SIEM

The latest News and Information on Security Incident and Event Management.

The Devo Platform: An Integrated SaaS SIEM | SOAR | UEBA | AI Solution

May 4, 2023 By Devo In Devo

People or AI? YES. Is your organization equipped to handle today's and tomorrow’s threats with your existing security team or with artificial intelligence? The answer is YES. Yes, to both of them. Yes, to all of it. Whether it’s dealing with the constantly evolving threatscape or the shortage of affordable, available cyber professionals, leadership needs to fill the gap with people and AI. It’s not either/or.

View Video

Devo

Read more about The Devo Platform: An Integrated SaaS SIEM | SOAR | UEBA | AI Solution

What is Cloud Security Posture Management (CSPM)?

May 4, 2023 By Elastic In Elastic

99% of cloud failures are due to mistakes like misconfiguration. This begs the question: Are your cloud workloads configured correctly? Learn how cloud security posture management, one of Elastic’s new capabilities, can help you modernize your cloud security operations.

View Video

Elastic

Read more about What is Cloud Security Posture Management (CSPM)?

How to Modernize Your Cloud Security Ops with Cloud Workload Protection

May 4, 2023 By Elastic In Elastic

95% of workloads will be deployed on cloud-native platforms by 2025. This begs the question: are your cloud workloads truly secure? Learn how cloud workload protection, one of Elastic’s new capabilities, can help you modernize your cloud security operations.

View Video

Elastic

Read more about How to Modernize Your Cloud Security Ops with Cloud Workload Protection

Fine-tuning Cloud SIEM detections through machine learning

May 4, 2023 By Bashyam Anant and Sourabh Bhosale In Sumo Logic

Security engineering teams spend hours every week tuning their security information and event management (SIEM) systems to ensure that they are effective at detecting security threats and minimizing false positives. Such “tuning tax” is common as customers add new SIEM rules to cope with rapidly changing threat landscape and attacker tactics and as their attack surface evolves through automated changes to their application and infrastructure stacks.

Read Post

Sumo Logic

Read more about Fine-tuning Cloud SIEM detections through machine learning

Industrial control systems security with Elastic Security and Zeek

May 4, 2023 By Abdelwahhab Satta, Octodet, In Elastic

Industrial control systems (ICS) have historically been isolated and less interconnected. Isolation was one of the things that kept these systems more secure behind air gaps, at the cost of lost coordination and collaboration. This is rapidly changing with the rise of Industry 4.0 with increased interconnectivity and integration of smart technologies like Industrial IoT (IIoT) and cloud computing in modern industrial processes.

Read Post

Elastic

Read more about Industrial control systems security with Elastic Security and Zeek

National Cybersecurity Deep Dive: Invest in a Resilient Future and Forge International Partnerships

May 2, 2023 By John Allison In Devo

The first three pillars of the National Cyber Security Strategy focused on activities that could be accomplished in the near term–perhaps within a few years. The last two pillars start looking at some challenges that we need to address now.

Read Post

Devo

Read more about National Cybersecurity Deep Dive: Invest in a Resilient Future and Forge International Partnerships

Elastic Security in the open: Empowering security teams with prebuilt protections

Apr 28, 2023 By Kseniia Ignatovych, In Elastic

Elastic Security now comes with 1,100+ prebuilt detection rules for Elastic Security users to set up and get their detections and security monitoring going as soon as possible. Of these 1,100+ rules, more than 760 are SIEM detection rules considering multiple log-sources — with the rest running on endpoints utilizing Elastic Security for Endpoint.

Read Post

Elastic

Read more about Elastic Security in the open: Empowering security teams with prebuilt protections

Micro Lesson: Cloud SIEM Global Intelligence for Security Insights

Apr 28, 2023 By Sumo Logic In Sumo Logic

Learn about Sumo Logic's Global Intelligence for Security Insights system, which "crowdsources" cybersecurity information from customers around the globe to provide accurate confidence scores for security insights.

View Video

Sumo Logic

Read more about Micro Lesson: Cloud SIEM Global Intelligence for Security Insights

CS Brown Bag 4 25 Observability

Apr 26, 2023 By Sumo Logic In Sumo Logic

Brown Bag Session focused on security delivered by Pawel Dukat - April 25, 2023.

View Video

Sumo Logic

Read more about CS Brown Bag 4 25 Observability

Building a cybersecurity plan for the State and Local Cybersecurity Grant Program (SLCGP)

Apr 24, 2023 By Sean Torassa In Elastic

For state and tribal governments thinking about applying for — or that have already applied for — funding from the US federal State and Local Cybersecurity Grant Program (SLCGP) or Tribal Cybersecurity Grant Program (TCGP), you likely already know that building out a comprehensive cybersecurity plan is a required element in the process. If you’ve already submitted your application for fiscal year 2022 funding, you have until the end of September 2023 to submit your cybersecurity plan.

Read Post