Splunk has infused its SIEM with user behavior analytics and threat intelligence to better identify anomalies and understand what's going on in a customer's environment, says CEO Gary Steele. Adding UEBA to the SIEM makes it easier for organizations to identify, detect and remediate anomalies.
The world's largest cybersecurity vendor continues to pull away from the competition. Microsoft's security sales surpassed $20 billion in 2022 after 33% annual growth. The cloud computing and software giant continues to reap the rewards of security tool consolidation.
Thoma Bravo, Vista Equity Partners and rival Francisco Partners have set their sights on a new target: Sumo Logic. Each of the three private equity firms has approached the Silicon Valley-based data analytics software vendor expressing interest in a possible acquisition, The Information reports.
The IntSights deal has allowed Rapid7 to offer more visibility into the threat landscape and target the phishing infrastructure used by hackers. The deal has helped Rapid7 determine the spoofed domains and the employees and social media accounts that adversaries have targeted, CEO Corey Thomas says.
A surging Elastic has joined perennial stalwarts Splunk and Microsoft atop the Forrester Wave: Security Analytics 2022 report, toppling SIEM players Exabeam, Securonix and IBM. Elastic went from not even being mentioned in the December 2020 security analytics Forrester Wave to leading the industry.
Businesses should capitalize on AI, ML and robotic process automation to address every event rather than just ignoring the ones deemed unimportant by a SIEM. Palo Alto Networks founder and CTO Nir Zuk says AI can be used to probe security incidents in real time rather than waiting for a breach.
Speaking at the company's annual conference, Palo Alto Networks CEO Nikesh Arora urged the industry to move away from the alert triage model popularized by SIEM. SIEM tools have for decades highlighted alerts for SOC analysts to focus on, but the most important ones are getting ignored, he warns.
Gartner recognized IBM as a Leader in the 2022 Garter® Magic Quadrant™ for Security Information and Event Management (SIEM), marketing the 13th consecutive time IBM has been named a Leader in this report. There's a reason why we believe IBM has been named a Leader in the Garter Magic Quadrant for SIEM 13 times- get...
This Technical Review by TechTarget’s Enterprise Strategy Group (ESG) documents IBM Security QRadar SIEM’s ability to simplify and improve threat detection, investigation, and response while reducing SIEM overhead through their SaaS offering.
This week's edition of the ISMG Security Report discusses the mistakes enterprises commonly make when building ransomware defenses, the cybersecurity capabilities being built by the U.S. Department of Energy, and the first female CEO at Securonix - one of only a handful in the vendor community.
Securonix has snagged longtime Ivanti, BMC Software and SAP executive Nayaki Nayyar as CEO to strengthen product capabilities and customer experience. One of a handful of female CEOs in the vendor community, she doubled Ivanti's total addressable market during her 30 months as president.
Security, observability and search vendor Elastic will shrink its workforce by 13% due to small and medium businesses reducing their purchases amid the economic downturn. Elastic will lay off nearly 400 of its 3,056 employees as it adopts an automated, low-touch motion for SMB customers.
Open Systems has purchased an early-stage Microsoft-centric MSSP to help automate investigating, triaging and responding to basic security alerts. The Silicon Valley-based MDR provider says its acquisition of U.K.-based Tiberium will free up security analysts to focus on preventative defenses.
According to Gartner, XDR adoption among enterprises is at 5% and is predicted to be 40% by 2027.
CISOs from leading organizations are embarking on XDR implementations to keep up with the evolving threat landscape. Don’t get left behind!
Along with the rapid adoption of XDR, there is often a lack of clarity...
SIEM (security information and event management) technology is now over a decade old, and legacy SIEMs simply can't keep up with the rate and sophistication of today's cyberattacks. For improved enterprise cybersecurity, SOC analysts must be able to anticipate threats and put measures in place to limit the...