%term

The latest News and Information on Security Incident and Event Management.

Endpoint Security Management | 24/7 Protection for Every Device by LevelBlue

Mar 10, 2025 By LevelBlue In LevelBlue

It’s not a matter of if your organization will face a cyberattack – it’s when. Our experts provide 24/7 endpoint security management, helping you defend your devices from advanced threats with automated solutions and expert support. Our Endpoint Security Solutions Include: • Endpoint Detection and Response (EDR) Why Choose LevelBlue? 24/7 Monitoring & Support Tailored Endpoint Security Solutions Expert Threat Intelligence & Response Flexible Protection Across Devices & Platforms.

View Video

LevelBlue

Read more about Endpoint Security Management | 24/7 Protection for Every Device by LevelBlue

Elastic Security wins AV-Comparatives 2024 Enterprise Approved Product Award

Mar 6, 2025 By Tamarian Del Conte In Elastic

Awarded for outstanding protection, performance, and minimal false positives. Elastic Security has earned AV-Comparatives’ 2024 Approved Product Award in the Enterprise Main-Test Series. The honor reflects its outstanding malware defense, optimal system performance, and minimal false positives. Excelling across protection, performance, and false-positive benchmarks, Elastic Security has proven its ability to safeguard organizations without compromise.

Read Post

Elastic

Read more about Elastic Security wins AV-Comparatives 2024 Enterprise Approved Product Award

EventSentry v5.2: Processes, Security & Inventory

Mar 5, 2025 By ingmar.koecher In EventSentry

The latest iteration of EventSentry adds many powerful security features, continuing to enhance EventSentry’s ability to improve the security of Windows-based networks by strengthening its foundation and detecting suspicious behavior.

Read Post

EventSentry

Read more about EventSentry v5.2: Processes, Security & Inventory

The Log360 security platform: Thinking outside the logs

Mar 5, 2025 By IT Security In ManageEngine

We’re excited to announce the evolution of our SIEM solution, Log360, into a unified security platform. ManageEngine Log360 has adopted an open API-compatible architecture, allowing for expanded capabilities, seamless integration, and the ability to customize both data reporting and the underlying framework. This upgrade empowers you to extend the solution beyond its predefined functionalities, helping you unify and streamline security operations.

Read Post

ManageEngine

Read more about The Log360 security platform: Thinking outside the logs

Hunters Announces New AI Capabilities with Pathfinder AI for Smarter SOC Automation

Mar 4, 2025 By Hunters

Pathfinder AI expands Hunters' vision for AI-driven SOCs, introducing Agentic AI for autonomous investigation and response.

Read Post

Read more about Hunters Announces New AI Capabilities with Pathfinder AI for Smarter SOC Automation

Why API Discovery Is Critical to Security

Mar 4, 2025 By Jeff Darrington In Graylog

For Star Trek fans, space may be the final frontier, but in security, discovering Application Programming Interfaces (APIs) could be the technology equivalent. In the iconic episode “The Trouble with Tribbles,” the legendary starship Enterprise discovers a space station that becomes overwhelmed by little fluffy, purring, rapidly reproducing creatures called “tribbles.” In a modern IT department, APIs can be viewed as the digital tribble overwhelming security teams.

Read Post

Graylog

Read more about Why API Discovery Is Critical to Security

EventSentry Training [11-09]: Sysmon Management / Security & Compliance

Mar 4, 2025 By EventSentry In EventSentry

Shows how to deploy Sysmon and centrally manage the Sysmon configuration file with EventSentry.

View Video

EventSentry

Read more about EventSentry Training [11-09]: Sysmon Management / Security & Compliance

M-21-31 logging compliance: Where are we now?

Mar 3, 2025 By Leanne Link In Elastic

How US federal agencies can better meet advanced event logging requirements For the past four years or so, US federal agencies have been working to comply with the requirements set out in OMB M-21-31. Released in 2021, the Office of Management and Budget (OMB)’s M-21-31 memorandum provided guidance and requirements for federal agencies in order to improve centralized visibility into logging data before, during, and after cybersecurity incidents.

Read Post

Elastic

Read more about M-21-31 logging compliance: Where are we now?

FERC and NERC: Cyber Security Monitoring for The Energy Sector

Mar 3, 2025 By Jeff Darrington In Graylog

As cyber threats targeting critical infrastructure continue to evolve, the energy sector remains a prime target for malicious actors. Protecting the electric grid requires a strong regulatory framework and robust cybersecurity monitoring practices. In the United States, the Federal Energy Regulatory Commission (FERC) and the North American Electric Reliability Corporation (NERC) play key roles in safeguarding the power system against cyber risks.

Read Post

Graylog

Read more about FERC and NERC: Cyber Security Monitoring for The Energy Sector

Security Misconfigurations: A Deep Dive

Feb 27, 2025 By Jeff Darrington In Graylog

Managing configurations in a complex environment can be like playing a game of digital Jenga. Turning off one port to protect an application can undermine the service of a connected device. Writing an overly conservative firewall configuration can prevent remote workforce members from accessing an application that’s critical to getting their work done.

Read Post