Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Logging

Secure Your Cloud Transformation with Continuous Intelligence

Dec 15, 2020 By Sumo Logic In Sumo Logic
CrowdStrike and Sumo Logic work together to identify security threats and defend against IOCs in a hybrid environment. Customers gain knowledge on adversaries which may be targeting their assets and organisation via strategic, operational and technical reporting and alerts. During this session, we’ll hear from Australian private health provider, NIB, on how Sumo Logic and CrowdStrike have worked together to help NIB secure its digital transformation and cloud environment.
View Video
graylog

SUNBURST Backdoor: What to look for in your logs now - Interview with an incident responder

Dec 15, 2020 By Lennart Koopmann In Graylog

Yesterday, FireEye published a report about a global intrusion campaign that utilized a backdoor planted in SolarWinds Orion. Attackers gained access to the download servers of Orion. They managed to infect signed installers downloaded by Orion users who had all reason to believe that the packages are safe and had not been tampered with. With this information out in the world, teams are scrambling to investigate if their environments are affected by this breach.

Read Post
elastic

Elastic on Elastic: How InfoSec deploys infrastructure and stays up-to-date with ECK

Dec 9, 2020 By Angel Rios In Elastic

This post is part of a blog series highlighting how we embrace the solutions and features of the Elastic Stack to support our business and drive customer success. The Elastic InfoSec Security Engineering team is responsible for deploying and managing InfoSec's infrastructure and tools. At Elastic, speed, scale, and relevance is our DNA and leveraging the power of the Elastic Stack is the heart of InfoSec.

Read Post
sumologic

Building your modern cloud SIEM

Dec 8, 2020 By Chas Clawson In Sumo Logic
SIEM has traditionally earned itself a bad reputation as an unwieldy and unmanageable tool that really never lived up to its promises. In my presentation during Illuminate, I talked about what Sumo Logic is doing to modernize log analytics and SIEM as a whole. Today, we see that despite how overall technology is accelerating, security always seems to lag behind. In Sumo Logic, we address this head-on.
Read Post
elastic

Testing your Okta visibility and detection with Dorothy and Elastic Security

Dec 8, 2020 By David French In Elastic

When approached by stakeholders in their organization, few security teams can confidently demonstrate that logging and alerting capabilities are working as expected. Organizations have become more distributed and reliant on cloud offerings for use cases such as identity and access management, user productivity, and file storage. Meanwhile, adversaries have extended their operational capabilities in cloud environments.

Read Post
devo

What the Convergence of Security and Operations Means for Your Organization

Dec 8, 2020 By Paco Huerta In Devo

These are incredibly exciting times at Devo, as we continue to help customers solve their ever-growing security and analytics challenges. Our market momentum is continuing, as Devo was recently recognized with a CISO Choice award as the best SIEM solution, earned a place on the 2020 Deloitte Technology Fast 500, and was named a Leader in The Forrester Wave™: Artificial Intelligence For IT Operations, Q4 2020.

Read Post

Building your modern SIEM, Unique security requirements for cloud and modern technologies

Dec 3, 2020 By Sumo Logic In Sumo Logic
Digital transformation has changed the attack surface, and organizations are generating more data than ever before. What does this mean from a security standpoint? Attend this session and hear more about what makes a modern SaaS SIEM solution and why it’s critical for detecting threats across your hybrid and multi-cloud infrastructures. Finally, we’ll explore what tomorrow’s SIEM might look like.
View Video
devo

The Third Critical Step to Building the Modern SOC

Dec 3, 2020 By Kevin Flanagan In Devo

The new Devo eBook, Building the Modern SOC, presents four evolutionary steps for creating a highly automated and efficient security operations center (SOC) that empowers analysts. This is the third in a series of posts highlighting the most important elements of the four steps. Previous posts covered Step 1, establishing a foundation of centralized, scalable visibility, and Step 2, extracting intelligent insights from your data.

Read Post
splunk

Something Else To Be Thankful For: Splunk Security Essentials 3.2.2

Dec 3, 2020 By Johan Bjerke In Splunk

Well, it’s been a while since you read a blog dedicated to the latest release – okay, the latest several releases – of Splunk Security Essentials (SSE). We have been busy behind the scenes, however, so let’s catch you up on SSE’s latest features, which include the new version of our content API, and externally with updates from MITRE and the release of ATT&CK v7.2 (with Sub-Techniques) and ATT&CK v8.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.