Cloud App Development
Business Wire | October 04, 2023
LogRhythm, the company helping security teams stop breaches by turning disconnected data and signals into trustworthy insights, today announced its 6th consecutive quarterly release and the one-year anniversary of its groundbreaking cloud-native SaaS SIEM platform, LogRhythm Axon. This quarterly release introduces significant enhancements and expansion to Axon and the full suite of LogRhythm solutions, underscoring the company's commitment to continuous innovation in the global cybersecurity landscape.
"In a dynamic and ever-evolving cybersecurity landscape, LogRhythm is obsessed with delivering value our customers care about,” said Chris O’Malley, CEO of LogRhythm. “As we celebrate the one-year anniversary of Axon's launch, customer satisfaction is our first priority, guiding every decision we make. We believe that by driving continuous improvements in innovation delivery rooted in well understood customer needs, we can empower our product users to navigate the complex world of cybersecurity with confidence and efficiency."
SOC Efficiency and Streamlined Analyst Workflows
LogRhythm’s latest Axon release rounds out the ability to seamlessly detect, investigate, and respond to potential threats within a security operations center. With the foundation of incident response, security teams can now leverage Axon to automate team workflows through case management. Case management enables analysts to automatically create cases that enable investigative workflows to track responses to threats, thus mitigating duplication of efforts and optimizing threat mitigation strategies. In addition, Axon’s new Signal Replay feature enables SOC teams to test analytics rules to ensure detections are optimized for their environment.
Continuing the effort to advance SOC efficiency, LogRhythm SIEM now provides seamless integration of log source onboarding through centralized management. This enhanced SIEM capability eliminates the need for administrators to navigate several servers and UIs to complete onboarding, thereby streamlining workflows through a single interface, increasing productivity, and reducing the administrative process in half.
Bridging the Skills Gap
LogRhythm continues to address the industry-wide skills gap by providing features that enhance the productivity and onboarding processes for security analysts. The new in-product resource centers for both LogRhythm SIEM and LogRhythm Axon equip security teams with tools they need to quickly understand how to best utilize the platforms and realize a faster time to value. This comprehensive resource hub provides quick access to tutorials, documentation, release information, and the LogRhythm Community for support from the security community.
LogRhythm Expands Cloud-Native SIEM Platform to APAC
LogRhythm is also pleased to announce the successful expansion of their LogRhythm Axon SIEM platform to the APAC region. With a new instance in Australia, LogRhythm Axon’s cloud-native SIEM will be available to provide customers with a flexible solution to strengthen security operations and ensure comprehensive protection.
In partnership with Seamless Intelligence, LogRhythm’s partner of the year in Australia, a managed services layer will also be available for LogRhythm Axon customers. “LogRhythm Axon significantly advances what customers can and should expect from a cloud-native SaaS SIEM platform. We’ve been impressed with its platform design and architecture, as well as the continuous pace of innovation,” said Chris Bolan, Managing Director of Seamless Intelligence. “Our Axon managed services are being developed to take advantage of the platform’s capabilities and to provide our clients with the world-class cybersecurity solution and services needed to keep their organizations safe.”
Additional enhancements with LogRhythm SIEM, LogRhythm NDR and LogRhythm Axon solutions released in this quarterly rollout include:
LogRhythm Axon:
User anomaly detection for improbable travel allows protection against abnormal access attempts into an organization's environment.
New case management feature automates incident response and investigative workflows, helping SOC teams delegate resources, prioritize their work and improve efficiency. Cases and email notifications can be automatically created or sent when an analytic rule is triggered, indicating an event requires immediate attention.
Ability to search common events allows analysts to find relevant security events across different vendors’ log sources without having prior knowledge of the underlying log structure.
New signal replay enhances threat detection development process by allowing testing for analytics rules to ensure they are fine-tuned and optimized for their environment.
LogRhythm SIEM:
Streamlined onboarding of Beats and Open Collectors, a collection of LogRhythm services that gather and normalize data from various cloud providers, in a single location to cut the workflow in half.
Enhanced API log source onboarding for easier management of Open Collectors and Beats.
Expanded library of supported log sources and parsing for improved correlation and analysis.
In-product Resource Center for access to tutorials, announcements, docs, and support.
LogRhythm NDR:
IP Behind Load Balancer Tracking for faster triage capabilities when responding to incidents.
Enhanced model output contextualization to empower quicker action to threats as relevant information is readily available.
In addition to LogRhythm's commitment to innovation and seamless cybersecurity solutions, Novacoast has also emerged as the first Axon services provider for LogRhythm's customer base. Novacoast's expertise in delivering innovative cybersecurity services adds a new layer of value to the already impressive suite of LogRhythm Axon capabilities.
“This strategic partnership reflects the platform's efficacy and flexibility in enhancing security programs across diverse environments,” said Jonathan Poon, CISO at Novacoast. “As LogRhythm continues to adapt its Axon offerings to address customer requirements, we are proud to be part of this evolution, propelling the cybersecurity landscape forward. Together, we are addressing industry needs and setting the standard for security services.”
About LogRhythm
LogRhythm helps security teams stop breaches by turning disconnected data and signals into trustworthy insights. From connecting the dots across diverse log and threat intelligence sources to using sophisticated machine learning that spots suspicious anomalies in network traffic and user behavior, LogRhythm accurately pinpoints cyberthreats and empowers professionals to respond with speed and efficiency.
With cloud-native and self-hosted deployment flexibility, out-of-the-box integrations, and advisory services, LogRhythm makes it easy to realize value quickly and adapt to an ever-evolving threat landscape. Together, LogRhythm and our customers confidently monitor, detect, investigate, and respond to cyberattacks. Learn more at logrhythm.com.
Read More
Cloud Infrastructure Management
GlobeNewswire | September 27, 2023
VAST Data, the AI data platform company and CoreWeave, a specialized cloud provider powering many of the world’s leading generative AI efforts, today announced a strategic partnership that will further CoreWeave’s mission to deliver highly scalable and performant cloud infrastructure for AI and accelerated compute workloads. CoreWeave has selected the VAST Data Platform, the world’s first data platform designed for the AI era, to build a global, NVIDIA-powered accelerated computing cloud for deploying, managing and securing hundreds of petabytes of data for generative AI, high performance computing (HPC) and visual effects (VFX) workloads.
CoreWeave did extensive research and testing before selecting VAST Data to power all of its data centers. The VAST Data Platform has the necessary scale, performance, and multi-tenant enterprise AI cloud capabilities required to power the massive AI and LLM training and inference applications that are now transforming everything from business, to science, to society itself.
CoreWeave’s customers demand the most secure and scalable solutions on top of the industry’s fastest and most flexible infrastructure to keep their data safe," said Michael Intrator, CEO and co-founder of CoreWeave. We’re delighted to partner with VAST Data to deliver a multi-tenant and zero-trust environment purpose-built for accelerated compute use cases like machine learning, VFX and rendering, Pixel Streaming and batch processing that’s up to 35 times faster and 80 percent less expensive than legacy cloud providers. This partnership is rooted in a deep technical collaboration that will push the boundaries of data-driven accelerated computing to deliver the world’s most optimized AI cloud platform.
Through their joint partnership CoreWeave and VAST Data are leveraging NVIDIA technology to engineer a new data platform architecture for large-scale, end-to-end data pipelines and deliver next-generation data services for AI workloads. To support this, the VAST Data Platform boasts an enterprise network attached data store that is certified for use with NVIDIA DGX SuperPOD and eliminates tiers and infrastructure silos to make large scale AI simpler, faster and easier to manage at virtually limitless levels of scale and performance.
“Since our earliest days, VAST Data has had a single vision of building an architecture that could power the needs of the most demanding cloud-scale AI applications," said Renen Hallak, Founder and CEO of VAST Data. "We could not imagine a better cloud platform to realize this vision than what we’re creating with CoreWeave. We are humbled and honored to partner with the CoreWeave team to push the boundaries of modern AI computing and to build the infrastructure that will serve as the foundation of tomorrow’s AI-powered discoveries.”
About VAST Data
VAST Data is the data platform software company for the AI era. Accelerating time-to-insight for workload-intensive applications, the VAST data platform delivers scalable performance, radically simple data management and enhanced productivity. Launched in 2019, VAST is the fastest-growing data infrastructure company in history. For more information, please visit https://vastdata.com and follow VAST Data on Twitter and LinkedIn.
About CoreWeave
Founded in 2017, CoreWeave is a specialized cloud provider, delivering a massive scale of GPU compute resources on top of the industry's fastest and most flexible infrastructure. CoreWeave builds cloud solutions for compute-intensive use cases — machine learning and AI, VFX and rendering, life sciences, the Metaverse, and real-time streaming — that are up to 35 times faster and 80% less expensive than the large, generalized public clouds. Learn more at www.coreweave.com.
Read More
Cloud Security
Business Wire | November 03, 2023
Sysdig, the leader in cloud security powered by runtime insights, today released at SANS CyberFest 2023 the 5/5/5 Benchmark for Cloud Detection and Response, a new framework that outlines how quickly organizations should detect, triage, and respond to attacks in the cloud. Operating securely in the cloud requires a mindset shift in regard to time, and with that, cloud security programs need to hold themselves to a modernized benchmark: five seconds to detect, five minutes to correlate insights and understand what’s happening, and five additional minutes to respond. Recent findings by the Sysdig Threat Research Team published in the 2023 Global Cloud Threat Report note that, after discovering an exploitable target, malicious actors require less than 10 minutes to execute an attack.
Cloud attacks are swift and sophisticated, requiring robust threat detection and response programs that move at the speed of the cloud. On-premises attacks take 16 days on average and antiquated frameworks challenge security teams to respond to a breach within 60 minutes, which is simply insufficient for the cloud. Bad actors are exploiting the automation and scale of the cloud, along with new techniques, to accelerate all stages of an attack and inflict damage within minutes. The 5/5/5 Benchmark guides organizations to detect and respond to cloud attacks faster than adversaries can complete them.
The Challenge
Detect threats within five seconds.Organizations should be able to gather detection signals from their cloud security tools in real time to ensure visibility into ephemeral assets.
Correlate and triage within five minutes.Teams should be able to gather full context for all correlated signals within five minutes of receiving the first relevant alert.
Initiate a response within five minutes.Organizations should be able to initiate a tactical response within five minutes of confirming that an attack is in progress.
What people are saying
People are always looking for security metrics, especially when the industry evolves into new operating models. We have plenty of 'best practices,' but no real way to quantify cloud security agility — until now, said Anna Belak, Director, Office of Cybersecurity Strategy at Sysdig. The 5/5/5 Benchmark, built in partnership with our customers, industry analysts, and the Sysdig Threat Research Team, sets a new standard for operating securely in the cloud.
“As organizations move to the cloud, traditional on-premises security standards become outdated and too slow. In the cloud, both innovation and attacks happen quickly – companies need security tools, processes, and standards designed to operate at the speed of cloud-native environments,” said Phil Bues, Research Manager for IDC Cloud Security.
“I don’t want to know 15 minutes after someone breached my system. I need to know instantly so that we can shut it down before the blast radius expands,” said Kuldeep Tomar, Head of Information Security at India’s leading digital skill games company and 5/5/5 Benchmark Advisor. “To move at the necessary speed, you need to not only be alerted to the right things, but also respond appropriately. Having a benchmark gives us a goal to hold ourselves to.”
About Sysdig
In the cloud, every second counts. Attacks move at warp speed, and security teams must protect the business without slowing it down. Sysdig stops cloud attacks in real time, instantly detecting changes in risk with runtime insights and open source Falco. Sysdig correlates signals across cloud workloads, identities, and services to uncover hidden attack paths and prioritize real risk. From prevention to defense, Sysdig helps enterprises focus on what matters: innovation. Sysdig. Secure Every Second.
Read More
Cloud App Management
Business Wire | November 01, 2023
Cohesity, a leader in AI-powered data security and management, today announced the launch of Cohesity SmartFiles on the Snowflake Data Cloud. This new integration enables businesses to derive analytical insights from their on-premises and cloud data while maintaining data sovereignty and meeting compliance requirements.
Snowflake recognizes the critical importance of providing customers with advanced data security and management while mining their data for strategic insights, said Kit Beall, Chief Revenue Officer, Cohesity. As a leader in AI-powered enterprise data security and management, we seek partners equally dedicated to the secure storage and management of customer data. That is why we are delighted to partner with Snowflake to continue delivering innovative and secure solutions that our customers can confidently rely on.
By leveraging the Snowflake Data Cloud, Cohesity is joining Snowflake in mobilizing the world’s data to help organizations reap the benefits of their analytics capabilities without having to move their data to the cloud for analysis. With Cohesity SmartFiles, joint customers can store their data locally in SmartFiles and leverage Snowflake’s analytics capabilities with the flexibility to keep data either on-premises or in the cloud. This integration provides customers with broader access and choice while allowing them to adhere to strict internal policies.
Cohesity SmartFiles augments customers’ cloud-native Snowflake Data Cloud to include on-premises repositories and extends secure access to sensitive local data records. Cohesity SmartFiles also provides a secure platform for consolidating application data that is designed to improve storage efficiency and reduce overall cost of ownership for local Snowflake repositories.
“Cohesity’s commitment to helping Snowflake mobilize the world’s data can be seen through the launch of the SmartFiles integration,” said Tarik Dwiek, Head of Technology Alliances, Snowflake. “We look forward to partnering with Cohesity to allow access to SmartFiles in the cloud or on-premises through Snowflake’s single, integrated platform.”
This collaboration with Snowflake and Cohesity enables joint customers to gain more value from their data while optimizing cost, scale, and efficiency for their Snowflake data.
About Cohesity
Cohesity is a leader in AI-powered data security and management. Aided by an extensive ecosystem of partners, Cohesity makes it easier to protect, manage, and get value from data – across the data center, edge, and cloud. Cohesity helps organizations defend against cybersecurity threats with comprehensive data security and management capabilities, including immutable backup snapshots, AI-based threat detection, monitoring for malicious behavior, and rapid recovery at scale. Cohesity solutions can be delivered as a service, self-managed, or provided by a Cohesity-powered partner. Cohesity is headquartered in San Jose, CA, and is trusted by the world’s largest enterprises, including six of the Fortune 10 and 42 of the Fortune 100.
Read More