LogRhythm Partners with FireEye to Deliver Big Data Security Analytics Platform with Advanced Malware Protection

Leading SIEM 2.0 platform provider announces integration with FireEye’s malware protection system

BOULDER, Colo.—April 30, 2013—LogRhythm, the world’s largest and fastest growing independent vendor of next-generation Security Information and Event Management (SIEM) solutions, and FireEye®, Inc., a leader in stopping today’s new breed of cyber attacks, today announced a partnership to integrate their products. Through this integration, FireEye’s and LogRhythm’s joint customers will now have the ability to rapidly detect and protect against today’s most advanced malware and advanced persistent threats (APTs).

The formal partnership enables the companies to tightly integrate the best-in-class LogRhythm SIEM 2.0 Big Data Security Analytics solution with the award-winning FireEye advanced malware protection system. The tightly integrated LogRhythm and FireEye offering will provide enterprises with next generation multi-dimensional big data security analytics with advanced malware protection in a fully integrated solution.

“LogRhythm’s industry-leading multi-dimensional security analytics capabilities helps extend the value of our award-winning threat intelligence platform by interpreting and correlating data from across an organization,” said Brent Remai, chief marketing officer at FireEye. “We look forward to working with LogRhythm to provide joint customers with greater protection from today’s advanced threats and to enable them to respond more effectively to a rapidly evolving threat landscape.”

The FireEye platform unifies many security technologies to help enterprises modernize their security strategies, helping to stop today’s new breed of cyber attacks, such as zero-day and APT attacks, that bypass traditional defenses and compromise over 95 percent of networks. It is a cross-enterprise, signature-less protection platform designed to secure across attack vectors and across every stage of an attack life cycle, from exploit to exfiltration.

LogRhythm’s SIEM 2.0 Big Data Analytics platform allows organizations to baseline normal, day-to-day activity across multiple dimensions of the enterprise. The system then analyzes against that baseline the massive volume of log, flow and machine data generated every second to identify highly corroborated threats and anomalies in real-time. By doing so, LogRhythm enables enterprises to detect and respond to even the most sophisticated threats and breaches more rapidly than ever before.

FireEye identifies an infected system and blocks any malware outbound transmissions to neutralize the cyber attack. In conjunction, LogRhythm’s best-in-class Big Data Security Analytics platform provides key reporting and big data security analytics to interpret and correlate event data from across an organization.

Key benefits and features of the integrated LogRythm and FireEye solution include:

  • Robust reporting and analytics for FireEye and malware statistics

  • Identification of compromised users, hosts and devices by correlating FireEye intelligence with other machine data from across the IT environment

  • Improved corroboration and risk-based prioritization of security events

  • Modeling of malware indictors from FireEye using LogRhythm’s multi-dimensional behavioral analytics to extend the value of FireEye data across the organization

  • Deep forensic visibility into malware attack vectors and patterns

“The sophistication and frequency of security threats continue to increase dramatically, and traditional perimeter defenses are no longer sufficient,” said Martin Littmann, director of information technology systems at Kelsey-Seybold Clinic. “The new breed of advanced malware and cyber security threats require the next-generation protection that we get from our integrated use of FireEye and LogRhythm.”

“We’re very pleased to be working with one of the pioneers in advanced malware protection,” said Matt Winter, vice president of corporate & business development at LogRhythm. “The integration of FireEye and LogRhythm represents two next-generation solutions working together to combat today’s increasingly sophisticated cyber threats.”

About FireEye, Inc.

FireEye® has pioneered the next generation of threat protection to help organizations protect themselves from being compromised. Cyber attacks have become much more sophisticated and are now easily bypassing traditional signature-based defenses, such as next-generation firewalls, IPS, anti-virus, and gateways, compromising the majority of enterprise networks. The FireEye platform supplements these legacy defenses with a new model of security to protect against the new breed of cyber attacks. The unique FireEye platform provides the industry’s only cross-enterprise threat protection fabric to dynamically identify and block cyber attacks in real time. The core of the FireEye platform is a signature-less, virtualized detection engine and a cloud-based threat intelligence network, which help organizations protect their assets across all major threat vectors, including Web, email, mobile, and file-based cyber attacks. The FireEye platform is deployed in over 40 countries and more than 1,000 customers and partners, including over 25 percent of the Fortune 100.

About LogRhythm

LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding to and neutralizing damaging cyberthreats. The LogRhythm platform combines user and entity behavior analytics (UEBA), network traffic and behavior analytics (NTBA) and security automation & orchestration (SAO) in a single end-to-end solution. LogRhythm’s Threat Lifecycle Management (TLM) workflow serves as the foundation for the AI-enabled Security Operations Center (SOC), helping customers measurably secure their cloud, physical and virtual infrastructures for both IT and OT environments. Built for security professionals by security professionals, the LogRhythm platform has won many accolades, including being positioned as a Leader in Gartner’s SIEM Magic Quadrant.