Nov 13, 2025 By Sridhar Karnam In Sumo Logic
Not investing in a Security Incident and Event Management (SIEM) solution means you’re missing out on significant business benefits. A SIEM platform provides real-time detection and response to security incidents, helping you reduce the risk of costly compliance violations. Combine that with SIEM use cases such as consolidating and streamlining reporting, and your security team saves time and operational costs.
Read Post
sumologic

Faster security investigation with Cloud SIEM playbooks

Nov 6, 2025 By Peter Kazmir In Sumo Logic
Playbooks — and automated processes in general — were once primarily associated with security orchestration, automation and response (SOAR) platforms, but that has changed recently. Many modern security information and event management (SIEM) solutions have started incorporating SOAR-like functionality, enabling you to automate security workflows and improve your mean time to detect (MTTD) and mean time to respond (MTTR).
Read Post
sumologic

Why the Gartner Critical Capabilities for SIEM report belongs in every buyer's toolkit

Oct 30, 2025 By Christopher Beier In Sumo Logic
Have you ever wished for a tool that could guide you, even on the foggiest days? That was my father’s compass. He carried it not because it told him where he was, but because it reminded him where true north was. I spent twelve years in the U.S. Navy as a cybersecurity practitioner, and that same compass has stayed with me. And in the world of SIEM and threat detection, the Gartner Critical Capabilities for Security Information and Event Management (SIEM) report feels like that compass.
Read Post

Ep 15: Beginner's guide to security tools

Oct 21, 2025 By Sumo Logic, Inc. In Sumo Logic
In this episode, we run through our beginner's guide to security tools, emphasizing the importance of people, processes, and technology. We chat about the NIST framework as a foundational resource for building security programs, highlighting key steps such as identifying and managing risks. We also discuss basic tools like password managers and multifactor authentication as essential for enhancing security, particularly against threats like phishing. Finally, we explore the integration of AI in security and its potential to improve efficiency while maintaining human oversight.
View Video

Ep 14: Security IS observability: Prove us wrong

Oct 17, 2025 By Sumo Logic, Inc. In Sumo Logic
In this episode, we discuss the critical intersection of security and observability within organizations. We highlight the often contentious relationship between security analysts and SREs, emphasizing the importance of fostering a collaborative culture to effectively address incidents. All teams should focus on solutions rather than blame, as user experience is affected by both security and infrastructure issues. We explore how to break down silos, especially in the context of AI security, and encourage cross-disciplinary learning to enhance overall security practices.
View Video
sumologic

Ten modern SIEM use cases at cloud scale

Oct 2, 2025 By Sridhar Karnam In Sumo Logic
The role of SIEM has never gone away. From the beginning, it’s been the backbone of security operations: the system where logs converge, alerts are analyzed, and incidents are investigated. What’s changed is our ability to use it correctly. Legacy, traditional SIEM tools forced trade-offs. Teams filtered data at ingest, dropped logs to control costs, or siloed analytics into disconnected point tools. The result was a SIEM that felt heavy, reactive, and underwhelming.
Read Post
sumologic

OCSF for Security Hub: Sumo Logic and AWS speaking the same language

Sep 30, 2025 By Christopher Beier In Sumo Logic
In technology, the proof of a lasting relationship is in the infrastructure — the pipelines, security services, and log plumbing have to work seamlessly together long before anyone sees the outcome. That’s precisely what Sumo Logic and AWS have built. Aligned around open standards like OCSF (Open Cybersecurity Schema Framework), integrated with services like Security Hub and GuardDuty, and connected through shared telemetry, it makes cloud security and observability possible at scale.
Read Post
sumologic

Welcome to Dojo AI: Where AI agents strengthen your SOC

Sep 22, 2025 By Christopher Beier In Sumo Logic
For too long, security has been defined by reaction, responding to every alert, chasing every anomaly, burning time and energy without clarity. But the strongest fighters don’t swing at every feint. They train, prepare, and conserve their energy for the moments that matter. That’s not just strength; that’s resilience. Now, this philosophy has entered the SOC. And it has a name: Sumo Logic Dojo AI.
Read Post

Ep 10: AI in the SOC

Sep 22, 2025 By Sumo Logic, Inc. In Sumo Logic
In this episode, we explore how AI is transforming security operations centers (SOCs) from basic log-watching teams into sophisticated threat-hunting command centers drowning in data. AI excels at processing security alerts faster than any human, but the challenge lies in balancing our growing dependence on algorithmic assistance with the irreplaceable value of human intuition in outsmarting creative attackers.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.