LogRhythm boosts security with quarterly update

LogRhythm has announced its ninth consecutive quarterly release, introducing significant advancements aimed at bolstering security teams' efficiency and aiding their compliance with industry standards.

The company has rolled out updates that enhance data integrity and streamline the use of AI tools in defending organisations against cyberthreats.

This quarter's innovations are headlined by the Machine Data Intelligence (MDI) Fabric, which optimises the collection and organisation of diverse log sources, transforming them into structured and searchable datasets. The company asserts that this system enables more precise searches, analytics, and investigations. "Our 9th consecutive quarterly release reinforces our commitment to delivering powerful, intuitive tools that enhance the efficiency and effectiveness of security teams worldwide," said Chris O'Malley, CEO of LogRhythm.

Among the newly introduced features, LogRhythm Axon optimises security team efficiency and simplifies compliance reporting. It supports the streaming of logs to AWS S3 storage, offering an economical solution for retaining data in a searchable format. Furthermore, it includes out-of-the-box compliance frameworks for NIST SP 800-171 and NIST CSF 2.0, aiding analysts in generating evidence swiftly and accurately.

Axon also introduces new user and host analysis capabilities in search and case management. This feature facilitates in-depth investigations within a single screen, ensuring that the context of initial queries is preserved. Enhanced real-time correlation allows for the creation of complex, multi-layer analytics rules, essential for monitoring temporary account usage and lateral movement with account sweeps.

LogRhythm has also advanced its Security Information and Event Management (SIEM) capabilities with the new Open Collection Architecture, which allows customers to swiftly send JSON data to the SIEM via third-party sources. The introduction of a web-based JSON normalization creation wizard further simplifies the process, aiding users in customising log messages efficiently. Enhancements have been made to more than 70 supported log sources, improving parsing for better correlation and analysis.

Andrew Hollister, CISO at LogRhythm, noted, "Our latest enhancements are designed to drive analyst efficiency and augment the capabilities of security teams. By simplifying tasks like compliance reporting and enabling more precise investigations, we're empowering security teams to adapt to changing threats and requirements while maintaining peak operational effectiveness in the modern era of AI-adoption."

Phil Swain, CISO and Vice President of Information Security at Extreme Networks, commented on the importance of these updates. "Our partnership with LogRhythm has been instrumental in staying ahead of the curve in today's threat landscape. The regular quarterly updates from LogRhythm mean that we always have access to the latest innovations and updates to not only maintain but also improve our security posture."

Dallas Hammer, CISSP and CISO at NDM Technologies, also highlighted the benefits of the new capabilities, stating, "The JSON Policy Builder and Lumberjack JSON Listener allow us to collect and normalize emerging log sources much faster and easier than we could before, giving NDM's SOC more time to focus on detection rather than collection."

The latest release underscores LogRhythm's focus on providing security teams with high-integrity data, crucial for the effective implementation of AI-driven security strategies. Through continuous innovation, the company aims to enhance the precision of security operations and facilitate compliance with evolving industry standards.