NIBS (credit image/Pixabay/ Ryan McGuire)The first full week after the new year, few companies had readied announcements—only a single press release on the roundup this week. There may have been others, so apologies if these were missed.

LogRhythm announced several enhancements for its security operations solutions. The company has added new visualisations and analytics capabilities to LogRhythm Axon, the security operations platform it released in October. The intent is to provide seamless visibility into potential security risks. Axon is to make it easier for security analysts to detect, investigate, and report on potential threats, reducing the burden of managing threats and the operating infrastructure.

The new improvements to Axon include:

  • New custom and out-of-the-box analytics rules, including rules for MITRE ATT&CK detections
  • A new markdown widget and histogram widget will cut down on the time spent searching for data
  • Easily investigate log observations raised by analytics through the Observation Workflow

Eric L., Network Engineer at a global manufacturing company, commented, “Axon has already given our team the tools to effectively analyze our environment and improve our security posture. Data collection and correlation to detect threats and respond can be time-consuming. Axon gives us an intuitive interface to perform complex searches on data to filter in what really matters. We cannot wait to use the powerful analytics tools that will quickly surface threats.”

Other enhancements

Axon was not the only solution that LogRhythm worked on during the last quarter. The vendor also flagged several other enhancements. They included the following:

LogRhythm SIEM

  • Improved administrative workflow for collection shortens the time to configure, deploy, and manage log sources that require Open Collector
  • Enhanced audit logging makes it easier to monitor suspicious activity and track when users make important changes
  • Updated and expanded LogRhythm’s library of supported log sources

LogRhythm UEBA

  • New detection models for Windows systems to quickly uncover hard-to-detect threats

LogRhythm NDR

  • Improved blind spot detection and endpoint visibility through integration with Microsoft EDR
  • Easily ingest data from VirusTotal with a new configuration page
  • Improved analyst experience with expanded UI improvements

Kish Dill, Chief Product and Customer Officer of LogRhythm, said, “This quarter, we are especially excited about the number of groundbreaking and enhanced capabilities coming to our market-leading solutions. These enhancements and integrations have been curated with the goal of simplifying the lives of security analysts and enabling them to detect threats faster through seamless visibility, enhanced collection, and an intuitive analyst experience.”

LogRhythm continues to develop its solution, aiming to help security teams save the day and ensure that they don’t have to save the day by keeping organisations secure. Chris O’Malley, CEO of LogRhythm, commented, “On a daily basis, we strive to empower lean and overburdened security teams with the most intuitive experience and contextual analytics. By continuously working to fulfil that mission and deliver innovation that matters to customers every quarter, we are delivering on our promise of helping customers quickly reduce noise and secure their environment so that they can concentrate on safely competing in the digital age where fast beats slow.”

LEAVE A REPLY

Please enter your comment!
Please enter your name here