Home > News > featured news > LogRhythm Improves Security Analytics with Expanded Security Operations Capabilities

ENTERPRISE SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

LogRhythm Improves Security Analytics with Expanded Security Operations Capabilities

LogRhythm | January 06, 2023 | Read time : 02:00 min

LogRhythm Improves Security Analytics with Expanded Security Operations Capabilities

On January 05, 2023, LogRhythm, the company that empowers security teams to tackle an ever-changing threat landscape with confidence, introduced a variety of expanded capabilities and integrations for its security operations solutions. The enhancements improve LogRhythm's capacity to serve as a much-needed force multiplier for security teams that are required to defend against cyberattacks with confidence, effectiveness, and efficiency.

This update follows the release of LogRhythm Axon, an innovative, cloud-native security operations platform launched in October. In addition, the organization is launching new visualizations and advanced analytics that provide seamless visibility into potential security threats.

Axon and its latest updates are designed to simplify the experience of security analysts by making it easier for teams to identify, examine, and report on potential threats, easing the burden of managing risks and the operating infrastructure. In addition, these improvements span the entire suite of LogRhythm's offerings to collectively facilitate threat detection and resolution by SOC teams, improving analyst productivity and effectiveness.

The key features of the updates include the following:

LogRhythm Axon:

  • New out-of-the-box and custom analytics rules that have rules for MITRE ATT&CK detections.
  • Using the Observation Workflow, customers can quickly investigate log observations raised by analytics.
  • Reduce time spent searching for data through new markdown and histogram widgets.

LogRhythm UEBA:

  • New detection models allow for the detection of elusive threats for Windows systems.

LogRhythm NDR:

  • Integration with Microsoft EDR improves blind spot detection and endpoint visibility.
  • Enhanced analyst experience through expanded UI improvements.
  • The new configuration page enables to import of data from VirusTotal smoothly.

LogRhythm SIEM:

  • The improved collection administrative workflow reduces the time required to configure, deploy, and manage log sources that involve Open Collector.
  • Expanded and updated LogRhythm's library of supported log sources.
  • Improved audit logging makes it easier to detect suspicious activity and track significant changes made by users.

About LogRhythm

LogRhythm, Inc. is an American security intelligence firm founded in 2003 that specializes in SIEM, log management, network and endpoint monitoring, forensics, and security analytics. With a comprehensive array of high-performance security, compliance, and operations solutions, LogRhythm is built to address a rapidly evolving world of cybersecurity threats. In addition, LogRhythm combines a versatile and comprehensive security operations platform, advisory services, and technology partnerships to help SOC teams defend sensitive data.

Spotlight

Migrer depuis CentOS Linux vers Red Hat Enterprise Linux

La migration vers un nouveau système d'exploitation peut sembler décourageante, mais avec les bonnes décisions, cela peut devenir une opportunité de croissance et d'évolution pour votre entreprise. Vous voulez savoir comment assurer le succès de votre migration vers un nouveau système ? Red Hat Enterprise Linux® est la solution

More featured news

Spotlight

Migrer depuis CentOS Linux vers Red Hat Enterprise Linux

La migration vers un nouveau système d'exploitation peut sembler décourageante, mais avec les bonnes décisions, cela peut devenir une opportunité de croissance et d'évolution pour votre entreprise. Vous voulez savoir comment assurer le succès de votre migration vers un nouveau système ? Red Hat Enterprise Linux® est la solution

Related News

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

Lookout Announces Industry’s Only Endpoint to Cloud Security Platform

Lookout | January 31, 2023

Lookout, Inc., a business specializing in endpoint-to-cloud security, has announced enhanced capabilities and feature updates to its award-winning Lookout Cloud Security Platform, the only endpoint-to-cloud security solution available on the market. In addition to cloud, internet, and private applications, the cloud-native platform now includes a single policy architecture for administration and enforcement across all mobile devices. A single agent and a single control plane for mobile and cloud security services are also new platform upgrades, providing IT and security professionals with a cost-effective, streamlined administration experience. In addition, the Lookout Cloud Security Platform combines security service edge (SSE) with endpoint security to secure users and data regardless of location. It constantly monitors the risk posture of devices and users to provide dynamic and granular zero-trust access based on the sensitivity level of applications and data. As a result, it enables organizations to protect their workers, devices, applications, and data from unauthorized access and modern internet-based threats. In addition, the extended platform enables clients to make more educated choices about cloud security services using threat data from mobile endpoints. Lookout CEO, Jim Dolce, said, "Digital transformation and the significant adoption of the cloud have accelerated remote work and the use of mobile and unmanaged devices, which in turn exposes organizations to new security gaps that are ripe for exploitation from bad actors." He added, "Lookout's mission is to secure and empower the digital future where mobility and cloud are essential to all that we do for work and play; our endpoint to cloud security platform ensures that your data is protected – regardless of device, user or location." (Source – PR Newswire) The Award-Winning Lookout Platform The Lookout Cloud Security Platform integrates security services based on the company's unique technologies: Lookout Secure Private Access Lookout Secure Cloud Access Lookout Mobile Endpoint Security Lookout Secure Internet Access About Lookout, Inc. Lookout, Inc. is a cybersecurity firm that merges endpoint security with SASE technology to protect data while maintaining user privacy. Its single, cloud-native security platform protects data across devices, applications, networks, and clouds—a solution as fluid and adaptable as the current digital environment. Giving companies and people more control over their data empowers them to maximize its value and flourish. Lookout is trusted by organizations of all sizes, government agencies, and millions of individuals to safeguard sensitive data, allowing them to live, work, and connect freely and securely.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

1Password Announce Launch of Unlock with Single Sign-On for Enterprise Customers

1Password | March 09, 2023

1Password, the frontrunner in human-centric security and privacy, recently announced the launch of Unlock with Single Sign-On (SSO). Now, enterprise customers can unlock their 1Password accounts using Okta with Duo and Azure AD to follow in the coming months. With deeper integrations into existing IT workflows, Unlock with SSO enables IT teams to improve their security posture while minimizing the everyday difficulties and stress associated with employee logins. Steve Won, Chief Product Officer at 1Password, said, "Securing employees at scale is no small task. At 1Password, we believe that the foundation of enterprise security is secure employees, and we're driven by the principle that the safe thing must be easy by default." He added, "SSO plays a central role in enterprise security. Unlock with SSO was designed with a trusted device model, so that even if a user's identity provider credentials are compromised, 1Password ensures attackers won't be able to access customers' vault." (Source – Cision PR Newswrie) In a Total Economic Impact (TEI) study commissioned and published by 1Password, Forrester Consulting revealed that a composite organization comprised of companies with experience using 1Password experienced a 206% return on investment (ROI) and a benefit of $1.3 million over three years. Unlock with SSO enhances employee and IT efficiency and productivity, where the return on investment is most evident. Unlock with SSO is intended to integrate with existing workflows and assist organizations in securing their employees across any authentication process of their choosing. Fully integrated solutions, such as 1Password, consolidate authentication in a single location to complete the security architecture of a company. About 1Password Founded in 2005, 1Password is the market leader in human-centric security and privacy to keep people safe at work and at home. Its solution is designed from the ground up to enable everyone, regardless of their degree of technical expertise, to traverse the digital world without fear or difficulty. 1Password safeguards the most sensitive data of millions of individuals and families worldwide, enabling consumers and companies to accomplish more in less time – with security and privacy as a guarantee. The company's award-winning credentials management security technology is reshaping the face of authentication and is trusted by over 100,000 organizations, including IBM, Slack, Shopify, Snowflake, and Under Armour.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

SANS Institute Introduces New Cybersecurity Training for IT Administrators

SANS Security Awareness | February 21, 2023

On February 20, 2023, SANS Security Awareness, a subsidiary of the SANS Institute, announced the release of "Security Essentials for IT Administrators," a new short-form technical training program. This series offers a comprehensive overview of cybersecurity fundamentals, aimed primarily at those with a foundational grasp of network administration and/or IT systems to keep them updated and informed in the ever-changing cybersecurity space. As more IT professionals, like network/system administrators and engineers, take on security responsibilities, it is important for an organization's overall security to have relevant training for this group. This series is intended to raise IT professionals' knowledge of the distinct threat landscape they face by drawing on the objectives of such popular SANS training courses as SEC301, SEC388, SEC401, and SEC504. The product line is available to enterprises seeking to improve their security preparedness and awareness by purchasing directly from SANS Security Awareness or via Microsoft's 'Defender for Office 365' bundle. John Byrne, General Manager of SANS Security Awareness, said, "The launch of the Security Essentials for IT Administrators course marks an exciting chapter in our mission to deliver high-quality security training to professionals in the industry, especially to these users who carry unique risk because of their privileged access and advanced skill set." (Source – Cision PR Newswire) He added, "We are thrilled Microsoft identified SANS to provide this comprehensive technical content series to provide the necessary knowledge and skills to help protect against the most pressing security threats facing organizations across the globe. These modules offer a powerful solution to organizations seeking to bolster their security posture and streamline workforce management for technical teams." (Source – Cision PR Newswire) AboutSANS Security Awareness Established in 1989, the SANS Institute is a cooperative research and education organization. It is the most trusted and, by far, the biggest supplier of cybersecurity certification and training for professionals in business and government institutions around the world. Reputed SANS instructors teach over 60 courses at cybersecurity events in person, online, and on demand. SANS Security Awareness, a division of SANS, gives organizations a complete and thorough security awareness solution that makes it easy and effective for them to manage their "human" cybersecurity risk. SANS also provides the InfoSec community with a wide range of free resources, such as consensus projects, webcasts, podcasts, research reports, and newsletters. It also runs the Internet Storm Center, which is the Internet's early warning system.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

Lookout Announces Industry’s Only Endpoint to Cloud Security Platform

Lookout | January 31, 2023

Lookout, Inc., a business specializing in endpoint-to-cloud security, has announced enhanced capabilities and feature updates to its award-winning Lookout Cloud Security Platform, the only endpoint-to-cloud security solution available on the market. In addition to cloud, internet, and private applications, the cloud-native platform now includes a single policy architecture for administration and enforcement across all mobile devices. A single agent and a single control plane for mobile and cloud security services are also new platform upgrades, providing IT and security professionals with a cost-effective, streamlined administration experience. In addition, the Lookout Cloud Security Platform combines security service edge (SSE) with endpoint security to secure users and data regardless of location. It constantly monitors the risk posture of devices and users to provide dynamic and granular zero-trust access based on the sensitivity level of applications and data. As a result, it enables organizations to protect their workers, devices, applications, and data from unauthorized access and modern internet-based threats. In addition, the extended platform enables clients to make more educated choices about cloud security services using threat data from mobile endpoints. Lookout CEO, Jim Dolce, said, "Digital transformation and the significant adoption of the cloud have accelerated remote work and the use of mobile and unmanaged devices, which in turn exposes organizations to new security gaps that are ripe for exploitation from bad actors." He added, "Lookout's mission is to secure and empower the digital future where mobility and cloud are essential to all that we do for work and play; our endpoint to cloud security platform ensures that your data is protected – regardless of device, user or location." (Source – PR Newswire) The Award-Winning Lookout Platform The Lookout Cloud Security Platform integrates security services based on the company's unique technologies: Lookout Secure Private Access Lookout Secure Cloud Access Lookout Mobile Endpoint Security Lookout Secure Internet Access About Lookout, Inc. Lookout, Inc. is a cybersecurity firm that merges endpoint security with SASE technology to protect data while maintaining user privacy. Its single, cloud-native security platform protects data across devices, applications, networks, and clouds—a solution as fluid and adaptable as the current digital environment. Giving companies and people more control over their data empowers them to maximize its value and flourish. Lookout is trusted by organizations of all sizes, government agencies, and millions of individuals to safeguard sensitive data, allowing them to live, work, and connect freely and securely.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

1Password Announce Launch of Unlock with Single Sign-On for Enterprise Customers

1Password | March 09, 2023

1Password, the frontrunner in human-centric security and privacy, recently announced the launch of Unlock with Single Sign-On (SSO). Now, enterprise customers can unlock their 1Password accounts using Okta with Duo and Azure AD to follow in the coming months. With deeper integrations into existing IT workflows, Unlock with SSO enables IT teams to improve their security posture while minimizing the everyday difficulties and stress associated with employee logins. Steve Won, Chief Product Officer at 1Password, said, "Securing employees at scale is no small task. At 1Password, we believe that the foundation of enterprise security is secure employees, and we're driven by the principle that the safe thing must be easy by default." He added, "SSO plays a central role in enterprise security. Unlock with SSO was designed with a trusted device model, so that even if a user's identity provider credentials are compromised, 1Password ensures attackers won't be able to access customers' vault." (Source – Cision PR Newswrie) In a Total Economic Impact (TEI) study commissioned and published by 1Password, Forrester Consulting revealed that a composite organization comprised of companies with experience using 1Password experienced a 206% return on investment (ROI) and a benefit of $1.3 million over three years. Unlock with SSO enhances employee and IT efficiency and productivity, where the return on investment is most evident. Unlock with SSO is intended to integrate with existing workflows and assist organizations in securing their employees across any authentication process of their choosing. Fully integrated solutions, such as 1Password, consolidate authentication in a single location to complete the security architecture of a company. About 1Password Founded in 2005, 1Password is the market leader in human-centric security and privacy to keep people safe at work and at home. Its solution is designed from the ground up to enable everyone, regardless of their degree of technical expertise, to traverse the digital world without fear or difficulty. 1Password safeguards the most sensitive data of millions of individuals and families worldwide, enabling consumers and companies to accomplish more in less time – with security and privacy as a guarantee. The company's award-winning credentials management security technology is reshaping the face of authentication and is trusted by over 100,000 organizations, including IBM, Slack, Shopify, Snowflake, and Under Armour.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

SANS Institute Introduces New Cybersecurity Training for IT Administrators

SANS Security Awareness | February 21, 2023

On February 20, 2023, SANS Security Awareness, a subsidiary of the SANS Institute, announced the release of "Security Essentials for IT Administrators," a new short-form technical training program. This series offers a comprehensive overview of cybersecurity fundamentals, aimed primarily at those with a foundational grasp of network administration and/or IT systems to keep them updated and informed in the ever-changing cybersecurity space. As more IT professionals, like network/system administrators and engineers, take on security responsibilities, it is important for an organization's overall security to have relevant training for this group. This series is intended to raise IT professionals' knowledge of the distinct threat landscape they face by drawing on the objectives of such popular SANS training courses as SEC301, SEC388, SEC401, and SEC504. The product line is available to enterprises seeking to improve their security preparedness and awareness by purchasing directly from SANS Security Awareness or via Microsoft's 'Defender for Office 365' bundle. John Byrne, General Manager of SANS Security Awareness, said, "The launch of the Security Essentials for IT Administrators course marks an exciting chapter in our mission to deliver high-quality security training to professionals in the industry, especially to these users who carry unique risk because of their privileged access and advanced skill set." (Source – Cision PR Newswire) He added, "We are thrilled Microsoft identified SANS to provide this comprehensive technical content series to provide the necessary knowledge and skills to help protect against the most pressing security threats facing organizations across the globe. These modules offer a powerful solution to organizations seeking to bolster their security posture and streamline workforce management for technical teams." (Source – Cision PR Newswire) AboutSANS Security Awareness Established in 1989, the SANS Institute is a cooperative research and education organization. It is the most trusted and, by far, the biggest supplier of cybersecurity certification and training for professionals in business and government institutions around the world. Reputed SANS instructors teach over 60 courses at cybersecurity events in person, online, and on demand. SANS Security Awareness, a division of SANS, gives organizations a complete and thorough security awareness solution that makes it easy and effective for them to manage their "human" cybersecurity risk. SANS also provides the InfoSec community with a wide range of free resources, such as consensus projects, webcasts, podcasts, research reports, and newsletters. It also runs the Internet Storm Center, which is the Internet's early warning system.

Read More

More featured news