November 16, 2016

LogRhythm, The Security Intelligence Company, today announced the release of LogRhythm 7.2, a major upgrade to its leading security intelligence and analytics platform. Purpose-built to power the next-generation Security Operations Center (SOC), LogRhythm’s platform is now further optimized to deliver the industry’s most efficient, effective end-to-end threat lifecycle management solution. This release extends LogRhythm’s lead in providing the most accurate security analytics with embedded security automation and orchestration to help customers quickly detect, respond to and neutralize cyberthreats before they result in a material breach.

“LogRhythm is putting customers first by developing features collaboratively with users. The Threat Intelligence Service in LogRhythm 7.2 is more actionable and helpful than 7.1 in surfacing important data for better incident response through security automation and orchestration.”

The risk of a breach is climbing steadily, and cloud and internet of things (IoT) deployments further expand the enterprise attack surface. Enterprise security operations teams recognize that executing end-to-end threat lifecycle management is the only way to effectively manage that risk. However, most are understaffed and overwhelmed, lacking the necessary analytics, automation, and orchestration to stay ahead.

LogRhythm 7.2 addresses these issues by delivering unmatched capabilities in four key areas: scalability; machine data intelligence; user and entity behavior analytics (UEBA); and embedded security automation and orchestration.

“Armed with finite resources to battle a staggering number of possible security threats, CISOs are desperately trying to realize an effective end-to-end threat lifecycle management capability,” said Chris Petersen, CTO and co-founder of LogRhythm. “Whether you support a massive 24×7 global security operations center or a small virtual SOC, LogRhythm 7.2 will amplify your organization’s ability to rapidly detect, investigate, and neutralize threats.”

Large enterprises are already harnessing the power of LogRhythm 7.2. “LogRhythm’s product is soaring to new heights,” said Michael Meline, IT security manager from Kootenai Health. “LogRhythm is putting customers first by developing features collaboratively with users. The Threat Intelligence Service in LogRhythm 7.2 is more actionable and helpful than 7.1 in surfacing important data for better incident response through security automation and orchestration.”

Highlights of the LogRhythm 7.2 security intelligence and analytics platform include:

Greater efficiency, designed for massive environments LogRhythm 7.2 provides up to 200 percent improvement in data processing and indexing performance to help customers cost-efficiently scale, especially in high-volume environments such as those exceeding 100,000 messages per second. What’s more, fully-automated data source onboarding saves countless hours of administration time in large environments.

Industry’s most accurate security analytics supports even more data sources LogRhythm 7.2 extends the depth of the platform’s patented Machine Data Intelligence Fabric™, a feature that automatically extracts contextual meaning from data to enable the most accurate and powerful security analytics. Specifically, LogRhythm 7.2 delivers advanced threat detection capabilities by expanding its industry-leading data schema with more than 20 additional metadata fields. These added fields complement the platform’s industry-leading support for over 785 unique data sources. LogRhythm 7.2 also advances customers’ visibility into cloud-based systems, including AWS, Salesforce, Box and Microsoft Office 365.

Only SIEM provider to deliver “one-stop-shop” for holistic threat detection across user, network, and endpoint-borne threats

LogRhythm 7.2 customers will see accelerated detection and investigation of user-borne risks—such as compromised accounts and insider threats – due to extensive enhancements to the User and Entity Behavioral Analytics (UEBA) module. The UEBA module extensions also include new threat detection algorithms, stronger kill-chain corroboration and new real-time dashboards for more targeted threat hunting.

Eliminates costly and inefficient workflow API integrations via embedded Security Automation and Orchestration Security teams will realize improved efficiency and more rapid response to threats thanks to the security automation and orchestration capabilities embedded into the new LogRhythm 7.2 platform. What’s more, this embedded function minimizes total cost of ownership by eliminating the need to buy, integrate and maintain expensive third-party solutions and API integrations. LogRhythm 7.2 delivers extensive workflow and UI enhancements based on real-world customer feedback, such as direct in-workflow access to threat intelligence services. The release also adds 20 new SmartResponse™ actions that provide customers with automated playbooks for optimal incident response.

About LogRhythm

LogRhythm, a leader in security intelligence and analytics, empowers organizations around the globe to rapidly detect, respond to and neutralize damaging cyber threats. The company’s patented award-winning platform uniquely unifies next-generation SIEM, log management, network and endpoint monitoring, user entity and behavior analytics (UEBA), security automation and orchestration and advanced security analytics. In addition to protecting customers from the risks associated with cyber threats, LogRhythm provides unparalleled compliance automation and assurance, and enhanced IT intelligence.

LogRhythm is consistently recognized as a market leader. The company has been positioned as a Leader in Gartner’s SIEM Magic Quadrant report for five consecutive years, named a ‘Champion’ in Info-Tech Research Group’s 2014-15 SIEM Vendor Landscape report, received SC Labs ‘Recommended’ 5-Star rating for SIEM and UTM for 2016 and earned Frost & Sullivan’s 2015 Global Security Information and Event Management (SIEM) Enabling Technology Leadership Award. LogRhythm is headquartered in Boulder, Colorado, with operations throughout North and South America, Europe and the Asia Pacific region.

Contact
Jenny Overell
415-249-6778
Jenny.Overell@finnpartners.com