DATA SECURITY

LogPoint introduces native SOAR into core SIEM offering, advancing cybersecurity automation and efficiency

PR Newswire | September 22, 2021

LogPoint, the global cybersecurity innovator, announced the successful completion of its acquisition of Tel Aviv-based SecBI. SecBI's universal SOAR and XDR technology will integrate natively with LogPoint to form an integrated, foundational Security Operations platform. SOAR will be released with LogPoint 7.0 in December 2021, and XDR will be introduced in Q2 2022.

"With the tidal wave of cyberattacks threatening businesses and societies across the globe, a disruption of the way organizations respond to cybersecurity incidents is required," said Jesper Zerlang, CEO LogPoint. "Building on LogPoint SIEM and UEBA to effectively detect threats, orchestration and automation of the response to incidents is key to advancing cybersecurity. Consequently, SOAR will be a capability included in LogPoint to advance foundational cybersecurity."

With the release of LogPoint 7.0, all present and future LogPoint customers will be immediately able to apply SOAR to their security operations at the click of a button, automating repetitive tasks, orchestrating threat remediation workflows, and enabling autonomous investigation, prioritization, and execution of playbooks that reduce human involvement and speed up incident response. Customers will receive SOAR capabilities within their LogPoint Core SIEM license.

"LogPoint SOAR has been in production with select customers over the past few months and we're thrilled with the overwhelmingly positive feedback that analysts have more confidence that incidents are dealt with appropriately thanks to the automatic playbooks," said Christian Have, CTO, LogPoint. "Our customers have reported a significant decrease in the time it takes to detect and respond to a phishing email – down from three hours with manual processes to 10 minutes with automated LogPoint SOAR playbooks."

In today's cybersecurity market, SOAR is employed mainly by larger enterprises and managed security service providers (MSSPs) handling a considerable number of incidents. Integrating native SOAR into LogPoint will dramatically increase the effectiveness and precision of incident response without the need for dedicated management resources, making it an attractive option for organizations of all sizes, including mid-market cybersecurity.

"SOAR is not only about coping with the increasing number of cybersecurity incidents. By including SOAR in the LogPoint SIEM solution, we will enable organizations of all sizes, especially companies that do not have a fully-staffed 24/7 Security Operations Center (SOC), to establish proper and relevant incident-handling processes and dramatically increase quality and speed in their response capabilities," said Have. "It also helps those organizations assess the efficiency of new cybersecurity tools and measures."

The acquisition was first announced on September 1, 2021. Following finalization, SecBI will fully integrate into LogPoint's organization. The new team will make key contributions to LogPoint's continued development: SecBI founder and VP of Business Development Doron Davidson has been appointed LogPoint's VP of Global Services and will lead LogPoint Israel as the company expands its presence in Tel Aviv.

The LogPoint move to acquire SecBI and integrate its SOAR and XDR technology into the LogPoint solution is recognized by industry analysts. In a recently published research brief by Omdia headlined "LogPoint Adds SOAR via SecBI Acquisition, Builds Momentum as a Top-Tier SecOps Vendor," analyst Eric Parizo concludes:

"Already a strong SIEM player in Europe, LogPoint's new SOAR and XDR offerings, combined with its own notable TDIR advancements, position the vendor to compete globally for a growing share of enterprise customers."

Spotlight

In a SANS survey, 56% of incident responders claim they assume their enterprise is already compromisedi . By preparing for the inevitable breach, rather than believing it can be prevented, enterprises can deliver a better security posture and set the foundation to proactively hunt for threats.

Spotlight

In a SANS survey, 56% of incident responders claim they assume their enterprise is already compromisedi . By preparing for the inevitable breach, rather than believing it can be prevented, enterprises can deliver a better security posture and set the foundation to proactively hunt for threats.

Related News

DATA SECURITY

Combating industrial cyber threats with new security certifications and products, Rockwell Automation

businesswire | November 19, 2020

Organizations keep on requiring help making sure about their modern activities as they associate creation and IT frameworks and battle with cyberthreats focusing on mechanical control frameworks. To address this issue, Rockwell Automation keeps extending its cybersecurity accreditations and joining progressed security capacities into a greater amount of its items. Rockwell Automation as of late got confirmation to the IEC (International Electrotechnical Commission) 62443-3-3 cybersecurity standard. The accreditation, performed by outsider TÜV Rheinland, implies Rockwell Automation has exhibited the capacity to introduce and arrange creation frameworks to meet security prerequisites to level 1 as characterized on the planet's driving worldwide norm. Rockwell Automation offers reference designs for executing an ensured creation framework, for example, PlantPAx 5.0, the cutting edge disseminated control framework (DCS) for plantwide measure control. The structures were created to assist clients with guaranteeing creation frameworks while limiting the need to purchase new advancements as a component of the cycle. Until now, Rockwell Automation has gotten a few confirmations for the IEC 62443 arrangement of norms. Rockwell Automation likewise as of late got confirmation for the ISO (International Organization for Standardization) 27001 norm, affirming that the organization's data security the board framework used to ensure information fulfills the guideline's prerequisites. This can give significant serenity to clients that Rockwell Automation is utilizing best practices to secure their licensed innovation, for example, when clients use administrations like distant help and observing. “Companies are facing the dual challenge of digital transformation to stay competitive, while also keeping their people, operations and intellectual property secure,” said Sujeet Chand, senior vice president and chief technology officer, Rockwell Automation. “We continue to aggressively expand our cybersecurity skills, certifications, product capabilities and services in ways that help our customers stay ahead of new threats and focus on realizing new possibilities with digital transformation.” Notwithstanding procuring the new confirmations, Rockwell Automation is additionally delivering new items with CIP Security to assist organizations with making sure about their correspondences. Created by the worldwide exchange and standard improvement association ODVA, CIP Security is the simply standard intended to make sure about correspondences between modern control frameworks and different gadgets on an EtherNet/IP organization. New modern control items offering CIP Security include: Allen-Bradley PowerFlex 755T AC drives Kinetix 5300 servo drives Other Rockwell Automation items that as of now uphold CIP Security include: ControlLogix 5580 regulators Kinetix 5700 servo drives 1756-EN4TR correspondence module To help ensure the numerous gadgets being used today that don't uphold CIP Security, Rockwell Automation is additionally presenting the new CIP Security Proxy gadget. At the point when utilized in a truly made sure about area, the gadget gives CIP Security to a wide scope of modern control gadgets and make safer mechanical organizations. About Rockwell Automation Rockwell Automation, Inc. , is a global leader in industrial automation and digital transformation. We connect the imaginations of people with the potential of technology to expand what is humanly possible, making the world more productive and more sustainable. Headquartered in Milwaukee, Wisconsin, Rockwell Automation employs approximately 23,000 problem solvers dedicated to our customers in more than 100 countries. To learn more about how we are bringing The Connected Enterprise to life across industrial enterprises.

Read More

Companies migrate to the cloud and MSSPs helping to secure these multi-cloud environments

prnewswire | September 04, 2020

The "Japanese Managed Security Services Market, Forecast to 2023" report has been added to ResearchAndMarkets.com's offering.The Japanese managed security services (MSS) market, recording a year-on-year (YoY) growth rate of 14% in 2018, is the largest in the Asia-Pacific (APAC) region. There were several key market drivers in 2018: increased general information technology (IT) investment in Japanese enterprises for the 2020 Tokyo Olympic Games; Japanese enterprise spending shifting to an as a service' instead of on-premise' model (despite on-premise being the major revenue contributor); lack of security expertise among the internal IT teams.

Read More

Darktrace is the world's leading cyber AI company and Eurofins announce Cyber Security partnership

prnewswire | October 05, 2020

Eurofins Digital Testing, a global leader in end-to-end quality assurance, testing and cyber security services has today announced a partnership with Darktrace, the world's leading cyber AI company. This new partnership will empower Eurofins' customers and community to detect and respond to in-progress attacks anywhere across their entire digital infrastructure with Darktrace's cyber AI, including the Cloud, SaaS, corporate networks, IoT and industrial control systems. Darktrace was founded in 2013, and today its AI technology is relied on by over 4,000 organizations worldwide to identify and automatically fight back against fast-moving and sophisticated cyber-threats.

Read More