Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

graylog

Why a People-Centric Security Strategy Improves Resilience

Dec 10, 2025 By The Graylog Team In Graylog
If Darth Vader and the rest of the Empire made one major strategic mistake, it was failing to understand the important role that the human element plays in security. Convinced of their superiority, the Empire’s leaders assumed that the Death Star was impenetrable. However, in the end, it was a scientist and his team who compromised the technology by building in a backdoor.
Read Post

Logs & Lattes Episode 4: How 2025 Reshaped SOCs and What Matters in 2026

Dec 10, 2025 By Graylog In Graylog
Security teams spent 2025 operating at maximum load. Alert volume kept rising, analysts pivoted across too many tools, AI arrived faster than governance could support, and cloud costs shaped what data teams felt safe keeping. In this episode of Logs and Lattes, host Palmer Wallace and Jeff Darrington break down what actually happened inside real SOCs and how those lessons are already guiding 2026.
View Video

How 2025 Reshaped SOCs and What Matters in 2026

Dec 10, 2025 By Graylog In Graylog
Security teams spent 2025 operating at maximum load. Alert volume kept rising, analysts pivoted across too many tools, AI arrived faster than governance could support, and cloud costs shaped what data teams felt safe keeping. In this episode of Logs and Lattes, host Palmer Wallace and Jeff Darrington break down what actually happened inside real SOCs and how those lessons are already guiding 2026.
View Video
graylog

Calculating a SIEM's Total Cost of Ownership

Dec 8, 2025 By The Graylog Team In Graylog
A security information and event management (SIEM) solution aggregates and correlates data from across the organization’s complex, interconnected environment. Modern enterprise IT consists of decentralized users and applications that require organizations to implement technologies that provide visibility across disparate security solutions. Simultaneously, SIEMs have a reputation for being difficult and expensive to manage.
Read Post
graylog

Why a Cloud SIEM Just Makes Sense

Dec 1, 2025 By The Graylog Team In Graylog
The irony of being an adult working in IT and security is that where having your head “in the clouds” was inappropriate as a child, today most of your activities require you to have your head in the cloud. Organizations moved their business operations to the cloud because they could achieve various operational benefits, like improved collaboration and reduced costs. Yet, many companies still maintain an on-premises SIEM.
Read Post
graylog

MCP ROI in a New Era of AI Orchestrated Threats

Nov 26, 2025 By The Graylog Team In Graylog
Security leaders spent most of the past year testing AI driven security automation. Many discovered that the promise of fully autonomous SOC operations collided with the reality of hallucinations, opaque recommendations, and inconsistent outcomes. McKinsey research now shows that more than 80 percent of organizations have not realized meaningful results from gen AI programs.
Read Post
graylog

5 Signs You've Outgrown Your Open-Source SIEM

Nov 25, 2025 By Jeff Darrington In Graylog
The evolution of your security stack is similar to the different phases of buying cars. In the beginning, you just need enough to transport a few items, maybe yourself and a few friends. The inexpensive two-door hatchback is perfect. However, as your family grows, whether with small humans or pets, you increasingly need more space and more capacity, leading to purchasing a four-door sedan or, even, a mini-van.
Read Post
graylog

How to Use Data Lakes to Reduce SIEM Costs and Strengthen Investigations

Nov 21, 2025 By The Graylog Team In Graylog
Most teams think of data lakes as cold storage. A long-term archive. A place to keep logs “just in case” while budgets tighten and ingest volumes rise. Functional, sure. But limited. The traditional data lake keeps everything, helps occasionally, and rarely fits the way analysts work. Graylog approaches the data lake differently. In Graylog 7.0, the data lake is not a warehouse. It is a pressure release valve for teams overwhelmed by storage cost, investigation delays, and cloud data sprawl.
Read Post
graylog

7 Steps to an Efficient Security Operations Center Design

Nov 5, 2025 By Jeff Darrington In Graylog
In the original Star Trek television show, Captain Kirk would slightly recline in a command chair with various buttons that allowed him to deploy different technologies. Regardless of the alien threat, he had the necessary tools at his disposal to protect the Enterprise and his staff. An organization’s security operations center (SOC) acts as the Captain Kirk “command chair” for all security activities.
Read Post

Quantifying Risk in the SOC: From Analyst Actions to Measurable Impact

Oct 30, 2025 By Graylog In Graylog
How much value are you really getting from your logs, and what are you giving up to stay on budget? In this episode of Logs and Lattes, host Palmer Wallace sits down with Seth Goldhammer, VP of Product Management at Graylog, for a candid conversation about the hidden cost of traditional SIEM pricing. Seth explains how ingest-based and resource-heavy licensing models pressure security teams into tough tradeoffs, such as dropping logs, tuning down detections, or limiting retention just to avoid budget overages.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.