Sumo Logic to Scale SecOps for Modern Enterprises with Wave of New Innovations Built on Leading Log Analytics Platform

Sumo Logic, the SaaS analytics platform to enable reliable and secure cloud-native applications, recently announced several native innovations across the Sumo Logic platform to give security analysts better visibility to solve new use cases and enable coordinated defense.

“Siloed tools and teams are a major barrier to scaling security operations and addressing the dynamic threat landscape of cloud-developed applications,” said Dave Frampton, senior vice president and general manager, Security Business Unit at Sumo Logic. “By combining SIEM, UEBA, SOAR, and log analytics with comprehensive observability capabilities in an integrated platform, we’re enabling seamless collaboration across the DevOps, application and security teams which all play essential roles in modern defense.”

Acknowledges one early adopter, “Sumo Logic gives us the opportunity to accelerate and expand growth and adoption of behavioral analytics across our organization. With the number of potential unknown threats to investigate, it is easier for us to make confident, data-driven decisions quickly,” said Brandon Hess, a Security Architect with deep experience in both the financial and professional services sectors.

Here are the new benefits:

Native UEBA threat detection for greater transparency, increased flexibility. Previous generations of UEBA anomaly detection have been plagued by problems with false positives, complexity and tuning limitations. Sumo Logic Cloud SIEM addresses these challenges with new UEBA capabilities delivering transparent, configurable, tunable detection and base-lining – fully integrated with all other detection tools. With this distinct advantage, Sumo Logic preserves the benefits of identifying unknown threats, insider threats, and user/entity profiling without the drawbacks of previous industry UEBA solutions. Extending its heritage as a leader in log analytics, Sumo Logic takes UEBA one step further to address new classes of use cases in application security and observability.

Efficient automation and enrichment from Cloud SOAR. Current SIEM offerings have difficulty contextualizing real threats and security analysts must pivot to other tools – threat intelligence, DDOS, malware, lateral movement or phishing, and a plethora of other enrichment capabilities – to deal with the huge volume and wide variety of alerts generated. Delivering automation at cloud scale, Sumo Logic introduces Cloud SIEM Automation Service, a marriage of Cloud SOAR with Cloud SIEM. Today, security analysts can more efficiently automate the data from alerts, telemetry and enrichment.

ML-powered detection, investigation. Built to help security engineers and security analysts tune threat detection logic to minimize false positives and boost true positives, Sumo Logic introduces Cloud SIEM Insight Trainer. Insight Trainer applies ML to understand patterns in the data and automatically suggests detection logic severity and tuning adjustments. When recommendations are applied on a regular basis, Sumo Logic Cloud SIEM enables SOC teams to focus attention on true indicators of compromise. As a result, overall security posture is improved with high-fidelity signals. To accelerate security investigations, Sumo Logic introduces its integration of ChatGPT with its powerful automation and orchestration solution, Cloud SOAR. With this integration, security analysts can quickly identify best practices within documented incident management framework with SOAR investigation workflows.

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file. 3

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3