%term

The latest News and Information on Security Incident and Event Management.

Smart Logging Without the Price Trap

Oct 3, 2025 By Graylog In Graylog

How much value are you really getting from your logs, and what are you giving up to stay on budget? In this episode of Logs and Lattes, host Palmer Wallace sits down with Seth Goldhammer, VP of Product Management at Graylog, for a candid conversation about the hidden cost of traditional SIEM pricing. Seth explains how ingest-based and resource-heavy licensing models pressure security teams into tough tradeoffs, such as dropping logs, tuning down detections, or limiting retention just to avoid budget overages.

View Video

Graylog

Read more about Smart Logging Without the Price Trap

Ten modern SIEM use cases at cloud scale

Oct 2, 2025 By Sridhar Karnam In Sumo Logic

The role of SIEM has never gone away. From the beginning, it’s been the backbone of security operations: the system where logs converge, alerts are analyzed, and incidents are investigated. What’s changed is our ability to use it correctly. Legacy, traditional SIEM tools forced trade-offs. Teams filtered data at ingest, dropped logs to control costs, or siloed analytics into disconnected point tools. The result was a SIEM that felt heavy, reactive, and underwhelming.

Read Post

Sumo Logic

Read more about Ten modern SIEM use cases at cloud scale

Elastic Security Explained: Transparency, AI, and the Future of Threat Hunting

Oct 2, 2025 By Elastic In Elastic

Elastic’s James Spiteri joins John Hammond to dive deep into the evolution of Elastic Security, from the ELK stack’s early days to today’s full-fledged, unified SIEM, XDR, and cloud security solution powered by agentic AI and automation. They discuss free tools, open detections, and how Elastic is making cybersecurity more accessible and collaborative for everyone.

View Video

Elastic

Read more about Elastic Security Explained: Transparency, AI, and the Future of Threat Hunting

Security Pipelines Are Broken. Here's How to Fix Them

Oct 2, 2025 By The Graylog Team In Graylog

There’s a quiet failure at the heart of many security programs. It’s not a lack of data. It’s too much of the wrong data. Telemetry pipelines built for volume, not visibility, now flood teams with noise instead of insight. The result? More alerts. Slower response. Overworked analysts are stuck maintaining ingestion rules instead of catching real threats.

Read Post

Graylog

Read more about Security Pipelines Are Broken. Here's How to Fix Them

Exabeam Delivers First Configurable Peer Benchmarking for CISO Decision-Making

Oct 1, 2025 By Exabeam In Exabeam

New capabilities in the Exabeam Nova Advisor Agent and Outcomes Navigator operationalize benchmarking for proactive security operations.

Read Post

Exabeam

Read more about Exabeam Delivers First Configurable Peer Benchmarking for CISO Decision-Making

From raw data to real-time defense: A conversation with John Hammond

Oct 1, 2025 By James Spiteri In Elastic

Explore how Elastic Security's unified platform with SIEM and XDR protections transforms SOC workflows through AI-powered analytics and consolidated security operations. Elastic Security Director of Product Management James Spiteri recently joined cybersecurity researcher, educator, and content creator John Hammond for an in-depth technical demonstration. John spends his days analyzing malware, breaking down attacker techniques, and making hackers earn their access.

Read Post

Elastic

Read more about From raw data to real-time defense: A conversation with John Hammond

From Fragmented Intel to Unified Response

Oct 1, 2025 By Beth Dannemiller In Securonix

Threat intelligence holds incredible promise—but only if it translates into timely, decisive action. Too often, security teams chase disconnected data across fragmented tools, incompatible formats, and siloed workflows. The result? Slower response times, missed threats, and exhausted SOC analysts. The answer is clear: unified intelligence. That’s the power of the Securonix Unified Defense SIEM and ThreatQ integration—streamlined, contextualized, and built for action.

Read Post

Securonix

Read more about From Fragmented Intel to Unified Response

What's New at Exabeam - October 2025

Oct 1, 2025 By Exabeam In Exabeam

Subscribe for more product demos and cybersecurity insights!

View Video

Exabeam

Read more about What's New at Exabeam - October 2025

OCSF for Security Hub: Sumo Logic and AWS speaking the same language

Sep 30, 2025 By Christopher Beier In Sumo Logic

In technology, the proof of a lasting relationship is in the infrastructure — the pipelines, security services, and log plumbing have to work seamlessly together long before anyone sees the outcome. That’s precisely what Sumo Logic and AWS have built. Aligned around open standards like OCSF (Open Cybersecurity Schema Framework), integrated with services like Security Hub and GuardDuty, and connected through shared telemetry, it makes cloud security and observability possible at scale.

Read Post

Sumo Logic

Read more about OCSF for Security Hub: Sumo Logic and AWS speaking the same language

The Value of a Robust Vulnerability Management Program

Sep 29, 2025 By Jeff Darrington In Graylog

Back before live security video feeds in homes, people would walk around at night checking to make sure they locked every window and door. They took these precautions because they knew that a single open lock gave burglars an opportunity to steal from them. For organizations, vulnerability management programs are a way to lock the doors against cybercriminals.

Read Post