%term

The latest News and Information on Security Incident and Event Management.

Selecting SIEM Tools - Questions to Consider

Jul 13, 2022 By Graylog In Graylog

So, you’ve done your homework. You’ve clearly defined business requirements, and you think you want to implement a Security Information and Event Management (SIEM) solution into your organization. Cloud migration and remote work have changed the way threat actors attack, and it feels like every day you read about a new methodology. While a lot of companies added a SIEM to their cybersecurity technology stack, you’re not sure whether you can afford one.

Read Post

Graylog

Read more about Selecting SIEM Tools - Questions to Consider

The Role of Community in the Journey to the Autonomous SOC

Jul 12, 2022 By Devo In Devo

No security team — at least no effective security team — can operate successfully in a silo. Even expert teams know the value of leveraging the power of the community to build effective security content, share intelligence, and keep current with best practices.

Read Post

Devo

Read more about The Role of Community in the Journey to the Autonomous SOC

New 1Password SIEM integration with Sumo Logic and Panther

Jul 12, 2022 By Matt O'Leary In 1Password

Reduce the time your team spends investigating security issues by using a customizable dashboard that shows your organization’s entire security posture. With the new Sumo Logic and Panther integrations for 1Password, you can monitor potential risks around company data or credentials stored within 1Password.

Read Post

1Password

Read more about New 1Password SIEM integration with Sumo Logic and Panther

geeks+gurus: SOAR: SOC Automation at its finest

Jul 7, 2022 By Sumo Logic In Sumo Logic

In this 25-minute conversation, Enrico Benzoni interviews Dario Forte, Michele Zambelli and Andrea Fumagalli, to discuss the role of automation in today's cybersecurity landscape. Where is SOAR headed in 2022? How long does it take to get a SOAR project off the ground?

View Video

Sumo Logic

Read more about geeks+gurus: SOAR: SOC Automation at its finest

geeks+gurus: Cloud Migration

Jul 7, 2022 By Sumo Logic In Sumo Logic

Join the geeks+gurus of Sumo Logic for an interactive conversation on how cloud migration helps businesses innovate faster, modernize aging infrastructure, scale globally, and get continuous real-time insights—even from complex, multi-cloud architectures.

View Video

Sumo Logic

Read more about geeks+gurus: Cloud Migration

End to End Incident Response Using Elastic Security

Jul 7, 2022 By Elastic In Elastic

Join James Spiteri, PMM Director for Elastic Security, as he walks through an entire incident response scenario using several features of the Elastic Search platform including Security features such as SIEM, Endpoint Security, osquery, correlation and case management. Observability features such as logging and APM are also covered as part of this investigative workflow. Additional References.

View Video

Elastic

Read more about End to End Incident Response Using Elastic Security

5 Telltale Signs You're Running a Cloud-Hosted - not a Cloud-Native - SIEM

Jul 6, 2022 By Mickey Perre In Devo

The necessity of a SIEM for organizations and their security teams has evolved dramatically over time. It has gone from edge use cases and compliance to the current form of threat detection, incident response, and threat hunting. As the use cases have changed, so has the architecture. As a result, organizations that have been quite familiar with running their SIEM on-premises are now looking for modern architectures to reduce the workload on their analysts. The simple choice: SaaS, of course.

Read Post

Devo

Read more about 5 Telltale Signs You're Running a Cloud-Hosted - not a Cloud-Native - SIEM

Are your credentials safe? Decoding credential phishing attacks

Jul 1, 2022 By General In ManageEngine

Companies have increasingly allowed bring your own device (BYOD) policies to support remote work, but in today’s cybersecurity landscape, this trend has led to an increased attack surface. Each additional endpoint increases the potential for credentials to be compromised through credential phishing attacks. Hackers are leveraging this trend to conduct insider attacks, leaving businesses vulnerable to data breaches.

Read Post