%term

The latest News and Information on Security Incident and Event Management.

Why Security Leaders Lose Budget When Security Tools Look the Same

May 20, 2026 By Exabeam In Exabeam

Every CISO has sat in a budget meeting where the conversation quietly pivoted from risk to price. Not because the chief financial officer (CFO) was being difficult. Not because security stopped mattering. But because at some point in the discussion, two platforms started to look identical, and when things look identical, cost becomes the deciding factor. That pivot is where security investment decisions go wrong. Security leaders do not lose budget because financial leaders undervalue security.

Read Post

Exabeam

Read more about Why Security Leaders Lose Budget When Security Tools Look the Same

Ep 43: Who's got your data? Spoiler: Not you

May 19, 2026 By Sumo Logic, Inc. In Sumo Logic

In this episode of Masters of Data, we untangle the often-confused cousins of data sovereignty and data residency, because where your data lives and who actually controls it are two very different conversations. We dig into the real-world headaches facing multinational companies, from incident response teams locked out of sovereign data zones to the bureaucratic gymnastics that ensue when compliance meets practicality.

View Video

Sumo Logic

Read more about Ep 43: Who's got your data? Spoiler: Not you

The cybersecurity nightmare of modern healthcare IT

May 15, 2026 By Tamara Bailey In Sumo Logic

Healthcare organizations are a primary target for cyberattacks. Outdated legacy tech runs rampant, and ransomware attacks are shutting down hospitals, forcing them to revert to paper records and cancel non-emergency procedures. The ripple effects extend beyond the targeted facility, overwhelming neighboring hospitals, putting lives at risk.

Read Post

Sumo Logic

Read more about The cybersecurity nightmare of modern healthcare IT

Understanding the Australian Information Security Manual (ISM)

May 14, 2026 By Jeff Darrington In Graylog

The Essential Eight identifies the most critical cybersecurity risk mitigation controls, providing a set of minimum baseline strategies. As organizations work to mature the security posture, the Essential Eight maturity model offers some options that they can use. However, for organizations that need to implement a more comprehensive security program, the Australian Signals Directorate (ASD) published the Information Security Manual (ISM).

Read Post

Graylog

Read more about Understanding the Australian Information Security Manual (ISM)

The New CISO Ep. 145 - Eric O'Neill | Lessons From a Spy Hunter: The Real Cost of a Breach (Part 1)

May 14, 2026 By Exabeam In Exabeam

What does it feel like to stand in the smoking ruin of a ransomware attack? In this episode, Steve Moore is joined by former FBI undercover operative Eric O'Neill—the man who helped capture Robert Hanssen—to explain why modern cybercrime is just traditional espionage repackaged, and why the dark web has quietly become the world's third-largest economy.

View Video

Exabeam

Read more about The New CISO Ep. 145 - Eric O'Neill | Lessons From a Spy Hunter: The Real Cost of a Breach (Part 1)

What is the OWASP Top 10 Agentic AI

May 11, 2026 By Jeff Darrington In Graylog

Published by the Open Worldwide Application Security Project (OWASP) in 2025, the OWASP Top 10 for Agentic Applications 2026 identifies security risks that organizations need to consider when implementing agentic artificial intelligence (AI) systems. The guide focuses on how threat actors can exploit agentic systems in new ways and on the associated risk mitigation strategies.

Read Post

Graylog

Read more about What is the OWASP Top 10 Agentic AI

AI SOC vs. white box AI: Why black boxes fail in the real world

May 7, 2026 By David Girvin In Sumo Logic

There’s a growing wave of “AI SOC” startups promising autonomous everything. They’ll triage your alerts, investigate threats, and even run your playbooks. Push a button, let the machine handle the mess, and enjoy the magic. It sounds great until the moment something breaks. Then everyone, not just security, asks the same question: “What exactly did it do?” And that’s when these systems turn into a liability.

Read Post

Sumo Logic

Read more about AI SOC vs. white box AI: Why black boxes fail in the real world

Turn security signals into structured investigations with Case Management in Datadog Cloud SIEM

May 5, 2026 By Eitan Moriano In Datadog

Security operations teams manage a high volume of signals, often across multiple tools. Analysts may triage detections in one system, document progress in another, and coordinate remediation elsewhere. As context becomes fragmented, response times slow and the risk of missed threats increases.

Read Post

Datadog

Read more about Turn security signals into structured investigations with Case Management in Datadog Cloud SIEM

Logs & Lattes: Episode 6 - How Small SOC Teams Stop Drowning in Alerts

May 5, 2026 By Graylog In Graylog

Lean security teams don't need a smaller version of an enterprise SOC. They need a different approach entirely. Graylog Director of Product Management, Rich Murphy, joins Logs and Lattes to explain why 2-to-4-person security teams are the most underserved segment in cybersecurity and what needs to change.

View Video

Graylog

Read more about Logs & Lattes: Episode 6 - How Small SOC Teams Stop Drowning in Alerts

Is your SIEM actually ready? A new way to find out

May 4, 2026 By Smriti In Elastic

You've done the work. Logs are flowing. Rules are enabled. Agents are deployed. Dashboards exist. But if your CISO, an auditor, or a red team report asked if your SIEM is ready to detect and respond to the threats that matter, could you answer confidently? Most teams can't.

Read Post