AI Engine delivers real-time visibility to risks, threats and critical operations issues.
LogRhythm’s Advanced Intelligence (AI) Engine is a fully integrated component of any LogRhythm deployment, delivering automated, continuous analysis of all activity observed within the environment in a uniquely intuitive fashion. With a practical combination of flexibility, usability and comprehensive data analysis, AI Engine delivers real-time visibility to risks, threats and critical operations issues that are otherwise undetectable in any practical way. AI Engine is Correlation That Works!
With over 300 preconfigured, out-of-the-box correlation rule sets and a wizard-based drag-and-drop GUI for creating and customizing even complex rules, AI Engine enables organizations to predict, detect and swiftly respond to:
- Sophisticated intrusions
- Insider threats
- Network behavior anomalies
- Compliance violations
- Disruptions to IT Services
- And many other critical actionable event
AI Engine Mitigates Malware and
Intrusion Related Incidents
AI Engine provides substantial benefit for detecting / mitigating malware and intrusion related incidents.
Comprehensive Advanced Correlation
Unlike legacy SIEM solutions, AI Engine leverages its integration with the log and event management functions within the LogRhythm platform to correlate against all data – not just a pre-filtered subset of security events. Seamless integration also enables immediate access to all forensic data directly related to an event.
AI Engine rules draw from over 70 different metadata fields that provide highly relevant data for analysis and correlation. Whether detected by out-of-the-box rules or user-created/modified rules, AI Engine identifies and alerts on actionable events with tremendous precision, for security, compliance and operations. AI Engine can also be used to cast a wide net through generalized correlation rules for broader visibility that accommodates changes in event behavior.
LogRhythm has combined enterprise-wide advanced correlation and pattern recognition with automated behavioral and statistical analysis to deliver the industry’s first Multi-dimensional Analytics capabilities. By combining advanced statistical and heuristic analysis with behavioral whitelisting, LogRhythm enables organizations to automate the process of learning what constitutes “normal” behavior on any combination of attributes tied to users, hosts, applications, or devices. Integrating these capabilities with advanced correlation and pattern recognition eliminates three significant problems for users of 1st generation SIEMs – the inability to accurately define what constitutes “normal” activity, a deluge of false positives that limits the ability to identify and understand meaningful events, and the uncertainty due to false negatives.
Download Advanced Intelligence Engine Datasheet US
Download Advanced intelligence Engine Datasheet A4