Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

graylog

An Introduction to the NIST Risk Management Framework (RMF)

Apr 24, 2026 By Jeff Darrington In Graylog
While inherently critical to today’s businesses that run on data, implementing and enforcing data security and privacy has never been straightforward. Between collecting different types of sensitive data and deploying unique architectures, organizations cannot adopt a one-size-fits-all solution, meaning that every security architecture is unique.
Read Post
graylog

Best Practices for Managing Hybrid Cloud Security

Apr 22, 2026 By Jeff Darrington In Graylog
As a kid, fruit punch always seemed like a magical drink. A mix of orange, cherry, apple, and cranberry created a unique flavor that differed substantially from any one juice. These hybrid drinks not only quenched thirst but their complexity made it difficult to truly recreate them by hand.
Read Post
graylog

How Lean Security Teams Stay Ahead of AI-Powered Attacks

Apr 16, 2026 By Jeff Darrington In Graylog
In “Terminator 2“, the T-800 does not win because humans worked harder. It wins because the same machine capability that made it dangerous was reprogrammed to fight for the defenders. Project Glasswing is exactly that. Claude Mythos Preview is Anthropic’s most powerful AI model and the one they refused to release publicly because it autonomously found thousands of zero-day vulnerabilities across every major operating system and browser. Flaws that decades of expert review never caught.
Read Post
graylog

How To Build an Effective IT Disaster Recovery Plan

Apr 14, 2026 By Jeff Darrington In Graylog
When weather forecasters predict hurricanes and blizzards, people rush to the grocery store for bread, milk, snacks, and water. While the snacks may be part of the storm preparation, the bread, milk, and water are part of the post-storm recovery. People know that they may experience power outages, water service disruption, or difficulty getting to stores. In short, the people plan how to recover in a disaster’s aftermath.
Read Post
graylog

What is the OWASP Top 10 for LLM Application Security

Apr 10, 2026 By Jeff Darrington In Graylog
Initially published by the Open Worldwide Application Security Project (OWASP) in 2023, the Top 10 for LLM Application Security list seeks to bridge the gap between traditional application security and the unique threats related to large language models (LLMs). Even where the vulnerabilities listed have the same names, the Top 10 for LLM Application Security focuses on how threat actors can exploit LLMs in new ways and potential remediation strategies that developers can implement.
Read Post

The Golden Throne: Stop Blindly Flushing

Apr 9, 2026 By Graylog In Graylog
Most folks build their SIEM the same way they load a junk drawer: by shoving in whatever they already have—Active Directory, firewalls, and a whole lot of “eh, why not.” But at Graylog, we think you deserve better than a glorified log toilet. In this talk, we’ll flip the script: start with the problems you’re actually trying to solve, then figure out what you need to know, then what data supports that. And with Graylog’s Intelligent Data Routing, you can now act on that plan—sending high-value data to hot storage and archiving the rest to standby storage for when (and if) it’s needed. Build your SIEM like it has a brain—and a budget.
View Video
graylog

Understanding the European Cybersecurity Certification Framework

Apr 6, 2026 By Jeff Darrington In Graylog
The European Union (EU) cybersecurity regulatory landscape is reminiscent of a medieval tapestry full of interwoven threads that complement one another to create the larger picture. Regulation (EU) 2019/881 created the foundation for information and communications technology (ICT) cybersecurity certification.
Read Post

The Island of Misfit Logs: Logging the Weird Stuff

Apr 6, 2026 By Graylog In Graylog
Follow Joel Duffield while he talks about why some systems just don’t want to be logged. Whether it’s your backup tool that only sends email alerts, your budget IoT device that wasn’t built for enterprises, or that one SaaS app stuck on the free tier—there’s no clean way to get their messages into your SIEM.
View Video
graylog

Understanding AI Compliance When Choosing AI-Enabled Solutions

Mar 30, 2026 By Jeff Darrington In Graylog
2001: A Space Odyssey introduced the world to HAL 9000, the fictional artificial intelligence (AI). HAL’s capabilities include everything from facial recognition to natural language processing and automated reasoning. As HAL malfunctions over time, the computer becomes violent to prevent the humans from disconnecting it. The story serves as a morality tale suggesting that without human oversight, AI is dangerous.
Read Post
graylog

How to Gain Value from AI in Cybersecurity

Mar 26, 2026 By Jeff Darrington In Graylog
The Terminator is often people’s reference point for artificial intelligence (AI), especially when they worry that technology will be the end of civilization. However, on the other end of the AI spectrum is the beloved, marshmallow fluff Baymax, the helper robot providing assistance to those in his presence. The reality of AI sits somewhere between these two extremes. For security teams, AI initially seemed like a revolutionary technology that would offer faster detection and automated analysis.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.