Establishes SIEM as the Platform for Cyber Threat Defense, Detection and Response
BOULDER, Colo.—October 12, 2011—LogRhythm, a leader in log management and SIEM, today announced LogRhythm 6.0, a major evolution to its award-winning SIEM security intelligence platform with significant innovations in cyber threat defense, detection and response. LogRhythm 6.0 addresses the rapidly evolving sophistication in cyber threats, intrusions and data breaches, enabling organizations to extend their security strategy beyond point protection measures to accelerate the detection of, and response to, even the most advanced attacks. Customers gain immediate protection from an integrated solution that provides advanced threat detection, automated intelligent response, compliance automation and assurance and expanded embedded expertise. LogRhythm also announced today record growth in sales, new customers and channel expansion (see accompanying release, titled “LogRhythm Achieves Record Growth and Accelerated Adoption of SIEM Security Intelligence Platform”).
The hacker ecosystem is developing at an alarming rate as hackers and cyber terrorists gain the expertise and toolkits required to breach seemingly well protected networks and systems. Given the shifting threat landscape, even organizations that have implemented sophisticated security practices are quickly realizing that everyone is at risk and it’s not a matter of if but when. LogRhythm 6.0 delivers the expanded visibility organizations need to detect and respond more rapidly to advanced threats.
“We originally deployed LogRhythm to improve our security posture and increase the efficiency of our security operations,” said Wayne Proctor, VP Information Security Group Manager at Bank of the West. “LogRhythm 6.0 introduces new innovations that will help us further secure our environment and, through SmartResponse™, improve our incident response time and free up valuable IT resources to focus more on delivering the best in financial services to our customers.”
Accelerated Detection of Threats and Breaches
LogRhythm 6.0 enables organizations to cast a spotlight on the most likely targets of an attack. By combining situational awareness and target profiling with host and user activity monitoring and advanced correlation and pattern recognition, organizations can now detect suspicious and threatening activity faster and more accurately. Additionally, LogRhythm 6.0 introduces targeted information delivery, a selection of customizable interfaces tailored to ensure the right information gets to the right people at the right time, and in a format suited to their specific role and job function.
“The growing sophistication of attacks and high-profile breaches have organizations realizing they need responsive and actionable insight into the reality of their security posture now more than ever,” said Scott Crawford, managing research director, Security & Risk Management at Enterprise Management Associates. “The management of security-relevant information is critical for any organization looking to respond to evolving threats and LogRhythm’s new target-aware pattern recognition and SmartResponse offers distinctive new capabilities to the IT security arsenal.”
Automated Intelligent Response
Organizations need the assistance of intelligent, automated remediation and the granular controls to ensure immediate action is taken when appropriate and escalation for remediation approval occurs when warranted. LogRhythm 6.0 empowers organizations with SmartResponse, intelligent process-driven capabilities to automatically take action in response to any alarm. SmartResponse delivers immediate action when threats or breaches are identified, internal or compliance-specific policies are violated, or critical operational thresholds are crossed. Responses can be immediate and fully automated or leverage the optional workflow-aligned approval process for up to three levels of approvals required to trigger a specific remediation action.
Expanded Embedded Expertise
LogRhythm 6.0 advances security intelligence through the introduction of Knowledge Modules, pre-packaged, tailored content aligned with specific regulatory mandates, use cases or functions being performed by specific users of the LogRhythm platform. Produced by the LogRhythm Labs’ team of knowledge experts, knowledge modules contain pre-built reports, investigations, alerts, AI Engine pattern recognition or correlation rules, lists, layouts, remediation plug-ins or widgets. Users can opt-in to any and all modules they deem relevant to their use of the LogRhythm platform. Once selected, modules can be rapidly applied to customer environments and automatically propagated throughout the LogRhythm platform. Knowledge modules provide LogRhythm customers with continuous research, insight and intelligence related to threats, responses and regulatory mandates, along with the tools, templates and best-practices they need to harness this embedded expertise.
“To address the threats of today and tomorrow, organizations require an integrated security intelligence platform providing real-time situational awareness on the state of their network and the threats within and out,” said Chris Petersen, CTO and co-founder of LogRhythm. “With LogRhythm 6.0, we deliver on this need and introduce the next required evolution in SIEM – usable automatic remediation. The combination of target aware pattern recognition with SmartResponse allows our customers to accurately detect high risk threats and automatically and intelligently, remediate when seen.”
LogRhythm delivers the visibility and insight needed to detect, defend against and respond to increasingly sophisticated cyber threats, efficiently meet compliance requirements and proactively respond to operational challenges. LogRhythm uniquely analyzes and manages network, host, file and user activity data in a highly scalable, integrated solution. Its innovative log management and SIEM solution detects the previously undetectable, delivers powerful forensics and provides actionable intelligence. Additionally, LogRhythm technology is also used to ensure compliance with a myriad of mandates such as PCI DSS, NERC CIP, GLBA, FISMA, HIPAA, SOX and GPG 13.
Accelerated Performance and Extended Support for Big Data
LogRhythm 6.0 also features performance increases of up to four times that of LogRhythm’s award-winning 5.1 version. The 6.0 performance enhancements enable customers to collect, analyze and correlate massive amounts of data efficiently and effectively. Advances in LogRhythm’s proprietary data architecture and new high performance database techniques have resulted in unprecedented speeds in indexing, reporting and search as well as a 2X increase in storage efficiency for indexed and raw logs.
Pricing and Availability:
LogRhythm 6.0 is available immediately. For more information please visit, www.logrhythm.com.
LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding to and neutralizing damaging cyberthreats. The LogRhythm platform combines user and entity behavior analytics (UEBA), network traffic and behavior analytics (NTBA) and security automation & orchestration (SAO) in a single end-to-end solution. LogRhythm’s Threat Lifecycle Management (TLM) framework serves as the foundation for the AI-enabled security operations center (SOC), helping customers measurably secure their cloud, physical and virtual infrastructures for both IT and OT environments. Built for security professionals by security professionals, the LogRhythm platform has won many accolades, including being positioned as a Leader in Gartner’s SIEM Magic Quadrant.