Home SecurityNetwork Security LogRhythm takes SIEM to the subsequent degree

LogRhythm takes SIEM to the subsequent degree

by ethhack

Once they have been first created, Security Information and Event Manager (SIEM) platforms solved an enormous downside in cybersecurity: Too many alerts have been being generated by a number of defensive instruments like firewalls and log analyzers, and knowledge know-how groups had to enter every of them individually to examine the well being of their community. SIEMs collected all of that knowledge in a single place.

As we speak, most SIEMs are overloaded themselves, and simply gathering knowledge is not such a useful talent. To be really helpful in at present’s threat-rich surroundings, SIEMs want to investigate threats from a number of angles, assist to categorise them based mostly on their severity, and supply instruments to assist mitigate the issue. And a very superior SIEM would even remedy a few of these issues mechanically, saving time and additional lowering the entire safety noise {that a} fashionable enterprise community generates.

That’s a reasonably tall order, however it’s one which LogRhythm was capable of effortlessly sort out throughout this analysis.

Getting began

LogRhythm provides two core merchandise: LogRhythm Enterprise, which is designed to drop into advanced, enterprise environments with lots of present safety instruments, and LogRhythm XM, which is designed for small and medium sized companies that don’t have lots of cyber maturity or strong monitoring and defenses. We checked out LogRhythm Enterprise.

LogRhythm considers its product a next-generation SIEM, and has for years been included within the Gartner magic quadrant for that class. Whereas it’s true that there are lots of very useful extra options packed into LogRhythm Enterprise, together with automation, the principle console is straight away recognizable as an SIEM.

LogRhythm Dashboard John Breeden II

There are lots of very helpful additional options in LogRhythm Enterprise, however proper from the principle dashboard, it’s clear that the guts of the platform is an enterprise SIEM.

Source link

Related Articles

Leave a Comment