SIEM

The latest News and Information on Security Incident and Event Management.

Understanding Broken Authentication

Mar 4, 2024 By The Graylog Team In Graylog

With authentication, you can face serious consequences if you follow the old motto, “if it ain’t broke, don’t fix it.” From applications to APIs, authentication tells you whether the person or technology accessing a resource is legitimate. In 2017, the Open Worldwide Application Security Project (OWASP), identified broken authentication as #2 on its list of Top 10 application security threats.

Read Post

Graylog

Read more about Understanding Broken Authentication

Elastic introduces Elastic AI Assistant

Mar 4, 2024 By Mike Nichols In Elastic

Elastic® introduces Elastic AI Assistant, the open, generative AI sidekick powered by ESRE to democratize cybersecurity and enable users of every skill level. The recently released Elasticsearch Relevance Engine™ (ESRE™) delivers new capabilities for creating highly relevant AI search applications. ESRE builds on more than two years of focused machine learning research and development made possible through Elastic’s leadership role in search use cases.

Read Post

Elastic

Read more about Elastic introduces Elastic AI Assistant

Graylog V5.2 Demo Tour

Mar 1, 2024 By Graylog In Graylog

Take a 20 Minute demo tour of Graylog and see some of it's features and capabilities in action. View insights on how Graylog can help your IT Operations and IT Security.

View Video

Graylog

Read more about Graylog V5.2 Demo Tour

Meet EO 14028 requirements with Datadog Log Management, Cloud Workload Security, and Cloud SIEM

Mar 1, 2024 By Thomas Sobolik In Datadog

As of August 2023, only 3 out of 23 US government agencies were compliant with Office of Management and Budget (OMB) requirements for log management and security observability. These requirements are outlined in M-21-31, a 2021 memorandum that was issued following Executive Order 14028 on improving national cybersecurity. Until all of these agencies implement the new requirements, the federal government’s ability to fully detect, investigate, and remediate cybersecurity threats will be constrained.

Read Post

Datadog

Read more about Meet EO 14028 requirements with Datadog Log Management, Cloud Workload Security, and Cloud SIEM

DevSecOps best practices for UK businesses

Feb 29, 2024 By Chas Clawson and Janet Alexander In Sumo Logic

We recently spoke to a focus group of security professionals, software engineers and developers for a discussion on DevSecOps. We’ve quoted a few of them throughout this article.

Read Post

Sumo Logic

Read more about DevSecOps best practices for UK businesses

Sumo Logic & Gigamon -- Three Top Security Use Cases

Feb 27, 2024 By Sumo Logic In Sumo Logic

Together, Gigamon and Sumo Logic enable organizations to build an effective and efficient monitoring and security posture. Matt Rosenbaum, Partner Architect at Sumo Logic and Stephen Goudreault, Cloud Security Evangelist from Gigamon cover three top Security Use Cases for this integration. Security Posture Suspicious Activities Rogue Activities As premier AWS partners, you can find both Sumo Logic and Gigamon in the AWS Marketplace.

View Video

Sumo Logic

Read more about Sumo Logic & Gigamon -- Three Top Security Use Cases

Strengthening small utilities: The power of public-private partnership

Feb 16, 2024 By Bill Wright In Elastic

In the wake of recent cyber attacks against US water utilities, the vulnerability of local entities dependent on operational technology (OT) has been starkly highlighted. This danger was further emphasized last week when Congress held a hearing titled Securing Operational Technology: A Deep Dive into the Water Sector. Witnesses at the hearing painted a stark picture of the significant cybersecurity risks facing small utility companies today.

Read Post

Elastic

Read more about Strengthening small utilities: The power of public-private partnership

Tyk Gateway API Calls To Graylog API Security

Feb 15, 2024 By The Graylog Team In Graylog

Application Programming Interfaces (APIs) are the backbone of modern software development, enabling seamless communication between various systems and services. As organizations increasingly rely on APIs to power their applications and services, the need for robust API management and monitoring solutions becomes paramount. Capturing API calls and gaining insights into their behavior can significantly enhance the development, troubleshooting, and security of APIs.

Read Post

Graylog

Read more about Tyk Gateway API Calls To Graylog API Security

The future of cybersecurity: AI and SIEM working together

Feb 14, 2024 By SecuritySenses In SecuritySenses

Imagine a world where your digital security isn't just a tall wall guarding against intruders but a sophisticated AI sentinel, always learning, always adapting. That's the world we're zooming into when we talk about the convergence of AI and Security Information and Event Management (SIEM) systems. This fusion is not just a fancy addition to the cybersecurity toolset; it's rapidly becoming a necessity for businesses that seek to stay ahead in this grand digital chess game against cyber threats. You should consider Exploring the Essentials of SIEM for Business Security further to help you understand better.

Read Post

SecuritySenses

Read more about The future of cybersecurity: AI and SIEM working together

Optimizing the Value of Amazon Security Lake

Feb 13, 2024 By Jeff Darrington In Graylog

So many logs. So little space. If you’re like most people running an Amazon Web Services (AWS) environment, then you probably have a vast collection of log files that include things like VPC flow logs and CloudWatch data. As if that’s not enough, you’re also collecting information about everything and everyone else connected to your cloud, like users, devices, network devices, applications, and APIs.

Read Post