%term

The latest News and Information on Security Incident and Event Management.

Federated Search: Access Data Beyond Your SIEM-Instantly

Apr 29, 2026 By CrowdStrike In CrowdStrike

See how CrowdStrike Falcon Next-Gen SIEM Federated Search enables security teams to access and query data beyond the SIEM—instantly, and without rehydration. In this demo, you’ll learn how to search data directly where it lives, including external sources like Amazon S3, Falcon LogScale, and NDR platforms, using a single query language.

View Video

CrowdStrike

Read more about Federated Search: Access Data Beyond Your SIEM-Instantly

Behavior Intelligence: The New Model for Securing the Agentic Enterprise

Apr 28, 2026 By Exabeam In Exabeam

Behavior Intelligence is a security operations model that detects risk by analyzing behavior, automates investigation and response using AI, and measures whether security outcomes are improving over time. It focuses on how users, systems, and AI agents operate rather than relying only on predefined rules or knowns indicators of compromise. This shift matters because modern attacks rarely look malicious at first. They look normal.

Read Post

Exabeam

Read more about Behavior Intelligence: The New Model for Securing the Agentic Enterprise

Observability is security (We just pretended it wasn't)

Apr 28, 2026 By David Girvin In Sumo Logic

For years, we’ve drawn this artificial line that equates observability with uptime, performance, and SRE dashboards, while security is about threats, alerts, SIEMs, and “bad things.” While that separation was always convenient, it was never real. The same logs that tell you your service is slow are the same ones that tell you it’s compromised. We just routed them to different teams, different tools, and different budgets, then acted surprised when neither side had the full picture.

Read Post

Sumo Logic

Read more about Observability is security (We just pretended it wasn't)

Ep 40: What to expect when you are expecting an audit

Apr 28, 2026 By Sumo Logic, Inc. In Sumo Logic

On this episode of Masters of Data, we brought back GRC expert Cassandra Mooseburger to pull back the curtain on audits, and spoiler: it is far less scary than the IRS knocking on your door. We break down what actually separates a certification from an attestation from a report, how to run a prep process that does not send your engineering team running for the hills, and why the social capital you build across the business is just as important as the evidence you collect. If you have ever wondered how compliance work translates into closed deals and customer trust, this one connects those dots.

View Video

Sumo Logic

Read more about Ep 40: What to expect when you are expecting an audit

Five Reasons Security Operations Teams Augment Microsoft Sentinel With New-Scale Analytics

Apr 24, 2026 By Exabeam In Exabeam

Security operations teams face rising alert volumes, tighter staffing, and growing pressure to reduce risk without adding tools or people. If Microsoft Sentinel sits at the center of your environment, you may already see where it helps and where it starts to strain. For many teams, that moment shows up when detections lag, investigations drag, or too much work funnels to a small group of specialists.

Read Post

Exabeam

Read more about Five Reasons Security Operations Teams Augment Microsoft Sentinel With New-Scale Analytics

An Introduction to the NIST Risk Management Framework (RMF)

Apr 24, 2026 By Jeff Darrington In Graylog

While inherently critical to today’s businesses that run on data, implementing and enforcing data security and privacy has never been straightforward. Between collecting different types of sensitive data and deploying unique architectures, organizations cannot adopt a one-size-fits-all solution, meaning that every security architecture is unique.

Read Post

Graylog

Read more about An Introduction to the NIST Risk Management Framework (RMF)

The New CISO Ep. 144 - Rob Knoblauch | Your Most Valuable Skills Aren't Technical

Apr 23, 2026 By Exabeam In Exabeam

Cybersecurity debates tend to center on tools, frameworks, and threats. But Rob Knoblauch has built a 25-year career in global security leadership by focusing on the soft skills that determine whether a CISO survives, thrives, or burns out. In this episode of The New CISO, Rob joins Steve Moore to trace the through-line from running a multi-node BBS as a kid to serving as Deputy CISO of one of the world’s largest banks — and the career lessons he’s carried through every chapter.

View Video

Exabeam

Read more about The New CISO Ep. 144 - Rob Knoblauch | Your Most Valuable Skills Aren't Technical

Exabeam Extends Agent Behavior Analytics to the Google Cloud Agent Ecosystem

Apr 22, 2026 By Exabeam In Exabeam

Comprehensive visibility and anomaly detection now available for agents built with Google Cloud's Agent Development Kit and multi-agent workflows via the upcoming Google Agent Gateway.

Read Post

Exabeam

Read more about Exabeam Extends Agent Behavior Analytics to the Google Cloud Agent Ecosystem

Best Practices for Managing Hybrid Cloud Security

Apr 22, 2026 By Jeff Darrington In Graylog

As a kid, fruit punch always seemed like a magical drink. A mix of orange, cherry, apple, and cranberry created a unique flavor that differed substantially from any one juice. These hybrid drinks not only quenched thirst but their complexity made it difficult to truly recreate them by hand.

Read Post

Graylog

Read more about Best Practices for Managing Hybrid Cloud Security

Securing air-gapped environments with Elastic on Google Distributed Cloud

Apr 22, 2026 By Jason Pappalexis In Elastic

If you are not using AI to defend against AI, you will lose. But for organizations operating in air-gapped environments, the path to AI-driven defense can be blocked by the very isolation that protects them. Today, we're announcing that Elastic Security is now the embedded security layer for Google Distributed Cloud (GDC) air-gapped environments, expanding our collaboration with Google Cloud.

Read Post