LogRhythm has announced its seventh version of its security intelligence and analytics platform. It delivers improvements to its search, scalability, performance and security features set to allow organisations to detect and respond to cyberthreats faster.
The paradigm shift to detection and respond
The cyberthreat is unavoidable. There have been several studies this year that have indicated the cyberthreat is increasing. No longer is the threat merely the hacker in the bedroom, organised crime and nation states are joining in what has been termed a cybersecurity war. The Panda Labs report for Q2 2015 showed increases in malware. The Ponemon Institute also had similar findings, revealing in its 2015 Global Cost of Data Breach Study that there is a continual rise in the frequency and of the costs associated with Cyber attacks.
The costs associated with cybersecurity breaches are not only also increasing but there is a growing understanding amongst board directors around what those costs actually are. The costs of fines are increasing, the immediate impact on the operations of a business can be impacted as well as damage to the brand. There is also now a degree of understanding that customers expect companies to do far more to protect their data in the future, even to the point of delivering assistance to those who have been impacted.
There is also a growing demand for companies, fuelled by potential regulation that cyber breaches need to be reported. Previously breaches have either been ignored or even not noticed, those days are coming to an end.
Chris Peterson, SVP Products, CTO and Co-Founder of LogRhythm commented “There needs to be a paradigm shift from trying to prevent things that can no longer be prevented to being able to detect and respond far more quickly”.
LogRhhthm believes they are achieving this in their latest release.
Fundamental changes in 7
The update includes three fundamental improvements to LogRhythm and its ability to help customers
- Improvements to search functionality
- Improvements on its ability to scale to large data sets.
- Improvements on efficiency for businesses to identify and react to threats.
Crucial to the first two improvement in the new version of Logrhythm 7 is the introduction of Elasticsearch. LogRhythm has re-architected both their data provision and data indexing to use elastic search. This offers them significant improvements in indexing, up to 300% potentially per node claimed, and the ability to cope with far larger data sets using the NoSQL database.
The NoSQL database will allow LogRhythm to access larger datasets and increase the scalability of the product to meet the requirements of the largest of enterprises. It then will become more about the compute power and data storage capability of the customer.
These improvements were needed by LogRhythm to attack different market sectors and allow it to compete effectively, not just against companies like NetScout but also the array of startups that are finding innovative solutions to the problem. The addition of Elasticsearch has allowed it to introduce searching capability that includes both contextual and test based search criteria and open up the platform capabilities. It is those capabilities that LogRhythm has already extended its platform to take advantage of.
(Next: Delivering Business benefit)