Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

datadog

Migrate from your existing SIEM and quickly onboard security teams with Datadog Cloud SIEM

Jul 3, 2025 By Vera Chan In Datadog
Many organizations face significant challenges with onboarding teams to a new or existing SIEM. Security teams grapple with escalating expenses tied to data ingestion, storage, and retention at scale. Steep learning curves can make setup an ongoing and frustrating chore, leading to mistakes and gaps in coverage. Further, SIEMs with constrained ecosystem integrations block users from the tools and customizable workflows they need and are comfortable with.
Read Post
datadog

Normalize your data with the OCSF Common Data Model in Datadog Cloud SIEM

Jun 25, 2025 By Eitan Moriano In Datadog
Security teams rely on SIEMs to aggregate and analyze data from a wide range of sources, including cloud environments, identity providers, endpoint protection platforms, network appliances, SaaS apps, and more. But every source delivers logs in its own format, with different field names, structures, and semantics. This fragmentation makes it difficult to build scalable, reusable detection rules or correlate threats across systems.
Read Post

Security and SRE: An Example from Datadog's Combined Approach

Jun 23, 2025 By Datadog In Datadog
In most companies, Security and SRE organizations are distinctly separate entities and often fall under different executive branches of the company. The work of Security and SRE organizations may appear different, but their goals are the same: keep the company running. This separated structure hinders collaboration, but what if you could change it? Over the past year, Datadog has joined our SRE and Security teams together in a single organization unifying all aspects of reliability.
View Video
datadog

Build, test, and scale detections as code with Datadog Cloud SIEM

Jun 11, 2025 By Nimisha Saxena In Datadog
Security teams often struggle to keep up with rapidly evolving threats, especially when they have to manually manage detection rules. Without automation or version control, it's difficult to maintain consistency across environments, track changes, or deploy updates quickly. Datadog Cloud SIEM supports detection as code, a structured approach to authoring, testing, deploying, and managing detection rules using code and infrastructure-as-code tools like Terraform.
Read Post
datadog

Automate Cloud SIEM investigations with Bits AI Security Analyst

Jun 10, 2025 By Vera Chan In Datadog
Security analysts face unprecedented challenges in today's cloud landscape. Security operations center (SOC) teams are chronically understaffed, and cybersecurity threats are skyrocketing—further intensified by GenAI-driven attacks. High false positive rates add to this strain, fueling alert fatigue and delaying the detection of real threats. These hurdles make it harder for analysts to keep pace, which ultimately drives up mean time to resolution (MTTR).
Read Post
datadog

Centrally process and govern your logs in Datadog before sending them to Microsoft Sentinel or Google SecOps

Jun 4, 2025 By Martin Tournier In Datadog
Organizations rely on best-in-class solutions for observability and security, and various teams within an organization often have preferences for different platforms. For example, your security team may use a SIEM platform like Microsoft Sentinel and Google Security Operations (SecOps) to detect and investigate threats, while your DevOps teams use Datadog Log Management for real-time troubleshooting and monitoring.
Read Post
datadog

Simplifying the shared responsibility model: How to meet your cloud security obligations

May 21, 2025 By Lars Kamp In Datadog
The shared responsibility model, introduced by AWS in 2011, defines the division of cloud security responsibilities between cloud providers and customers. Cloud providers are responsible for securing their physical infrastructure, while customers are responsible for securing their own data, configurations, and access. Cloud environments have grown and become much more complex since 2011.
Read Post
datadog

Amazon SES monitoring: Detect phishing campaigns in the cloud

May 19, 2025 By Mallory Mooney In Datadog
Amazon Simple Email Service (Amazon SES) is a cloud-based provider for sending transactional, marketing, and newsletter emails. Because of its role as a source of communication for organizations, Amazon SES has become a primary tool for phishing campaigns. Our latest threat roundup includes a key finding that Amazon SES is a common target in the initial stages of a cloud control plane attack.
Read Post
datadog

Cloud SIEM and Flex Logs: Enhanced security insights for the cloud

May 14, 2025 By Melanie Yu In Datadog
One of the primary challenges with developing in the cloud is knowing which areas of your environment are vulnerable to risks. In order to efficiently identify and respond to legitimate risks, you need real-time visibility into security events. But traditional security platforms are costly and often standalone, which means they may create gaps in visibility.
Read Post
datadog

Identify risky behavior in cloud environments

Apr 14, 2025 By Mallory Mooney In Datadog
Risk assessment requires context. One of the primary challenges with protecting cloud environments is understanding how certain activity can lead to risk. Risky behavior can be categorized as any activity or action that increases the likelihood of an attack in your cloud environment. While certain activity may not be malicious on its own, it can expand an environment’s attack surface or indicate post-compromise behavior.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.