New LogRhythm Axon offers cloud-native SecOps built from the ground up

New LogRhythm capabilities offer a force multiplier for security teams

Posted on

Security intelligence firm LogRhythm Inc. today announced a series of expanded capabilities and integrations that propel its service’s ability to be a much-needed force multiplier for security teams who are expected to confidently, effectively and efficiently defend against cyberattacks.

Following the launch of the cloud-native security operations platform Axon in October, LogRythm is introducing new visualizations and analytics that offer seamless visibility into potential security risks. Designed to streamline security analytics, the latest Axon updates are said to make it easier for teams to detect, investigate and report on potential threats. The additional features also reduce the burden of managing threats and the operating infrastructure.

Other enhancements span LogRhythm’s product portfolio to collectively enable security operations center teams to detect and resolve threats more easily, improving analyst productivity and effectiveness. Additional enhancements and integrations range across LogRhythm’s Axon, security information and event management, network detection and response, and user entity and behavior analytics solutions.

LogRhythm Axon now has new custom and out-of-the-box analytics rules, including rules for MITRE ATT&CK detections. A markdown widget and histogram widget cut down time spent searching for data and allow for log observations to be easily investigated through the Observation Workflow.

LogRhythm SIEM gains improved administrative workflow for collection, shortening the time to configure, deploy and manage log sources that require Open Collector. Enhanced audit logging in LogRhythn SIEM is designed to make it easier to monitor suspicious activity and track when users make important changes.

LogRhythm UEBA has gained new detection models for Windows systems to quickly uncover hard-to-detect threats, while LogRhythm NDR has improved blind spot detection and endpoint visibility through integration with Microsoft EDR.

“This quarter, we are especially excited about the number of groundbreaking and enhanced capabilities coming to our market-leading solutions,” Kish Dill, chief product and customer officer of LogRhythm, said in a statement. “These enhancements and integrations have been curated with the goal of simplifying the lives of security analysts and enabling them to detect threats faster through seamless visibility, enhanced collection and an intuitive analyst experience.”

Image: LogRhythm

Show your support for our mission by joining our Cube Club and Cube Event Community of experts. Join the community that includes Amazon Web Services and CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and many more luminaries and experts.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *